- \n
- Procolored printer drivers contained a cryptocurrency stealer.<\/li>\n
- In the US, 12 suspects in $263m crypto fraud were arrested.<\/li>\n
- Dior confirmed a cyberattack and data leak.<\/li>\n
- Telegram purged casino bots.<\/li>\n<\/ul>\n<\/div>\n
Procolored printer drivers hid a crypto-stealer<\/strong><\/h2>\n
For at least six months, official software bundled with Procolored printers included a remote-access trojan and a cryptocurrency stealer. The first to flag<\/a> it was YouTube blogger Serial Hobbyism.<\/p>\n
After installing drivers for the Procolored V11 Pro UV printer, a user\u2019s antivirus detected the Floxif USB worm on the computer.<\/p>\n
Data: Serial Hobbyism.<\/figcaption><\/figure>\n External experts helped the blogger determine<\/a> that at least six printer models (F8, F13, F13 Pro, V6, V11 Pro and VF13 Pro) with companion software hosted on the Mega file-sharing platform contained the XRedRAT trojan and the SnipVex clipper. The latter infects .exe files and replaces Bitcoin addresses in the clipboard.<\/p>\n
The address used by SnipVex to siphon stolen cryptocurrency received about 9.308 BTC (~$1m at the time of the report).<\/p>\n
The malicious packages have been removed and an internal investigation has begun.<\/p>\n
US arrests 12 over crypto fraud totalling <\/strong>$263m\u00a0<\/strong><\/h2>\n
US authorities have charged<\/a> 12 individuals in a cybercriminal conspiracy involving extortion, fraud and money laundering that netted more than $263m.<\/p>\n
According to the Department of Justice, from October 2023 to March 2025 the group of American and foreign nationals carried out database breaches, phishing, and home burglaries aimed at stealing hardware crypto wallets.<\/p>\n
The proceeds were spent at nightclubs, on private-jet rentals, hired security and sports cars priced up to $3.8m. Some $9m went on exotic cars and another $4m on parties.<\/p>\n
Part of the scheme was exposed by on-chain sleuth ZachXBT, who in August 2024 tracked the theft<\/a> of nearly 4,100 BTC from an early crypto investor.<\/p>\n
The investigation is ongoing.<\/p>\n
Dior confirmed a cyberattack and data leak<\/strong><\/h2>\n
The French luxury brand Dior said<\/a> it identified on May 7 a cybersecurity incident that resulted in unauthorised access to partial customer information.<\/p>\n
Data affected include names, gender, phone numbers, email, addresses, purchase history and preferences. The company assured that the database did not contain account passwords or financial information, including bank details, card data or IBAN.<\/p>\n
Steps have been taken to contain the breach, and an investigation is under way with cybersecurity experts. The data-protection authority and affected customers have been notified.<\/p>\n
The number of affected customers and their regions have not been disclosed.<\/p>\n
Telegram purged casino bots<\/strong><\/h2>\n
Messenger Telegram removed the platform\u2019s largest gambling project, @CasinoBot. A broad sweep also hit several other major projects with million-strong audiences, reported \u201cDurov\u2019s Code\u201d<\/a>.<\/p>\n
Before that, the messenger blocked search for key words such as \u201ccasino\u201d, \u201cfreespin\u201d and \u201c\u043a\u0430\u0437\u0438\u043d\u043e\u201d, depriving such projects of organic traffic.<\/p>\n
Telegram is reportedly tightening content moderation amid rumours of a possible IPO, aiming to minimise potential regulatory complaints.<\/p>\n
Alleged BlackDB admin extradited to the US from Kosovo<\/strong><\/h2>\n
A 33-year-old Kosovo citizen, Liridon Mazurika, has been extradited to the US on charges of running the cybercrime marketplace BlackDB, active since 2018, the Department of Justice reports<\/a>.<\/p>\n
According to prosecutors, he was the lead administrator of the platform, which sold compromised accounts, server data, stolen credit-card numbers and personal information on individuals, most of them US citizens.<\/p>\n
The first court hearing has already taken place. The defendant was charged with five counts of fraudulent use of unauthorised access devices and one count of conspiracy to commit fraud. He faces up to 55 years in prison.<\/p>\n
Meanwhile, in Moldova a 45-year-old \u201cforeign citizen\u201d was arrested<\/a> on suspicion of using the DoppelPaymer ransomware.<\/p>\n
