CyberCrime List 2025- 2026 2025 2024 2023 2021 2020 2019 2018 2017
DATE | NAME |
Info | CATEG. |
WEB |
| 31.12.25 | Cyberattack knocks offline France's postal, banking services | The French national postal service's online services were knocked offline by "a major network incident" on Monday, disrupting digital banking and other services for millions. | CyberCrime | |
| 21.12.25 | France arrests suspect tied to cyberattack on Interior Ministry | French authorities arrested a 22-year-old suspect on Tuesday for a cyberattack that targeted France's Ministry of the Interior earlier this month. | CyberCrime | |
| 17.12.25 | Google to Shut Down Dark Web Monitoring Tool in February 2026 | Google has announced that it's discontinuing its dark web report tool in February 2026, less than two years after it was launched as a way for users to monitor if their personal | CyberCrime | The Hacker News |
| 13.12.25 | Portugal updates cybercrime law to exempt security researchers | Portugal has modified its cybercrime law to establish a legal safe harbor for good-faith security research and to make hacking non-punishable under certain strict conditions. | CyberCrime | |
|
6.12.25 |
Korea arrests suspects selling intimate videos from hacked IP cameras | The Korean National Police have arrested four individuals suspected of hacking over 120,000 IP cameras across the country and then selling stolen footage to a foreign adult site. | CyberCrime | |
|
6.12.25 |
Cybercrime Goes SaaS: Renting Tools, Access, and Infrastructure | Cybercrime has fully shifted to a subscription model, with phishing kits, Telegram OTP bots, infostealer logs, and even RATs now rented like SaaS tools. Varonis explains how this "crime-as-a-service" economy lowers the barrier to entry and gives low-skill attackers on-demand access to advanced capabilities. | CyberCrime | |
| 30.11.25 | Man behind in-flight Evil Twin WiFi attacks gets 7 years in prison | A 44-year-old man was sentenced to seven years and four months in prison for operating an "evil twin" WiFi network to steal the data of unsuspecting travelers at various airports across Australia. | CyberCrime | |
| 30.11.25 | FBI: Cybercriminals stole $262M by impersonating bank support teams | The FBI warns of a surge in account takeover (ATO) fraud schemes and says that cybercriminals impersonating various financial institutions have stolen over $262 million in ATO attacks since the start of the year. | CyberCrime | |
| 27.11.25 | Gainsight Expands Impacted Customer List Following Salesforce Security Alert | Gainsight has disclosed that the recent suspicious activity targeting its applications has affected more customers than previously thought. The company said Salesforce initially | CyberCrime | The Hacker News |
| 27.11.25 | Shai-Hulud v2 Spreads From npm to Maven, as Campaign Exposes Thousands of Secrets | The second wave of the Shai-Hulud supply chain attack has spilled over to the Maven ecosystem after compromising more than 830 packages in the npm registry. The Socket | CyberCrime | The Hacker News |
| 25.11.25 | CISA Warns of Active Spyware Campaigns Hijacking High-Value Signal and WhatsApp Users | The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday issued an alert warning of bad actors actively leveraging commercial spyware and remote access trojans | CyberCrime | The Hacker News |
| 24.11.25 | Second Sha1-Hulud Wave Affects 25,000+ Repositories via npm Preinstall Credential Theft | Multiple security vendors are sounding the alarm about a second wave of attacks targeting the npm registry in a manner that's reminiscent of the Shai-Hulud attack . The new supply | CyberCrime | The Hacker News |
| 21.11.25 | Salesforce Flags Unauthorized Data Access via Gainsight-Linked OAuth Activity | Salesforce has warned of detected "unusual activity" related to Gainsight-published applications connected to the platform. "Our investigation indicates this activity may have | CyberCrime | The Hacker News |
| 20.11.25 | Dutch police seizes 250 servers used by “bulletproof hosting” service | The police in the Netherlands have seized around 250 physical servers powering a bulletproof hosting service in the country used exclusively by cybercriminals for providing complete anonymity. | CyberCrime | |
