Lmst

🔥 Latest issue of my curated #cybersecurity and #infosec list of resources for week #23/2025 is out!

It includes the following and much more:

🇫🇷 Cartier announced a #databreach;

🫱🏻‍🫲🏼 Microsoft and CrowdStrike are working together to connect the different names used for hacking groups;

🇩🇪 German authorities have identified Vitaly Nikolaevich Kovalev as the leader of the #TrickBot cybercrime gang;

🩹 🐛 Over 30 #Vulnerabilities Patched in #Android;

🇪🇺 Microsoft has launched a free European Security Program to enhance cybersecurity for #EU governments;

🇮🇳 #Microsoft Helps India CBI Dismantle Indian Call Centers;

📨 Subscribe to the #infosecMASHUP newsletter to have it piping hot in your inbox every week-end ⬇️

https://infosec-mashup.santolaria.net/p/infosec-mashup-23-2025

Germany doxxes Conti ransomware and TrickBot ring leader

The Federal Criminal Police Office of Germany (Bundeskriminalamt or BKA) claims that Stern, the leader of the Trickbot and Conti cybercrime gangs, is a 36-year-old Russian named Vitaly Nikolaevich Kovalev.

#Germany #BKA #conti #trickbot #russia #ransomware #malware #security #cybersecurity #hackers #hacking

https://www.bleepingcomputer.com/news/security/germany-doxxes-conti-ransomware-and-trickbot-ring-leader/

#BKA nennt #Identität des mutmaßlichen Chefs der #Trickbot-Bande

Das #Bundeskriminalamt sucht mit Namen und Gesicht nach dem mutmaßlichen Kopf der berüchtigten Trickbot-Bande. Er gilt als ein Pionier der Cyberkriminalität.

https://www.heise.de/news/BKA-nennt-Identitaet-des-mutmasslichem-Chefs-der-Trickbot-Bande-10421263.html

#BKA nennt Identität des mutmaßlichen Chefs der #Trickbot-Bande | heise online https://www.heise.de/news/BKA-nennt-Identitaet-des-mutmasslichem-Chefs-der-Trickbot-Bande-10421263.html #Malware #Ransomware #CyberCrime #Qakbot

Cops in #Germany Claim They've ID'd the Mysterious #Trickbot #Ransomware Kingpin

The elusive boss of the Trickbot and Conti #cybercriminal groups has been known only as “Stern.” Now, #German law enforcement has published his alleged identity—and it’s a familiar face.

https://www.wired.com/story/stern-trickbot-identified-germany-bka/

Ransomware kingpin “Stern” apparently IDed by German law enforcement https://arstechni.ca/cBEu #ransomware #syndicated #Security #TrickBot #Biz&IT #conti #Stern

Cops in #Germany Claim They’ve ID’d the Mysterious #Trickbot #Ransomware Kingpin

https://www.wired.com/story/stern-trickbot-identified-germany-bka/

#cybercrime #OPSEC #privacy #cybersecurity #Conti #Stern

Fahndung BKA: »Vitalii Nikolaevich KOVALEV (oder: Vitaly Nikolayevich, Vitaliy Nikolayevich) steht im Verdacht, als Gründer der Gruppierung hinter der Schadsoftware #Trickbot einen wesentlichen Tatbeitrag zur Durchführung von globalen Cyberattacken geleistet zu haben.« 🇷🇺 #Stern #OperationEndgame

bka.de/DE/IhreSicherh...

Operation Endgame 2: 15 Millionen E-Mail-Adressen und 43 Millionen Passwörter | Security https://www.heise.de/news/Operation-Endgame-2-15-Millionen-E-Mail-Adressen-und-43-Millionen-Passwoerter-10396199.html #HaveIBeenPwned #Malware #Ransomware #Hacking #CyberCrime #Bumblebee #Latrodectus #Qakbot #DanaBot #HijackLoader #Warmcookie #Trickbot #Prolock #Doppelpaymer #REvil #Conti #BlackBasta #Cactus #OperationEndgame2

Operation Endgame 2.0: 20 Haftbefehle, Hunderte Server außer Gefecht gesetzt | Security https://www.heise.de/news/Operation-Endgame-2-0-20-Haftbefehle-Hunderte-Server-ausser-Gefecht-gesetzt-10394215.html #OperationEndgame #OperationEndgame2 #Malware #Ranswomware #Hacking #CyberCrime #Bumblebee #Latrodectus #Qakbot #DanaBot #HijackLoader #Warmcookie #Trickbot #Prolock #Doppelpaymer #REvil #Conti #BlackBasta #Cactus

🔥 Operation Endgame is BACK! This time targeting #BumbleBee, #Latrodectus, #DanaBot, #WarmCookie, #Qakbot and #Trickbot!

