Europol coordinates global action against criminal abuse of Cobalt Strike


Law enforcement has teamed up with the private sector to fight against the abuse of a legitimate security tool by criminals who were using it to infiltrate victims’ IT systems.

Older, unlicensed versions of the Cobalt Strike red teaming tool were targeted during a week of action coordinated from Europol’s headquarters between 24 and 28 June. Throughout the week, law enforcement flagged known IP addresses associated with criminal activity, along with a range of domain names used by criminal groups, for online service providers to disable unlicensed versions of the tool.

Read more…
Source: Europol


Sign up for our Newsletter


Related:

  • UK teen arrested for alleged role in MGM Resorts cyberattack

    July 21, 2024

    A 17-year-old boy from Walsall has been arrested in connection with the September 2023 cyberattack that crippled MGM Resorts for several days. The West Midlands Police, working alongside the FBI and the National Crime Agency (NCA), apprehended the teenager on Thursday, 18th July, on suspicion of violating the UK’s Computer Misuse Act and blackmail offenses. Authorities ...

  • Student who created malware worth £45k while living with parents is jailed

    July 17, 2024

    A university student who created malware targeting government websites while living with his parents has been jailed. Amar Tagore, 21, a third year university student, offered buyers malware (malicious software) to disrupt corporate and state-run websites, while living with his parents in Alexandria, West Dunbartonshire. He supplied a tool used by hundreds of online customers to ...

  • Cybercrime groups restructuring after major takedowns

    July 6, 2024

    Cybercrime gangs are looking to rebuild with new tactics after global police operations this year made a huge dent in their activities, experts have told AFP. The gangs have had a bad year so far, with law enforcement operations taking out some of prominent groups including LockBit, a loose network of largely Russian-speaking cyber criminals. LockBit ...

  • Cyber extortion sees huge rise – and small businesses are four times more likely to be hit

    July 4, 2024

    Cyber extortion remains the most prominent threat facing businesses of all sizes across all industries, a new report from Orange Cyberdefense has found. The 2024 Cy-Explorer report worryingly uncovered that the number of victims of cyber extortion scams has grown by 77% year on year. In Q1 of 2024 alone, there were 1,046 organizations that were ...

  • Europol coordinates global action against criminal abuse of Cobalt Strike

    July 3, 2024

    Law enforcement has teamed up with the private sector to fight against the abuse of a legitimate security tool by criminals who were using it to infiltrate victims’ IT systems. Older, unlicensed versions of the Cobalt Strike red teaming tool were targeted during a week of action coordinated from Europol’s headquarters between 24 and 28 June. ...

  • Michigan County Restores 80 Percent of Systems After Cyber Attack

    June 27, 2024

    The computer-aided dispatch system for Grand Traverse County’s 911 service is officially back online following a cyberattack that disabled the system and many other governmental services. “As of 2 p.m. yesterday, it was operational for all first responders,” said County Administrator Nate Alger at Wednesday’s county board meeting. “I know Cherry Festival is just three days ...