| 16.11.25 | Police disrupts Rhadamanthys, VenomRAT, and Elysium malware operations | Law enforcement authorities from 9 countries have taken down 1,025 servers used by the Rhadamanthys infolstealer, VenomRAT, and Elysium botnet malware operations in the latest phase of Operation Endgame, an international action targeting cybercrime. | CyberCrime | |
| 9.11.25 | UK carriers to block spoofed phone numbers in fraud crackdown | Under a new partnership with the government aimed at combating fraud, Britain's largest mobile carriers have committed to upgrading their networks to eliminate scammers' ability to spoof phone numbers within a year. | CyberCrime | |
| 9.11.25 | Police busts credit card fraud rings with 4.3 million victims | International authorities have dismantled three massive credit card fraud and money laundering networks, linked to losses exceeding €300 million ($344 million) and affecting over 4.3 million cardholders across 193 countries. | CyberCrime | |
| 8.11.25 | Police arrests suspects linked to €600 million crypto fraud ring | European law enforcement authorities have arrested nine suspected money launderers who set up a cryptocurrency fraud network that stole over €600 million ($689 million) from victims across multiple countries. | CyberCrime | |
| 4.11.25 | A Cybercrime Merger Like No Other — Scattered Spider, LAPSUS$, and ShinyHunters Join Forces | The nascent collective that combines three prominent cybercrime groups, Scattered Spider, LAPSUS$, and ShinyHunters, has created no less than 16 Telegram channels since August 8, | CyberCrime | The Hacker News |
| 4.11.25 | Microsoft Teams Bugs Let Attackers Impersonate Colleagues and Edit Messages Unnoticed | Cybersecurity researchers have disclosed details of four security flaws in Microsoft Teams that could have exposed users to serious impersonation and social engineering attacks. The | CyberCrime | The Hacker News |
| 4.11.25 | Operation SkyCloak Deploys Tor-Enabled OpenSSH Backdoor Targeting Defense Sectors | Google's artificial intelligence (AI)-powered cybersecurity agent called Big Sleep has been credited by Apple for discovering as many as five different security flaws in the WebKit | CyberCrime | The Hacker News |
| 30.10.25 | ThreatsDay Bulletin: DNS Poisoning Flaw, Supply-Chain Heist, Rust Malware Trick and New RATs Rising | The comfort zone in cybersecurity is gone. Attackers are scaling down, focusing tighter, and squeezing more value from fewer, high-impact targets. At the same time, defenders face | CyberCrime | |
| 20.10.25 | Europol Dismantles SIM Farm Network Powering 49 Million Fake Accounts Worldwide | Europol on Friday announced the disruption of a sophisticated cybercrime-as-a-service (CaaS) platform that operated a SIM farm and enabled its customers to carry out a broad | CyberCrime | The Hacker News |
| 19.10.25 | Europol dismantles SIM box operation renting numbers for cybercrime | European law enforcement in an operation codenamed 'SIMCARTEL' has dismantled an illegal SIM-box service that enabled more than 3,200 fraud cases and caused at least 4.5 million euros in losses. | CyberCrime | |
| 19.10.25 | PowerSchool hacker gets sentenced to four years in prison | 19-year-old college student Matthew D. Lane, from Worcester, Massachusetts, was sentenced to 4 years in prison for orchestrating a cyberattack on PowerSchool in December 2024 that resulted in a massive data breach. | CyberCrime | |
|
7.10.25 |
Chinese Cybercrime Group Runs Global SEO Fraud Ring Using Compromised IIS Servers | Cybersecurity researchers have shed light on a Chinese-speaking cybercrime group codenamed UAT-8099 that has been attributed to search engine optimization (SEO) fraud and theft of high- | CyberCrime | |
| 28.9.25 | Teen suspected of Vegas casino cyberattacks released to parents | A 17-year-old hacker who surrendered to face charges over cyberattacks targeting Vegas casinos in 2023 has been released into the custody of his parents, a family court judge ruled. | CyberCrime | |
| 28.9.25 | Police seizes $439 million stolen by cybercrime rings worldwide | In a five-month joint operation led by Interpol, law enforcement agencies have seized more than $439 million in cash and cryptocurrency linked to cyber-enabled financial crimes that impacted thousands of victims worldwide. | CyberCrime | |