Once again this is a HUGE win, with a truly international effort! 💪

As with phase one of #OperationEndgame, Spamhaus are providing remediation support - those affected will be contacted in due course with steps to take.

For more information, read our write-up here:
👉 https://www.spamhaus.org/resource-hub/malware/botnets-disrupted-worldwide-operation-endgame-is-back/

U.S. Trades Cybercriminals to Russia in Prisoner Swap

https://krebsonsecurity.com/2024/08/u-s-trades-cybercriminals-to-russia-in-prisoner-swap/

#Russia'sWaronUkraine #Ne'er-Do-WellNews #VladislavKlyushin #AlexanderVinnik #EvanGershkovich #AlsuKurmasheva #MaximMarchenko #GermanMoyzhes #RomanSeleznev #VadimKrasikov #VladimirPutin #IvanErmakov #Ransomware #PaulWhelan #trickbot #Mt.Gox #BTC-e

U.S. Trades 5 Cybercriminals to Russia in Prisoner Swap - Twenty-four prisoners were freed today in an international prisoner swap between R... https://krebsonsecurity.com/2024/08/u-s-trades-5-cybercriminals-to-russia-in-prisoner-swap/ #russiaswaronukraine #vladislavklyushin #neer-do-wellnews #alexandervinnik #evangershkovich #alsukurmasheva #maximmarchenko #germanmoyzhes #romanseleznev #vadimkrasikov #vladimirputin #ivanermakov #ransomware #paulwhelan #trickbot #mt.gox #btc-e

#Europol blockt rund 600 in kriminellen Aktivitäten gefundene IPs und Domains | Security https://www.heise.de/news/Europol-Operation-Morpheus-Rund-600-IPs-und-Domains-hops-genommen-9789103.html #CobaltStrike #Conti #Trickbot #Ryuk #RAT

「 #ユーロポール、 #IcedID 、 #TrickBot 、その他のマルウェアに関連した100台以上のサーバーを #シャットダウン」： The Hacker News

「ユーロポールは木曜日、 #Operation #Endgame というコード名で行われる法執行機関の連携活動の一環として、IcedID、 #SystemB C、 #PikaBo t、 #SmokeLoader 、 #Bumblebee 、TrickBotなどのいくつかのマルウェアローダー操作に関連するインフラストラクチャを停止したと発表した。
この措置は5月27日から5月29日までの間に行われ、 #アルメニア、 #オランダ、 #ポルトガルの16か所にわたる捜索の結果、世界中で100台以上のサーバーが解体され、アルメニアで1人、ウクライナで3人の計4人が #逮捕された。、そして #ウクライナ。」

戦禍のウクライナでも、ややこしいことをしている奴がいる。

https://thehackernews.com/2024/05/europol-dismantles-100-servers-linked.html

#prattohome #TheHackerNews

Today we celebrate a major cybersecurity victory. 👏 Operation Endgame, a global law enforcement effort supported by insights from experts at Proofpoint and other industry vendors, resulted in:

• The disruption of major botnets
• Four arrests
• Over 100 servers taken down across 10 countries
• Over 2,000 domains brought under the control of law enforcement
• Illegal assets frozen

Proofpoint’s mission is to provide the best human-centric protection for our customers against advanced threats. Whenever possible and appropriate to do so, Proofpoint uses its team’s knowledge and skills to help protect a wider audience against widespread malware threats.

For #OperationEndgame, Proofpoint threat researchers lent their expertise in reverse engineering malware, botnet infrastructure, and identifying patterns in how the threat actors set up their servers to help authorities understand the malware and safely remediate the bot clients.

Proofpoint’s unmatched threat telemetry and researcher knowledge played a crucial role in the operation, providing key insights in identifying the new botnets that are most likely to grow and become the dominant threats affecting the most number of people around the world.

More information on the takedown and Proofpoint’s involvement can be found in our blog: https://www.proofpoint.com/us/blog/threat-insight/major-botnets-disrupted-global-law-enforcement-takedown.

#IcedID #SystemBC #Pikabot #SmokeLoader #Bumblebee #Trickbot #Europol