Tag: fraud
136 articles

UK Authorities Charge Five in Russian Coms Fraud Crackdown
In a major crackdown on Russian Coms Fraud, UK authorities have charged five individuals linked to a notorious platform that enabled scammers to hide their identities and swindle victims by impersonating trusted institutions. The platform, shut down in 2024, had been facilitating these deceitful calls since 2020.

Amazon Fined $2.25M for Withholding Fraud Evidence
Amazon has been fined $2.25 million for allegedly blocking identity-theft victims from accessing records of fraudulent transactions, violating the Fair Credit Reporting Act. The company reportedly told some consumers that they couldn't access the requested records, adding to the frustration of those trying to recover from scams.

DCloud Uni-App Framework Fuels 236,000 Scam Sites
Over the past two years, a staggering 236,000 scam sites have sprouted up using the DCloud Uni-App Framework, with operators continually launching sophisticated schemes to deceive victims. These sites are being used for a wide range of fraudulent activities, from fake cryptocurrency exchanges to crypto wallet drainers.

Fraudsters Target F1 Fans with Fake Streams, Counterfeit Merch Scams
When it comes to motorsports, speed is a double-edged sword - while the action is fast-paced and thrilling, it also creates opportunities for scammers to strike, as noted by Bogdan Botezatu, senior director of threat research at Bitdefender. Cybercriminals are now targeting F1 fans with fake streams and counterfeit merch scams, making it essential for fans to stay vigilant.

Ex-US Execs Plead Guilty to Aiding Global Tech Support Scams
Two former executives, Adam Young and Harrison Gevirtz, have pleaded guilty to hiding a massive tech support scam that duped victims worldwide, and now face up to three years in prison and $250,000 in fines. Their guilty pleas mark a major win in the fight against tech support scams.

FBI Disrupts W3LL Phishing Operation Linked to $20m in Fraud
The FBI has successfully dismantled a massive phishing operation built around the notorious W3LL phishing kit, which was linked to a staggering $20 million in fraud attempts. By taking down this operation, the bureau has disrupted a key tool used by cybercriminals to carry out their scams.

EvilTokens Fuels Sophisticated Microsoft Phishing Attacks
This month, a commercially available toolkit called EvilTokens made it alarmingly easy for fraudsters to launch sophisticated Microsoft phishing attacks, putting corporate email systems and Microsoft accounts directly in their crosshairs. By exploiting device code authentication, a feature designed to simplify login, EvilTokens has turned a convenient tool into a potent weapon for organized cybercrime.

investment scam: Shocking, Risky Deepfake Google Ads
Scammers are buying top search spots and using AI deepfakes to impersonate Singapore officials, creating convincingly official sites that trick investors into wiring funds. Learn simple checks—verify .gov.sg domains and contact agencies directly—to avoid falling for these high-tech cons.

SIM farm Stunning Takedown: Risky Fraud Network
Europol’s Operation SIMCARTEL dismantled a massive SIM farm tied to about 49 million fake accounts, arresting suspects and exposing how cheaply scammers can weaponize phone numbers to automate fraud. The takedown is a wake‑up call to ditch SMS as sole protection and push for stronger, phishing‑resistant authentication across services.

payment data breach: Stunning Alarming Risk Exposed
About 180,000 people had names and payment details left exposed — putting them at heightened risk of fraud and identity theft; here’s what to do now to protect yourself and why companies must tighten their defenses.

PII and payment data: Stunning Risky Exposure Alert
About 180,000 records — including names and payment card data — were left exposed, turning everyday transactions into a potential headache for consumers and a regulatory and reputational crisis for businesses; monitor your accounts, enable alerts, and favor virtual or tokenized payment options while companies patch misconfigurations and tighten security.

pet records Exposed: Exclusive Risky Security Warning
More than 85,000 pet and owner records were left exposed, turning beloved pets’ details into a roadmap for scammers and raising real risks like spam, identity theft and fraudulent claims—here’s what went wrong and what you can do now to protect yourself.

auto insurance records Exposed: Shocking Risky Leak
Imagine anyone being able to read your policy—because more than 5 million auto insurance records were left publicly accessible online, putting drivers at immediate risk of fraud and identity theft. This glaring misconfiguration shows how easily useful data can become a goldmine for scammers.