| 27.9.25 | Verified Steam game steals streamer's cancer treatment donations | A gamer seeking financial support for cancer treatment lost $32,000 after downloading from Steam a verified game named BlockBlasters that drained his cryptocurrency wallet. | CyberCrime | |
| 24.9.25 | U.S. Secret Service Seizes 300 SIM Servers, 100K Cards Threatening U.S. Officials Near UN | The U.S. Secret Service on Tuesday said it took down a network of electronic devices located across the New York tri-state area that were used to threaten U.S. government officials and | CyberCrime | The Hacker News |
| 21.9.25 | FBI warns of cybercriminals using fake FBI crime reporting portals | The FBI warned today that cybercriminals are impersonating its Internet Crime Complaint Center (IC3) website in what the law enforcement agency described as "possible malicious activity." | CyberCrime | |
| 21.9.25 | UK arrests 'Scattered Spider' teens linked to Transport for London hack | Two teenagers, believed to be linked to the August 2024 cyberattack on Transport for London, have been arrested in the United Kingdom. | CyberCrime | |
| 20.9.25 | Google confirms fraudulent account created in law enforcement portal | Google has confirmed that hackers created a fraudulent account in its Law Enforcement Request System (LERS) platform that law enforcement uses to submit official data requests to the company | CyberCrime | |
| 19.9.25 | U.K. Arrests Two Teen Scattered Spider Hackers Linked to August 2024 TfL Cyber Attack | Law enforcement authorities in the U.K. have arrested two teen members of the Scattered Spider hacking group in connection with their alleged participation in an August 2024 cyber | CyberCrime | The Hacker News |
| 18.9.25 | Man gets over 4 years in prison for selling unreleased movies | A Tennessee court has sentenced a Memphis man who worked for a DVD and Blu-ray manufacturing and distribution company to 57 months in prison for stealing and selling digital copies of unreleased movies. | CyberCrime | |
| 17.9.25 | Threat Spotlight: ShinyHunters Targets Salesforce Amid Clues of Scattered Spider Collaboration | In our original investigation posted on August 12, 2025, ReliaQuest predicted that the Scattered Spider hacking collective, linked to ShinyHunters, would soon shift their focus to the financial sector. | CyberCrime | RELIAQUEST |
| 17.9.25 | Scattered Spider Resurfaces With Financial Sector Attacks Despite Retirement Claims | Cybersecurity researchers have tied a fresh round of cyber attacks targeting financial services to the notorious cybercrime group known as Scattered Spider , | CyberCrime | The Hacker News |
| 17.9.25 | DOJ Resentences BreachForums Founder to 3 Years for Cybercrime and Possession of CSAM | The U.S. Department of Justice (DoJ) on Tuesday resentenced the former administrator of BreachForums to three years in prison in connection with his role in | CyberCrime | The Hacker News |
| 7.9.25 | Tamperedchef – The Bad PDF Editor | Truesec has observed what appears to be a large cybercrime campaign, involving multiple fraudulent websites promoted through a Google advertising campaign. | CyberCrime | TRUESEC |
| 4.9.25 | Salesloft Takes Drift Offline After OAuth Token Theft Hits Hundreds of Organizations | Salesloft on Tuesday announced that it's taking Drift temporarily offline "in the very near future," as multiple companies have been ensnared in a far-reaching supply | CyberCrime | The Hacker News |
| 31.8.25 | Police seize VerifTools fake ID marketplace servers, domains | The FBI and the Dutch Police have shut down the VerifTools marketplace for fraudulent identity documents after seizing servers in Amsterdam that hosted the online operation. | CyberCrime | |
| 30.8.25 | Massive anti-cybercrime operation leads to over 1,200 arrests in Africa | Law enforcement authorities in Africa have arrested over 1,200 suspects as part of 'Operation Serengeti 2.0,' an INTERPOL-led international crackdown targeting cross-border cybercriminal gangs. | CyberCrime | BleepingComputer |
| 29.8.25 | Feds Seize $6.4M VerifTools Fake-ID Marketplace, but Operators Relaunch on New Domain | Authorities from the Netherlands and the United States have announced the dismantling of an illicit marketplace called VerifTools that peddled fraudulent | CyberCrime | The Hacker News |
