Cyber Crime
Top 10 Daily Cybercrime Brief by FCRF [17.11.2024]: Click here to Know More
Important global cybercrime news has been curated by Futurecrime Researchers to keep you informed about various types of digital fraud occurring worldwide and to provide insights into the best mitigation strategies. Read below to learn more in detail.
1. Cyber Fraudsters Dupe UP Minister Gupta’s Accountant of Rs 2.08 Crore
An accountant at Icavo Agro Daily Pvt. Ltd., owned by UP minister, was duped of Rs 2.08 crore in a cyber fraud. The scam involved fake WhatsApp messages impersonating the minister’s son. Upon realizing the fraud, police froze the recipient bank accounts and launched an investigation.
2. Two Arrested in Part-Time Job Scam Bust
Hyderabad Cyber Crime police arrested two Maharashtra residents, for running an online part-time job scam. Using Telegram, the duo allegedly lured victims with false job offers, defrauding them. Police are investigating the extent of the scam, adding that the victim invested a total of Rs 1.60 lakh.
3. Ludhiana: Fake CBI Officers Scam Retired Accountant Out of Rs 8 Lakh
A retired accountant in Ludhiana lost Rs 8 lakh to cybercriminals posing as CBI officers. The scammers accused the victim of laundering money for an airline and coerced him under a ‘digital arrest.’ The case mirrors a Rs 7 crore scam targeting Padma Bhushan awardee SP Oswal, hinting at a common mastermind.
4. Telangana Man Nabbed for Rs 12 Lakh Cyber Fraud on Indore Woman; Probe Leads to Second Arrest
The city crime branch arrested a Telangana man for duping people by impersonating courier and police officers. The gang extorted Rs 12.1 lakh from a software developer through a fake parcel scam. A Rajasthan accomplice was earlier arrested. Police blocked 111 fraudulent bank accounts, recovering Rs 6 lakh for the victim.
5. Bengaluru: Rajasthan-Based Gang Exploiting Student Bank Accounts for Job Fraud Busted
CEN police station in Southeast Division, Bengaluru arrested four gang members involved in job fraud and cyber investment scams using bank accounts of North Indian students. The accused, aged 18-21, lured victims with fake job offers and used students’ accounts for fraudulent transactions. Seized items included phones, laptops, SIM cards, and Rs 75,000 in cash.
INTERNATIONAL
6. Ilya Lichtenstein Sentenced for Role in Bitfinex Hack
Ilya Lichtenstein, mastermind behind the 2016 Bitfinex hack, was sentenced to five years for laundering 120,000 stolen bitcoins, now valued at $4.5 billion. Despite sophisticated laundering tactics, authorities recovered $3.6 billion. His wife, Heather Morgan, faces sentencing for aiding the scheme, spotlighting cryptocurrency vulnerabilities and regulatory challenges.
7. PDRM Malaysian Police Establishes Cyber Unit to Combat Online Crimes
Inspector-General Razarudin Husain announced PDRM’s new cyber unit in Malaysia to tackle complex online crimes, including AI-driven deepfake scams. With 17 positions filled using internal resources, this initiative aims to modernize policing. Announced earlier on Police Day, it highlights proactive measures to combat evolving cyber threats and enhance technology-driven crime prevention.
8. DEEPDATA Malware Exploits Fortinet Flaw to Steal VPN Credentials
The BrazenBamboo threat actor exploits an unpatched Fortinet FortiClient vulnerability to extract VPN credentials via DEEPDATA, a sophisticated Windows-based spyware. Linked to China’s APT41, the malware also targets communication platforms. Despite reporting the flaw in July 2024, it remains unresolved, amplifying BrazenBamboo’s multi-platform espionage and data exfiltration capabilities.
ALSO READ: Nominations Open for ‘Women in Cyber’ Honors at FutureCrime Summit 2025
9. Cybersecurity Gaps in US Water Systems Endanger 26 Million
The U.S. EPA Inspector General’s report reveals critical cybersecurity vulnerabilities in 97 drinking water systems serving 26.6 million people. An additional 211 systems face medium-risk issues. Aging infrastructure, limited cybersecurity resources, and lack of centralized incident reporting hinder timely threat response, exposing essential water systems to potential cyberattacks.
10. Critical PostgreSQL Vulnerability Rated 8.8 Threatens Databases
Cybersecurity researchers discovered CVE-2024-10979, a high-severity vulnerability (CVSS 8.8) in PostgreSQL. The flaw allows unprivileged users to exploit PL/Perl extensions, manipulating environment variables to execute malicious code or steal sensitive data. Users are urged to update to patched versions and restrict extension permissions to safeguard databases against attacks.