The Record

Decentralized exchange GMX disabled trading after it “experienced an exploit." The heist involved more than $40 million in user funds.

DGSE intelligence head Nicolas Lerner said Moscow’s tactics are evolving and increasingly include on-the-ground activities carried out by paid operatives.

Thousands of web pages falsely branded as popular news sites are conduits for fake cryptocurrency investment scams, researchers said.

The appellate court on Tuesday sent the case back to the lower court for further consideration, saying it had “abused its discretion” and improperly applied the law when deciding Salvadoran journalists had no right to sue in U.S. courts.

The United States identified and sanctioned another North Korean involved with the country's IT worker schemes, this time for illicit operations based in China and Russia.

The Justice Department confirmed the arrest in a statement, unsealing a nine-count indictment on Tuesday accusing Xu and co-defendant Zhang Yu of being involved in “computer intrusions between February 2020 and June 2021, including the indiscriminate HAFNIUM computer intrusion campaign that compromised thousands of computers worldwide, including in the United States.”

Android banking malware known as Anatsa was back for a brief but noticeable run in late June, researchers said.

The attack was described as a “clear example of an organisation linked to the Russian state using ‘proxies’ — in this case British men — to carry out very serious criminal activity in this country on their behalf."

The Iran-linked ransomware-as-a-service group Pay2Key.I2P reportedly told affiliates that they can keep a larger cut of extortion payments if they attack entities within Iran's adversaries.

Moscow-based cybersecurity firm Kaspersky said the campaign has already affected over 100 victims across several dozen Russian organizations, but did not disclose the specific targets.

Police in Brazil arrested an employee of C&M Software, who allegedly told them he had sold his login credentials to the hackers behind a massive theft via the PIX instant payment system.

An investigation revealed that hackers had access to the utility's critical systems, allowing them to steal sensitive information like driver's license numbers, Canadian Social Insurance information and bank account details.

Organizations on multiple continents — particularly in the health and tech sectors — have been breached by a ransomware group calling itself Bert, according to researchers at Trend Micro.

The developers behind a custom firmware used to convert consumer drones for military use in Ukraine have reported a cyberattack disrupting the system that distributes the software.

Ingram Micro published a statement on Saturday saying it discovered “ransomware on certain of its internal systems,” which it immediately took offline.

The outages in Russia's second largest city are the latest in a series of shutdowns that may be linked to the Kremlin’s efforts to protect critical infrastructure from Ukrainian drone attacks.

Recorded Future News spoke to Estonia's cyber ambassador-at-large on the sidelines of the Tallinn Cyber Diplomacy Summer School about the country's efforts to secure its digital services.

Carol Steele, the county’s administrator, said they hired cybersecurity experts to help with the recovery and notified the FBI’s Cyber Crimes Division as well as the Cyber Fusion Center of the Virginia State Police.

Groups calling themselves IT Army of Russia and TwoNet are newly active on Telegram, coordinating operations and seeking new members, researchers at Intel 471 said.

Interpol said it analyzed five years of data about the illicit industry, which relies on human trafficking to staff up centers with people who are forced to conduct investment fraud, romance scams and other schemes.