Tag Archive for: cases

Amount in crypto stolen via hacking fell in 2023 but number of cases on the rise

/in


SINGAPORE – The amount of stolen cryptocurrency from hacking may have fallen globally in 2023, but the number of incidents has risen, a report by blockchain research firm Chainalysis said.

The firm on Jan 24 said global funds stolen via crypto hacking plunged by about 54.3 per cent to US$1.7 billion (S$2.3 billion) in 2023 compared with the year before.

However, the number of individual hacking incidents grew 5.5 per cent the same year to 231, from 219 in 2022.

Hacking refers to the unauthorised access, manipulation or exploitation of computer systems, networks or information.

The report said cryptocurrency hacking has become a pervasive and formidable threat that has led to billions of dollars stolen from crypto platforms and exposing vulnerabilities across the ecosystem.

The drop in the amount stolen via crypto hacking in 2023 is largely because of a fall in decentralised finance, or DeFi, hacking. DeFi refers to a new financial system where transactions are made peer to peer on public blockchains.

“Hacks of DeFi protocols largely drove the huge increase in stolen crypto that we saw in 2021 and 2022, with cyber criminals stealing US$3.1 billion in DeFi hacks in 2022. But in 2023, hackers stole just US$1.1 billion from DeFi protocols. This amounts to a 63.7 per cent drop in the total value stolen from DeFi platforms year over year,” said Chainalysis.

The fall in the value and number of DeFi hacks come as DeFi operators become better at smart contract security, the report said.

Smart contracts are self-executing contracts on the blockchain, with the terms of the agreement directly written into code.

Ms Mar Gimenez-Aguilar, lead security architect and researcher at Web3 and blockchain security firm Halborn, said in the report that the rise in security measures in DeFi protocols is a key factor in lowering the number of hacks linked to smart contract vulnerabilities.

“If we compare the top 50 hacks by value lost from 2023 with those from previous years, there is a reduction in losses from 47 per cent of the total to 18.2 per cent,” she said.

Ms Gimenez-Aguilar said price manipulation attacks remained almost constant, with around 20 per cent of the total value…

Source…

Chinese Ministry of Public Security releases 10 typical cases of cracking down on cyberspace violence, illegal crimes

/in


Police officers raise cybersecurity awareness by disseminating education pamphlets among citizens in Yangzhou, East China's Jiangsu Province, on September 14, 2023. Photo: Xinhua

Police officers raise cybersecurity awareness by disseminating education pamphlets among citizens in Yangzhou, East China’s Jiangsu Province, on September 14, 2023. Photo: Xinhua

On Tuesday, China’s Ministry of Public Security released 10 typical cases of cracking down on cases of cyberspace violence and illegal crimes. Those cases included illegally hiring a group of online users to attack others, using hacking methods to obtain large volumes of personal information, and using PS and other technologies to maliciously defame others’ image.

In recent years, cyberspace violence and illegal crimes have becoming increasingly frequent, leading to some individuals experiencing “social death,” mental illness, and even suicide. This has severely disrupted the order of the internet and damaged the online ecosystem, causing a negative social impact. The Chinese public security authorities continue to maintain a “zero tolerance” attitude toward cyberspace violence and illegal crimes and have dealt with a large number of such cases, including insulting and defaming others, spreading rumors, and violating privacy.

In the first typical case, East China’s Jiangsu public security organs targeted a case of a person surnamed Zhang who hired “internet troll army” — a group of users who are paid to post online comments with vested interest on Chinese language websites — to cyberbully others.