| 29.8.25 | TamperedChef Malware Disguised as Fake PDF Editors Steals Credentials and Cookies | Cybersecurity researchers have discovered a cybercrime campaign that's using malvertising tricks to direct victims to fraudulent sites to deliver a new information | CyberCrime | The Hacker News |
| 24.8.25 | Massive anti-cybercrime operation leads to over 1,200 arrests in Africa | Law enforcement authorities in Africa have arrested over 1,200 suspects as part of 'Operation Serengeti 2.0,' an INTERPOL-led international crackdown targeting cross-border cybercriminal gangs. | CyberCrime | |
| 24.8.25 | Dev gets 4 years for creating kill switch on ex-employer's systems | A software developer has been sentenced to four years in prison for sabotaging his ex-employer's Windows network with custom malware and a kill switch that locked out employees when his account was disabled. | CyberCrime | |
| 24.8.25 | Scattered Spider hacker gets sentenced to 10 years in prison | Noah Michael Urban, a key member of the Scattered Spider cybercrime collective, was sentenced to 10 years in prison on Wednesday after pleading guilty to charges of wire fraud and conspiracy in April. | CyberCrime | |
| 23.8.25 | UK sentences “serial hacker” of 3,000 sites to 20 months in prison | A 26-year old in the UK who claimed to have hacked thousands of websites was sentenced to 20 months in prison after pleading guilty earlier this year. | CyberCrime | |
| 22.8.25 | INTERPOL Arrests 1,209 Cybercriminals Across 18 African Nations in Global Crackdown | INTERPOL on Friday announced that authorities from 18 countries across Africa have arrested 1,209 cybercriminals who targeted 88,000 victims. "The crackdown | CyberCrime | The Hacker News |
| 22.8.25 | Ex-Developer Jailed Four Years for Sabotaging Ohio Employer with Kill-Switch Malware | A 55-year-old Chinese national has been sentenced to four years in prison and three years of supervised release for sabotaging his former employer's network with | CyberCrime | The Hacker News |
| 13.8.25 | Cybercrime Groups ShinyHunters, Scattered Spider Join Forces in Extortion Attacks on Businesses | An ongoing data extortion campaign targeting Salesforce customers may soon turn its attention to financial services and technology service providers, as ShinyHunters | CyberCrime | The Hacker News |
| 25.7.25 | Operator of Jetflicks illegal streaming service gets 7 years in prison | The ringleader of the Jetflicks illegal paid streaming operation, a massive service with tens of thousands of subscribers, was sentenced to seven years in prison. | CyberCrime | |
| 20.7.25 | U.S. Army soldier pleads guilty to extorting 10 tech, telecom firms | A 21-year old former U.S. Army soldier pleaded guilty to charges of hacking and extorting at least ten telecommunications and technology companies in the country. | CyberCrime | |
| 18.7.25 | Europol disrupts pro-Russian NoName057(16) DDoS hacktivist group | An international law enforcement operation dubbed "Operation Eastwood" has targeted the infrastructure of the pro-Russian hacktivist group NoName057(16), responsible for distributed denial-of-service (DDoS) attacks across Europe and the US. | CyberCrime | |
| 18.7.25 | Abacus dark web drug market goes offline in suspected exit scam | Abacus Market, the largest Western darknet marketplace supporting Bitcoin payments, has shut down its public infrastructure in a move suspected to be an exit scam. | CyberCrime | |
| 13.7.25 | Russian pro basketball player arrested for alleged role in ransomware attacks | Russian professional basketball player Daniil Kasatkin was arrested in France at the request of the United States for allegedly acting as a negotiator for a ransomware gang. | CyberCrime | |
| 13.7.25 | Four arrested in UK over M&S, Co-op, Harrods cyberattacks | The UK's National Crime Agency (NCA) arrested four people suspected of being involved in cyberattacks on major retailers in the country, including Marks & Spencer, Co-op, and Harrods. | CyberCrime | BleepingComputer |
| 10.7.25 | Four Arrested in £440M Cyber Attack on Marks & Spencer, Co-op, and Harrods | The U.K. National Crime Agency (NCA) on Thursday announced that four people have been arrested in connection with cyber attacks targeting major retailers Marks | CyberCrime | The Hacker News |
