stealing
-
Blog
Google Play, Apple App Store apps caught stealing crypto wallets
Android and iOS apps on the Google Play Store and Apple App Store contain a malicious software development kit (SDK) designed to steal cryptocurrency wallet recovery phrases using optical character recognition (OCR) stealers. The campaign is called “SparkCat” after the name (“Spark”) of one of the malicious SDK components in the infected apps, with developers likely not knowingly participating in the operation.…
Read More » -
Blog
TikTok Influencers Are Wrong About Hackers Stealing Credit Card Information Over AirDrop
Before I get started: No, people can’t steal your credit card information using AirDrop. AirDrop doesn’t even know what your credit card number is. In a hoax that’s been spreading around TikTok as of late (the source of the rumor is unclear), viral videos are now saying that hackers can use the iPhone’s AirDrop feature to steal your credit card…
Read More » -
Blog
Scammers Are Stealing Millions From Americans’ Bank Accounts
Bank imposter frauds and scams, resulting in sizable wire transfers of stolen funds, are not new. And Wells Fargo is not the only bank whose customers experience this kind of trickery. But even looking just at Wells Fargo, you can see the size of the problem. In just the past two years, three class-action lawsuits from bilked customers have been…
Read More » -
Blog
Hackers blackmail Globe Life after stealing customer data
Insurance giant Globe Life says an unknown threat actor attempted to extort money in exchange for not publishing data stolen from the company’s systems earlier this year. Founded in 1900, Globe Life is among the largest providers of life and health insurance plans in the United States, with a market capitalization of $12 billion and a total revenue that exceeds…
Read More » -
Blog
Man pleads guilty to stealing $37 million in crypto from 571 victims
A 21-year-old man from Indiana named Evan Frederick Light pleaded guilty to stealing $37,704,560 worth of cryptocurrency from 571 victims in a 2022 cyberattack. According to an announcement by the U.S. Department of Justice, Light stole the cryptocurrency from an unnamed investment holdings company based in Sioux Falls, South Dakota. In a Statement of Fact obtained by BleepingComputer, Light says…
Read More » -
Blog
GitHub comments abused to push password stealing malware masked as fixes
GitHub is being abused to distribute the Lumma Stealer information-stealing malware as fake fixes posted in project comments. The campaign was first reported by a contributor to the teloxide rust library, who noted on Reddit that they received five different comments in their GitHub issues that pretended to be fixes but were instead pushing malware. Further review by BleepingComputer found thousands of…
Read More »
