Intel 471

Who Runs the Ransomware Group ‘The Gentlemen?’

Who Runs the Ransomware Group ‘The Gentlemen?’

| | 79127650004, Alexander Andreevich Yapaev, Breadcrumbs, [email protected], Constella Intelligence, Epieos, Flashpoint, Hastalamuerte, [email protected], Intel 471, Ne'er-Do-Well News, Ransomware, SantaMuerte, The Gentlemen ransomware
A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of hackers through an aggressive recruitment strategy that ...
Krebs on Security
Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab

Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab

| | A Little Sunshine, Anatoly Sergeevitsch Kravchuk, Daniel Golden, Daniil Maksimovich Shchukin, Dmitry Smilyanets, gandcrab, Ger0in, German Federal Criminal Police, Intel 471, Ne'er-Do-Well News, Ransomware, Recorded Future, Renee Dudley, rEvil, UNKN, Web Fraud 2.0
An elusive hacker who went by the handle "UNKN" and ran the early Russian ransomware groups GandCrab and REvil now has a name and a face. Authorities in Germany say 31-year-old Russian ...
Krebs on Security
Who is the Kimwolf Botmaster “Dort”?

Who is the Kimwolf Botmaster “Dort”?

| | A Little Sunshine, Breadcrumbs, Constella Intelligence, CPacket, DDoS-for-hire, DomainTools, Dort, DortDev, Dortsolver, Epieos, Flashpoint, GitHub, Intel 471, [email protected], [email protected], Kimwolf botnet, M1CE, Minecraft, Ne'er-Do-Well News, osint.industries, Qoft, SpyCloud
In early January 2026, KrebsOnSecurity revealed how a security researcher disclosed a vulnerability that was used to assemble Kimwolf, the world's largest and most disruptive botnet. Since then, the person in control ...
Krebs on Security
Why Malware Crypting Services Deserve More Scrutiny

Why Malware Crypting Services Deserve More Scrutiny

| | +7.9235059268, Breadcrumbs, CDEK, Constella Intelligence, crypt[.]guru, [email protected], Intel 471, Kerens, Kolumb, [email protected], Ne'er-Do-Well News, [email protected], [email protected], Sergey Y Purtov, Sergey Yurievich Purtov, [email protected], VIP Crypt, Web Fraud 2.0, Сергей Юрьевич Пуртов
If you operate a cybercrime business that relies on disseminating malicious software, you probably also spend a good deal of time trying to disguise or "crypt" your malware so that it appears ...
Krebs on Security
Ask Fitis, the Bear: Real Crooks Sign Their Malware

Ask Fitis, the Bear: Real Crooks Sign Their Malware

| | 165540027, [email protected], [email protected], Breadcrumbs, code signing certificates, Constella Intelligence, DomainTools.com, featar24, Fitis, Flashpoint, Glavmed, Intel 471, Konstantin Evgenievich Fetisov, Megatraffer, Ne'er-Do-Well News, O.R.Z., Spamit, [email protected]
Code-signing certificates are supposed to help authenticate the identity of software publishers, and provide cryptographic assurance that a signed piece of software has not been altered or tampered with. Both of these ...
Krebs on Security
$10M Is Yours If You Can Get This Guy to Leave Russia

$10M Is Yours If You Can Get This Guy to Leave Russia

| | 79608229389, A Little Sunshine, Breadcrumbs, Constella Intelligence, Denis Gennadievich Kulkov, Intel 471, Joker's stash, K022YB190, KreenJo, Mazafaka, Ne'er-Do-Well News, Nordex, Nordexin, [email protected], [email protected], Try2Check, U.S. Department of Justice, U.S. Department of State, U.S. Secret Service, Unicc, Vault Market
The U.S. government this week put a $10 million bounty on the head of a Russian man who for the past 18 years operated Try2Check, one of the cybercrime underground's most trusted ...
Krebs on Security
FBI Seizes Bot Shop ‘Genesis Market’ Amid Arrests Targeting Operators, Suppliers

FBI Seizes Bot Shop ‘Genesis Market’ Amid Arrests Targeting Operators, Suppliers

| | A Little Sunshine, FBI, Flashpoint, Genesis Market, Genesis Security, Intel 471, U.S. District Court for the Eastern District of Wisconsin
Several domain names tied to Genesis Market, a bustling cybercrime store that sold access to passwords and other data stolen from millions of computers infected with malicious software, were seized by the ...
Krebs on Security
Who’s Behind the Botnet-Based Service BHProxies?

Who’s Behind the Botnet-Based Service BHProxies?

| | A Little Sunshine, Abdala Tawfik, Abdalla Khafagy, BHProxies, bitsight, Constella Intelligence, hassan_isabad_subar, Intel 471, LewkLabs, Minerva Labs, Mylobot, Ne'er-Do-Well News, Web Fraud 2.0
A security firm has discovered that a five-year-old crafty botnet known as Mylobot appears to be powering a residential proxy service called BHProxies, which offers paying customers the ability to route their ...
Krebs on Security
JavaScript malware banking

Malware Families Love Telegram, Discord as Much as Users

| | credential theft, Discord, Intel 471, Malware, Messaging Apps, Telegram
Messaging apps like Discord and Telegram have become a conduit for malware, as their popularity grows among users who want to create and share programs on the platforms. These bots may facilitate ...
Security Boulevard
Breach Exposes Users of Microleaves Proxy Service

Breach Exposes Users of Microleaves Proxy Service

| | A Little Sunshine, Abhishek Gupta, Acidut, Alexandru Florea, Alexandru Iulian Florea, BlackHatWorld, Breadcrumbs, Constella Intelligence, CPAElites, Hackforums, Intel 471, Microleaves, Ne'er-Do-Well News, nevo.julian, online.io, residential proxy, reverseproxies, Shifter.io, SOCKS proxy
Microleaves, a ten-year-old proxy service that lets customers route their web traffic through millions of Microsoft Windows computers, exposed their entire user database and the location of tens of millions of PCs ...
Krebs on Security
Load more