| 6.7.25 | Police dismantles investment fraud ring stealing €10 million | The Spanish police have dismantled a large-scale investment fraud operation based in the country, which has caused cumulative damages exceeding €10 million ($11.8M). | CyberCrime | |
| 5.7.25 | Spain arrests hackers who targeted politicians and journalists | The Spanish police have arrested two individuals in the province of Las Palmas for their alleged involvement in cybercriminal activity, including data theft from the country's government. | CyberCrime | |
| 5.7.25 | International Criminal Court hit by new 'sophisticated' cyberattack | On Monday, the International Criminal Court (ICC) announced that it's investigating a new "sophisticated" cyberattack that targeted its systems last week. | CyberCrime | |
| 3.7.25 | Europol helps disrupt $540 million crypto investment fraud ring | Spanish authorities have arrested five individuals in Madrid and the Canary Islands, suspected of laundering $540 million (€460 million) from illegal cryptocurrency investment schemes and defrauding more than 5,000 victims. | CyberCrime | |
| 3.7.25 | FBI: Cybercriminals steal health data posing as fraud investigators | The Federal Bureau of Investigation (FBI) has warned Americans of cybercriminals impersonating health fraud investigators to steal their sensitive information. | CyberCrime | |
| 1.7.25 | Europol Dismantles $540 Million Cryptocurrency Fraud Network, Arrests Five Suspects | Europol on Monday announced the takedown of a cryptocurrency investment fraud ring that laundered €460 million ($540 million) from more than 5,000 victims across | CyberCrime | The Hacker News |
| 21.6.25 | Police seizes Archetyp Market drug marketplace, arrests admin | Law enforcement authorities from six countries took down the Archetyp Market, an infamous darknet drug marketplace that has been operating since May 2020. | CyberCrime | BleepingComputer |
| 14.6.25 | Operation Secure disrupts global infostealer malware operations | An international law enforcement action codenamed "Operation Secure" targeted infostealer malware infrastructure in a massive crackdown across 26 countries, resulting in 32 arrests, data seizures, and server takedowns. | CyberCrime | |
| 11.6.25 | INTERPOL Dismantles 20,000+ Malicious IPs Linked to 69 Malware Variants in Operation Secure | INTERPOL on Wednesday announced the dismantling of more than 20,000 malicious IP addresses or domains that have been linked to 69 information-stealing | CyberCrime | The Hacker News |
| 7.6.25 | BidenCash carding market domains seized in international operation | Earlier today, law enforcement seized multiple domains of BidenCash, the infamous dark web market for stolen credit cards, personal information, and SSH access. | CyberCrime | BleepingComputer |
| 6.6.25 | Google Chrome to distrust Chunghwa Telecom, Netlock certificates in August | Google says it will no longer trust root CA certificates signed by Chunghwa Telecom and Netlock in the Chrome Root Store due to a pattern of compliance failures and failure to make improvements. | CyberCrime | BleepingComputer |
| 6.6.25 | ‘Russian Market’ emerges as a go-to shop for stolen credentials | The "Russian Market" cybercrime marketplace has emerged as one of the most popular platforms for buying and selling credentials stolen by information stealer malware. | CyberCrime | BleepingComputer |
| 5.6.25 | DoJ Seizes 145 Domains Tied to BidenCash Carding Marketplace in Global Takedown | The U.S. Department of Justice (DoJ) on Wednesday announced the seizure of cryptocurrency funds and about 145 clearnet and dark web domains associated | CyberCrime | The Hacker News |
| 1.6.25 | Police takes down AVCheck site used by cybercriminals to scan malware | An international law enforcement operation has taken down AVCheck, a service used by cybercriminals to test whether their malware is detected by commercial antivirus software before deploying it in the wild. | CyberCrime | BleepingComputer |
| 1.6.25 | Germany doxxes Conti ransomware and TrickBot ring leader | The Federal Criminal Police Office of Germany (Bundeskriminalamt or BKA) claims that Stern, the leader of the Trickbot and Conti cybercrime gangs, is a 36-year-old Russian named Vitaly Nikolaevich Kovalev. | CyberCrime | BleepingComputer |