Authorities believe that in 2021 the suspect was behind a series of cyberattacks on Dutch organisations. One victim was NWO<\/span>, which suffered losses of around \u20ac4.5m.<\/p>\n
Officers seized an e-wallet, \u20ac84,800, two laptops, a mobile phone, a tablet, six bank cards and several storage devices. He remains in custody pending extradition to the Netherlands.<\/p>\n
A third of Russian courts\u2019 archive disappeared after a cyberattack<\/strong><\/h2>\n
Some 33% of the case archive (89m records) were deleted from the \u201cconsolidated database\u201d of the \u0413\u0410\u0421<\/span> \u201cPravosudie\u201d system after a mass outage in October 2024, according to a report<\/a> by Russia\u2019s Audit Chamber.<\/p>\n
The Telegram channel \u201cIf We\u2019re Precise\u201d<\/a> explains that the missing cases should remain on the websites of district and magistrates\u2019 courts, but \u201cyou won\u2019t be able to collect them without special tools\u201d.<\/p>\n
According to the report, the last external security assessment of the \u0413\u0410\u0421 \u201cPravosudie\u201d websites was conducted in 2015; the system has never been fully updated and runs on \u201ctechnically outdated foreign software products\u201d.<\/p>\n
The courts\u2019 websites came back online only a month after the cyber incident. The Ukrainian group BO Team claimed responsibility.<\/p>\n
Also on ForkLog:<\/p>\n
- \n
- The former head of the DeGods project lost 16 NFTs to theft<\/a> worth $19,000.<\/li>\n
- Analysts outlined the timing of movements<\/a> of stolen cryptocurrencies.<\/li>\n
- AMLBot found a vulnerability in the blocking system<\/a> of Tether wallets.<\/li>\n
- Coinbase disclosed a data theft<\/a> and refused to pay a $20m ransom.<\/li>\n
- The scam marketplace Haowang shut down<\/a> after its Telegram channels were blocked.<\/li>\n
- Curve Finance confirmed a compromise<\/a> of its DNS server.<\/li>\n
- Charles Hoskinson announced a privacy-focused stablecoin<\/a> on Cardano.<\/li>\n
- Ledger regained control of its Discord channel<\/a> after a hack.<\/li>\n
- An expert suggested the emergence of \u201cdark stablecoins\u201d<\/a>.<\/li>\n
- In Las Vegas, teenagers kidnapped and robbed<\/a> a crypto investor.<\/li>\n
- Prosecutors in the Samourai Wallet case refused to drop the case<\/a> despite orders.<\/li>\n<\/ul>\n
What to read this weekend?<\/strong><\/h2>\n
We unpack DePAI \u2014 a new trend in the machine economy \u2014 and its potential risks.<\/p>\n","protected":false},"excerpt":{"rendered":"
We collected the week\u2019s most important cybersecurity news. Procolored printer drivers contained a cryptocurrency stealer. In the US, 12 suspects in $263m crypto fraud were arrested. Dior confirmed a cyberattack and data leak. Telegram purged casino bots. Procolored printer drivers hid a crypto-stealer For at least six months, official software bundled with Procolored printers included […]<\/p>\n","protected":false},"author":1,"featured_media":24071,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"","news_style_id":"","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1238,1233],"class_list":["post-24072","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cybersecurity-digest","tag-industry-digests"],"aioseo_notices":[],"amp_enabled":true,"views":"13","promo_type":"","layout_type":"","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/24072","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=24072"}],"version-history":[{"count":0,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/24072\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/24071"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=24072"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=24072"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=24072"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
- Analysts outlined the timing of movements<\/a> of stolen cryptocurrencies.<\/li>\n
- The former head of the DeGods project lost 16 NFTs to theft<\/a> worth $19,000.<\/li>\n
![\"A](\"https:\/\/lh7-qw.googleusercontent.com\/docsz\/AD_4nXeCvJg-ZXV_rkl9iwJ1gIvAqmgxD5KW_j8gCM0L2FwS1TpQaTjN_RK8BPttrMlzql02i9B-V_CIaXoxDvKb8pv5L7g93saWZFa7Zj4OAtlipTT0HwEqzrzVcc3dyn1IYm9nMraPkw?key=Z11iMuYCYbxTivfaSIQU5w\")