SIM card supply network Exposed: Risky, Stunning Takedown
Europol just tore down a sophisticated cross-border SIM card supply network that criminals used to hide identities and run scams — a stark reminder that SMS-based authentication can be easily abused. Protect yourself by using authenticator apps or security keys, monitoring accounts for unusual activity, and urging carriers to adopt stronger ID checks.

Prosper Marketplace Devastating 17.6M Breach — Urgent
Have I Been Pwned flags 17.6 million records tied to a suspected September hack of Prosper, leaving customers and regulators in the dark while the lender says it can’t yet verify the claims. Check whether your email appears in the database and take basic precautions like changing passwords and monitoring your credit.

data security incident: Risky Prosper Breach—Stunning
Prosper says it found no evidence of stolen funds, but a data exposure affecting roughly 17 million people still raises real risks of identity theft and phishing — here’s what to watch for and do next.

Sothebys data breach: Exclusive Devastating Fallout
Sotheby’s recent data breach exposed buyers’ sensitive financial and identity records — and some of those files are already being offered for sale online — forcing clients to scramble for protection and pushing the auction world to rethink security. If you entrusted the house with your details, now’s the time to monitor accounts, consider fraud alerts, and demand stronger safeguards.

Cryptocurrency ATMs: Risky Reality, Must-Have Alerts
Cryptocurrency ATMs offer quick, cash-to-crypto convenience—but their speed and perceived anonymity make them prime tools for scammers and regulatory headaches, so investors should scrutinize fees, compliance, and fraud controls before betting on the sector.

weaponize trust: Stunning, Risky Threats to Tech
This week’s ThreatsDay unpacks a staggering $15B crypto fraud, chilling satellite-enabled surveillance, and a rise in smishing — showing how everyday tech is being turned against us and what simple steps you can take to protect your money, data, and trust.

online scam network Exposed: Stunning Risky Fraud Ring
The UK and US have hit a sprawling Southeast Asian scam network with coordinated sanctions to freeze assets and choke off the financial lifelines behind investment and romance frauds. The move targets call centres in Cambodia and Myanmar that allegedly use script-driven deception, coerced workers and complex laundering to prey on victims worldwide.

GXC Team: Exclusive Arrest Signals Dangerous Shift
Spanish police arrested a 25‑year‑old accused of leading the GXC Team, a group investigators say sold malware and AI‑enabled attack tools like commercial products. The takedown highlights how cybercrime is becoming a turnkey business—and why businesses, policymakers and everyday users need to harden defenses and push for better international cooperation.

unmonitored JavaScript: Must-Have Fixes for Secure Holidays
This holiday season, tiny unmonitored JavaScript snippets are letting attackers skim cards and siphon credentials right from checkout pages while WAFs and IDS stay blind. Retailers need client‑side monitoring, script integrity checks, and tighter third‑party controls now — or risk thousands of compromised customers and shattered trust.

medical and financial records: Stunning Risky Breach
When a November 2024 cyberattack on Florida’s Doctors Imaging Group exposed medical and financial records for 171,862 patients, it both disrupted care and left people painfully exposed — yet the company offered little remediation or apology. The incident underscores how valuable health data is to criminals and why patients deserve stronger protections and accountability.

Discord vendor leak: Stunning Risky Data Exposure
Discord says its servers weren’t hacked — but customer IDs and payment details were stolen from a compromised support vendor, showing how outsourcing can turn into a privacy disaster. If you use Discord, now’s the time to check your payment methods, monitor statements, and enable extra protections like MFA.