| 1.6.25 | U.S. DoJ Seizes 4 Domains Supporting Cybercrime Crypting Services in Global Operation | A multinational law enforcement operation has resulted in the takedown of an online cybercrime syndicate that offered services to threat actors to ensure that | CyberCrime | The Hacker News |
| 26.4.25 | FBI: US lost record $16.6 billion to cybercrime in 2024 | FBI: US lost record $16.6 billion to cybercrime in 2024 | CyberCrime | |
| 10.4.25 | EncryptHub's dual life: Cybercriminal vs Windows bug-bounty researcher | EncryptHub, a notorious threat actor linked to breaches at 618 organizations, is believed to have reported two Windows zero-day vulnerabilities to Microsoft, revealing a conflicted figure straddling the line between cybercrime and security research. | CyberCrime | |
| 5.4.25 | Police shuts down KidFlix child sexual exploitation platform | Kidflix, one of the largest platforms used to host, share, and stream child sexual abuse material (CSAM) on the dark web, was shut down on March 11 following a joint action coordinated by German law enforcement. | CyberCrime | BleepingComputer |
| 3.4.25 | Europol Dismantles Kidflix With 72,000 CSAM Videos Seized in Major Operation | In one of the largest coordinated law enforcement operations, authorities have dismantled Kidflix, a streaming platform that offered child sexual abuse material | CyberCrime | The Hacker News |
|
29.3.25 |
New Atlantis AIO platform automates credential stuffing on 140 services | A new cybercrime platform named 'Atlantis AIO' provides an automated credential stuffing service against 140 online platforms, including email services, e-commerce sites, banks, and VPNs. | CyberCrime | |
|
26.3.25 |
Police arrests 300 suspects linked to African cybercrime rings | African law enforcement authorities have arrested 306 suspects as part of 'Operation Red Card,' an INTERPOL-led international crackdown targeting cross-border cybercriminal networks. | CyberCrime | |
|
26.3.25 |
Hackers Using E-Crime Tool Atlantis AIO for Credential Stuffing on 140+ Platforms | Threat actors are leveraging an e-crime tool called Atlantis AIO Multi-Checker to automate credential stuffing attacks, according to findings from Abnormal | CyberCrime | The Hacker News |
|
25.3.25 |
Hackers Use .NET MAUI to Target Indian and Chinese Users with Fake Banking, Social Apps | Cybersecurity researchers are calling attention to an Android malware campaign that leverages Microsoft's .NET Multi-platform App UI (.NET MAUI) framework to | CyberCrime | The Hacker News |
|
25.3.25 |
INTERPOL Arrests 306 Suspects, Seizes 1,842 Devices in Cross-Border Cybercrime Bust | Law enforcement authorities in seven African countries have arrested 306 suspects and confiscated 1,842 devices as part of an international operation | CyberCrime | The Hacker News |
|
20.3.25 |
Fake "Security Alert" issues on GitHub use OAuth app to hijack accounts | A widespread phishing campaign has targeted nearly 12,000 GitHub repositories with fake "Security Alert" issues, tricking developers into authorizing a malicious OAuth app that grants attackers full control over their accounts and code. | CyberCrime | |
| 9.3.25 | Cybercrime 'crew' stole $635,000 in Taylor Swift concert tickets | New York prosecutors say that two people working at a third-party contractor for the StubHub online ticket marketplace made $635,000 after almost 1,000 concert tickets and reselling them online. | CyberCrime | BleepingComputer |
| 8.3.25 | Microsoft Warns of Malvertising Campaign Infecting Over 1 Million Devices Worldwide | Microsoft has disclosed details of a large-scale malvertising campaign that's estimated to have impacted over one million devices globally as part of what it | CyberCrime | The Hacker News |
| 1.3.25 | Suspected Desorden hacker arrested for breaching 90 organizations | A suspected cyber criminal believed to have extorted companies under the name "DESORDEN Group" or "ALTDOS" has been arrested in Thailand for leaking the stolen data of over 90 organizations worldwide. | CyberCrime | BleepingComputer |
|
14.1.25 | WordPress Skimmers Evade Detection by Injecting Themselves into Database Tables | Cybersecurity researchers are warning of a new stealthy credit card skimmer campaign that targets WordPress e-commerce checkout pages by inserting | CyberCrime | The Hacker News |