Estonian ransomware operator sentenced to 66 months in prison
Maksim Berezan, an Estonian man linked to multimillion-dollar ransomware attacks, was sentenced on Friday to 66 months in prison for his involvement in online fraud schemes. [...]
Stay informed on the latest in information security with updates on fraud prevention, detection techniques, and cyber fraud trends.
Search across headline titles and summaries.
Background for this topic.
Fraud is intentional deception used to obtain money, access, information, or another unfair benefit. In information security, the term commonly covers digitally enabled schemes such as phishing, account takeover, payment fraud, business email compromise, and misuse of stolen identities or credentials. The defining feature is deceptive use of systems, accounts, or data—not merely a technical failure.
Security teams should treat fraud as both an identity and transaction-risk problem. Relevant controls include phishing-resistant authentication, least-privilege access, payment and account-change verification, and monitoring for unusual login or transaction patterns. Personal and financial data require appropriate privacy protections because exposed data can support impersonation even when passwords are not compromised. Investigation must preserve authentication, email, endpoint, and transaction records so organizations can contain unauthorized access, reverse or block fraudulent activity where possible, notify affected parties, and improve controls based on the attack path.
Maksim Berezan, an Estonian man linked to multimillion-dollar ransomware attacks, was sentenced on Friday to 66 months in prison for his involvement in online fraud schemes. [...]
As casinos go digital, their loyalty programs and authentic accounts are at risk.
Tesla, Porche, jewelry, bags, purses, watches, the whole works A now-former HP finance planning manager pleaded guilty on Wednesday to charges of wire fraud, money laundering, and filing false tax returns that follow from the misappropriation of company funds.…
FBI report finds BEC still the biggest earner for cyber-criminals
Pavel Vrublevsky, founder of the Russian payment technology firm ChronoPay and the antagonist in my 2014 book "Spam Nation," was arrested in Moscow this month and charged with fraud. Russian authorities allege Vrublevsky operated several fraudulent SMS-based payment schemes, and facilitated money laundering for Hydra, the largest Russian darknet market. But according to information obtained by KrebsOnSecurity, it is equally likely Vrublevsky was arrested thanks to his propensity for carefully documenting the links between Russia's state security services and the cybercriminal underground.
English courts praised for giving victims a sympathetic hearing
Social engineering attacks leveraging a combination of romantic lures and cryptocurrency fraud have been luring unsuspecting victims into installing fake apps by taking advantage of legitimate iOS features like TestFlight and Web Clips