Feb 4, 06:15 AM

Russian Cyber Gang 'Crazy Evil' Steals Over $5M Targeting Crypto Users as Google Fixes CVE-2024-53104 and Microsoft Addresses CVE-2025-21415

A Russian-speaking cybercriminal group known as 'Crazy Evil' has reportedly stolen over $5 million through targeted social media scams, utilizing malware such as StealC, AMOS, and Angel Drainer. These scams specifically target cryptocurrency holders, employing tailored phishing tactics to drain digital wallets. In addition to this, Google has addressed 47 security vulnerabilities in Android, including a critical flaw (CVE-2024-53104) that allows attackers to escalate privileges through the USB Video Class driver. Microsoft has also issued critical patches for vulnerabilities in its Azure AI Face Service and Microsoft Account, with one flaw (CVE-2025-21415) having a public exploit. Furthermore, North Korean hackers are deploying FERRET malware via fake job interviews on macOS, posing as recruiters to lure victims into compromising their systems. These developments highlight ongoing cybersecurity threats affecting both individual users and major tech platforms.

#Crazy Evil #StealC #AMOS #Angel Drainer #Google #Android #USB Video Class #Microsoft #Azure AI Face Service #Microsoft Account #North Korean #FERRET #macOS

Written with ChatGPT (GPT-4o mini).

Sources

Additional media

Image #1 for story russian-cyber-gang-crazy-evil-steals-over-5m-targeting-crypto-users-google-fixes-a389453b

Image #2 for story russian-cyber-gang-crazy-evil-steals-over-5m-targeting-crypto-users-google-fixes-a389453b