Cybercrime stories
Any use of network connected electronic devices such as computers or smartphones for criminal activity
is classified as cybercrime. With a long history starting with the misuse of telephone systems (such as
‘phreaking’), cybercrime today includes the creation and distribution of viruses, ransomware, keyloggers
and other malware, the download and use of malware produced by others, social engineering tactics
such as phishing or (physical) impersonation, the theft and use of credentials for accessing computer
systems or networks, and the theft of privileged data. Cybercrime is a broad and dynamic field, with
cybercriminals constantly adapting their methods in pursuit of usually financial goals, but also
occasionally seeking to disrupt, embarrass or shame their targets.

Hazy Hawk exploits abandoned cloud DNS for global scams surge
Yesterday
#
cloud security
#
cybersecurity
#
scams
Cybersecurity firm Infoblox warns of Hazy Hawk, a threat actor hijacking DNS records from abandoned cloud resources to spread scams and malware worldwide.

Retail fraud awareness rises with social media, risks USD $107bn
Yesterday
#
ecommerce
#
youtube
#
facebook
Awareness of retail fraud surges via social media, with risks looming at USD $107bn by 2029 as consumers grow tempted and acceptance rises.

AI-driven threats prompt IT leaders to rethink hybrid cloud security
Yesterday
#
firewalls
#
private cloud
#
ransomware
A new survey reveals 91% of IT leaders are reassessing hybrid cloud risks as AI-driven cyberattacks surge, with global costs hitting USD $3 trillion annually.

Malicious memes: How cybercriminals use humour to spread malware
Yesterday
#
malware
#
phishing
#
advanced persistent threat protection
Cybercriminals exploit viral memes to spread malware and phishing attacks, using humour to bypass defences and target millions online in Australia and beyond.

Ransomware attacks down 31% but retail sector hit hard
Yesterday
#
malware
#
ransomware
#
breach prevention
Global ransomware attacks fell 31% in April, but key UK retailers like M&S and Harrods faced disruptive incidents amid a complex cyber threat landscape.

SEO poisoning attack diverts wages using fake payroll websites
Yesterday
#
firewalls
#
it in manufacturing
#
network security
Cyberattackers used SEO poisoning to mimic a payroll portal, stealing employee wages via mobile devices in a widespread manufacturing sector fraud uncovered by ReliaQuest.

Cybercriminals industrialise attacks on hospitality sector, report finds
Yesterday
#
ransomware
#
digital transformation
#
cybersecurity
Cybercriminals increasingly target Australia's hospitality sector, exploiting digital gaps with sophisticated attacks and dark web services, Trustwave warns.

Cloudflare, Microsoft & police disrupt global malware service
Yesterday
#
malware
#
ransomware
#
endpoint protection
Cloudflare and Microsoft, with global law enforcement, have disrupted LummaC2, a major malware service stealing data worldwide and used for cybercrime.

Cyberattack on Peter Green Chilled raises UK supply chain fears
Yesterday
#
ransomware
#
breach prevention
#
cybersecurity
UK food logistics firm Peter Green Chilled faces ransomware attack, threatening supply chains and client retailers like Tesco and Aldi amid rising cyber threats.

McAfee rolls out AI scam detector for Australians amid surge
3 days ago
#
phishing
#
email security
#
casb
McAfee launches AI Scam Detector for Australians amid surge, targeting texts, emails and videos with 99% detection accuracy to curb rising online scams.

Legal Aid Agency hit by major cyber breach affecting millions
3 days ago
#
data protection
#
ransomware
#
devops
The Legal Aid Agency has suffered a major cyber-attack, exposing personal data of over two million individuals dating back to 2010 in England and Wales.

The Ransomware Threat: How to respond and protect your organisation
4 days ago
#
data protection
#
network infrastructure
#
ransomware
Ransomware attacks in Australia surged in 2023–24, costing businesses up to AUD $97,200 on average, urging firms to bolster cyber defences and response plans.

Coinbase offers USD $20 million bounty after insider data breach
Last week
#
data protection
#
mfa
#
fintech
Coinbase says a data breach affected around 1% of users, with cybercriminals demanding a USD $20 million ransom, which was firmly rejected by the firm.

Scattered Spider hackers shift focus from UK to US retailers
Last week
#
ransomware
#
mfa
#
phishing
Cybercriminal group Scattered Spider, known for targeting UK retailers, has shifted focus to major US retailers, raising fresh cybersecurity concerns.

Alabama cyberattack exposes state staff credentials, disrupts services
Last week
#
firewalls
#
data protection
#
ransomware
Alabama probes a cyberattack disrupting government services and stealing employee credentials, urging staff to exercise caution amid ongoing investigations.

Dior & Nucor cyberattacks highlight risks for global firms
Last week
#
ransomware
#
martech
#
breach prevention
Luxury brand Dior and US steel producer Nucor both face major cyberattacks, exposing vulnerabilities in fashion and industrial sectors globally.

Phishing attacks become harder to spot as hackers adapt tactics
Last week
#
mfa
#
phishing
#
advanced persistent threat protection
Phishing remains the top US cybercrime, with 193,000 complaints; attackers now use subtle linkless emails and fake MFA alerts to trick users.

Scattered Spider & DragonForce target UK retail in new attacks
Last week
#
ransomware
#
cybersecurity
#
threat intelligence
Recent UK retail cyber attacks linked to Scattered Spider group and the DragonForce ransomware signal an evolving threat with sophisticated tactics targeting IT infrastructure.

How businesses are fighting sophisticated cyber threats with AI
Last week
#
malware
#
ransomware
#
data science
Australian and New Zealand firms face rising AI-driven cyber threats, boosting investment in AI-powered defences like User and Entity Behaviour Analytics to combat attacks.

Andy Frain notifies 100,000 after major ransomware breach
Last week
#
data protection
#
ransomware
#
breach prevention
Andy Frain Services disclosed a data breach affecting 100,964 individuals in October 2024, with ransomware group Black Basta claiming responsibility.