Cyber Crime
Top 10 Daily Cybercrime Brief by FCRF [12.08.2024]: Click here to Know More
Important global cybercrime news has been curated by Futurecrime Researchers to keep you informed about various types of digital fraud occurring worldwide and to provide insights into the best mitigation strategies. Read below to learn more in detail.
1. Telangana Man Duped by a fake job offer is forced into Cybercrime
A man from Telangana’s Jagtial was trafficked to Cambodia under the false promise of a lucrative job. After paying a placement fee, he was forced to work for a cyber fraud operation with Chinese links. His family managed to secure his release through the Indian Embassy after sending money for his food and return flight.
2. Cyber Cell Nabs Three, Uncovers Online Investment Scam
Delhi Police’s Cyber Cell arrested three men from Maharashtra for an online stock market investment scam, where a victim lost Rs 36.27 lakh. The fraudsters, who laundered money through multiple bank accounts and converted it into cryptocurrency, were caught after a police raid. The syndicate’s mastermind remains at large.
3. Cybercriminals Cheat Two of Rs 10 Crore in IPO Fraud
In Hyderabad, two professionals lost over Rs 10 crore in separate cyber scams involving fake IPO investments. Posing as representatives of Goldman Sachs and IIFL Securities, the fraudsters lured victims through WhatsApp and Facebook, convincing them to invest in fraudulent stock schemes. Both victims have filed complaints, and investigations are ongoing.
4. Mancherial Resident Loses Rs. 88,000 in Cyber Fraud
In Mancherial, cyber fraudsters scammed Rs 88,000 from a person in Kottur village by tricking him with a fake cash prize link on Telegram. After gaining his trust, they siphoned off the funds in phases. The victim reported the fraud to the police, who have initiated an investigation.
OTHER DEVELOPMENTS: FCRF Launches ‘Cyber Safe Uttar Pradesh’ Initiative to Combat Rising Cyber Crime
5. Delhi Police Arrests Three Cybercriminals from Jalgaon, Maharashtra
Three men from Maharashtra were arrested for defrauding a woman of Rs 36.27 lakh in a fake share market investment scheme. The accused, identified as Jayesh Bhole, Rakesh Jadhav, and Harshwardhan Bhosale, were nabbed in Jalgaon. Two are unemployed, while Jadhav runs a transport business.
INTERNATIONAL
6. Iranian Cyber Attack Affects US Election: Trump Campaign Implicated
Iranian hackers, linked to Iran’s Revolutionary Guard, targeted a US presidential campaign, breaching the account of a former adviser and attempting to spear-phish a senior official. The attack, attributed to the group MintSandstorm, has reignited concerns about foreign interference in the 2024 US election, particularly targeting Donald Trump.
7. ‘Digital Vaccine’ Initiative Aims to Protect Vulnerable Groups from Cyber Scams
The government has launched the “digital vaccine” campaign, led by Digital Economy Minister Prasert Chantararuangthong, to enhance cybersecurity awareness and protect against online scams. Partnering with 11 agencies, including the Royal Thai Police, the campaign targets vulnerable groups, educating them on safe online practices amid rising cybercrime.
ALSO READ: FutureCrime Summit: Biggest Conference on Cyber Crimes Set to Return in February 2025
8. Spyware Alert: 32,000 Downloads from Google Play Store
Kaspersky discovered a new spyware campaign spreading the ‘Mandrake’ malware on Google Play, disguised as legitimate apps for cryptocurrency and utilities. The malware, active for years, evaded detection using advanced obfuscation techniques. Over 32,000 downloads occurred before the apps were removed in July 2024.
9. EastWind Attack Uses Booby-Trapped LNK Files to Deploy PlugY and GrewApacha Backdoors
A spear-phishing campaign, dubbed EastWind, targets Russian IT and government organizations, delivering backdoors and trojans like GrewApacha, CloudSorcerer, and PlugY. Using booby-trapped LNK files, the malware conducts espionage, data theft, and remote control via cloud services like Dropbox and GitHub. Kaspersky also uncovered related CMoon worm attacks.
10. Rogue PyPI Library Targets Solana Users, Steals Blockchain Wallet Keys
A malicious package named “solana-py” on PyPI, disguised as a legitimate Solana library, stole blockchain wallet keys and garnered 1,122 downloads before being removed. The rogue package used version numbers to deceive users and exfiltrated stolen data to the Hugging Face domain. This highlights risks in software supply chains.