The internet security department of Jiangsu public security organs found that during his probation period, Zhang illegally obtained a victim’s private information by installing tracking and eavesdropping devices in order to achieve long-term control over the victim. He spread and promoted indecent videos, images, and insulting articles about the victim through purchasing internet accounts and hiring an online “army.” He also sent reports with false accusation to the victim’s workplace in someone else’s name, causing the victim to suffer from post-traumatic stress disorder. In January 2023, Zhang was taken into custody by the public security organs in accordance with the law. Currently, Zhang has been sentenced to six years in prison and fined 10,000 yuan ($1,397.96) for the crimes of infringing on…

Source…

12 Persons Arrested For Suspected Involvement In Banking-Related Malware Scam Cases

/in


A total of 11 men and one woman, aged between 17 and 40, have been arrested for their suspected involvement in the recent spate of banking-related malware scam cases, following an island-wide anti-scam enforcement operation conducted between 9 and 20 October 2023.

Over the course of two weeks, officers from the Commercial Affairs Department (CAD) and Police Intelligence Department (PID) mounted simultaneous island-wide operations and arrested 12 persons. Preliminary investigations revealed that the 11 men and one woman had allegedly facilitated the scam cases by relinquishing their bank accounts, Internet banking credentials and/or disclosing Singpass credentials for monetary gains.  

Since January 2023, the Police have received increasing number of reports of malware being used to compromise Android mobile devices, resulting in unauthorised transactions made from the victims’ bank accounts, even when they had not divulged their Internet banking credentials, One-Time-Passwords (OTPs) or Singpass credentials to anyone. In these cases, the victims responded to advertisements (e.g., on cleaning services, pet grooming, food items such as seafood and groceries, etc.) on social media platforms such as Facebook. They were then instructed by the scammers to download Android Package Kit (APK) from non-official app stores to facilitate the purchase, which led to malware being installed on their mobile devices. Subsequently, the scammers convinced the victims via phone calls or text messages to turn on accessibility services on their Android phones. This weakened the phones’ security, allowing scammers to take full control of the victims’ phones. As a result, the scammers could log every keystroke, steal banking credentials stored on the phones, remotely access victims’ banking apps, add money mules as payees, raise payment limits and transfer money to money mules. The scammers could further delete SMSes and email notifications of the bank transactions to cover their tracks.

Police investigations are ongoing. The offence of acquiring benefits from criminal conduct under Section 54(5)(a) of the Corruption, Drug Trafficking and Other Serious Crimes…

Source…

11 Persons Arrested For Suspected Involvement In Banking-Related Malware Scam Cases

/in


A total of eight men and two women, aged between 17 and 57, and a 16-year-old teenager have been arrested for their suspected involvement in the recent spate of banking-related malware scam cases. Another five men and a woman, aged between 21 and 41, are assisting in the investigations, following an island-wide anti-scam enforcement operations conducted between 11 and 22 September 2023.

Over the course of two weeks, officers from Commercial Affairs Department (CAD) and Police Intelligence Department (PID) mounted simultaneous island-wide operations and arrested the 11 persons. Preliminary investigations revealed that seven men and two women, and the teenager, had allegedly facilitated the scam cases by relinquishing their bank accounts, Internet banking credentials and/or disclosing Singpass credentials for monetary gains. A 28-year-old man is believed to have withdrawn money from his bank account and handed the money to an unknown person.

Since January 2023, the Police have received increasing number of reports of malware being used to compromise Android mobile devices, resulting in unauthorised transactions made from the victims’ bank accounts, even when they have not divulged their Internet banking credentials, One-Time-Passwords (OTPs) or Singpass credentials to anyone. In these cases, the victims responded to advertisements (e.g., on cleaning services, pet grooming, food items such as seafood and groceries, etc.) on social media platforms like Facebook. They were then instructed by the scammers to download Android Package Kit (APK) from non-official app stores to facilitate the purchase, which led to malware being installed on their mobile devices. Subsequently, the scammers convinced the victims via phone calls or text messages to turn on accessibility services on their Android phones. This weakened the phones’ security, allowing scammers to take full control of the victims’ phones. As a result, the scammers could log every keystroke, steal banking credentials stored on the phones, remotely log access victims’ banking apps, add money mules as payees, raise payment limits and transfer money to money mules. The scammers can further delete…

Source…