Schneier on Security

DECEMBER 14, 2018

I wrote about this exact attack in 2005 and 2009. In the event targets' accounts were protected by 2fa, the attackers redirected targets to a new page that requested a one-time password. This isn't new.

Authentication 225

Authentication Passwords Phishing Government 225

Adam Levin

MAY 24, 2019

Google announced a glitch that stored unencrypted passwords belonging to several business customers, a situation that had been exploitable since 2005. This issue has been fixed and, again, we have seen no evidence of improper access to or misuse of the affected passwords.

Passwords 247

Passwords System Administration Encryption 247

WIRED Threat Level

MAY 21, 2019

On the heels of embarrassing disclosures from Facebook and Twitter, Google reveals its own password bugs—one of which lasted 14 years.

Passwords 106

Passwords 106

Krebs on Security

NOVEMBER 8, 2020

In 2005, AOL won a $12.8 Hawke had reportedly bragged about the money he earned from spam, but told friends he didn’t trust banks and decided to convert his earnings into gold and platinum bars. That sparked rumors that he had possibly buried his ill-gotten gains on his parents’ Massachusetts property.

Banking 363

Banking Government Technology 363

Krebs on Security

JUNE 22, 2022

Stanx said he was a longtime member of several major forums, including the Russian hacker forum Antichat (since 2005), and the Russian crime forum Exploit (since April 2013). In an early post to Antichat in January 2005, Stanx disclosed that he is from Omsk , a large city in the Siberian region of Russia.

Advertising 323

Advertising Cybercrime System Administration Hacking 323

Joseph Steinberg

JUNE 14, 2021

Bennett spent several years as the New York-based CEO of the firm, before he and his partners sold Cyota to RSA Security in 2005 for $145 Million. Bennett, who is also the first Prime Minister to emerge from Israel’s high-tech industry, co-founded what would eventually become the cybersecurity firm, Cyota , in 1999.

Government 246

Government Cybersecurity Artificial Intelligence Technology 246

Anton on Security

FEBRUARY 6, 2025

We dont want people creatively repeat 2015 mistakes in 2025 especially because there are 2005 mistakes to be repeated? I suggest you go read it, especially if you are at the tieing my shoelaces seems really hard stage of your development with SIEM and TI (or if you like my jokes). So I want to push this forward.

Threat Detection 130

Threat Detection Engineering 130

Krebs on Security

MAY 4, 2023

Launched in 2005, Try2Check soon was processing more than a million card-checking transactions per month — charging 20 cents per transaction. ” In February 2005, Nordex posted to Mazafaka that he was in the market for hacked bank accounts, and offered 50 percent of the take. Denis Kulkov, a.k.a. Image: USDOJ.

Marketing 301

Marketing Cybercrime Accountability Hacking 301

The Hacker News

JULY 20, 2021

Details have emerged about a high severity security vulnerability affecting a software driver used in HP, Xerox, and Samsung printers that has remained undetected since 2005.

Software 124

Software 124

Heimadal Security

JANUARY 21, 2022

TrickBot is a distant descendent of the ZeuS banking Trojan, which first appeared in 2005, although it is most commonly associated with Dyre or Dyreza, which went down in 2015. TrickBot appeared in 2016, replicating parts of Dyre’s malware while preserving its banking credential harvesting and web inject architecture.

Ransomware 125

Ransomware Banking Architecture Malware 125

Schneier on Security

JANUARY 30, 2018

In 2005, I coined the term "movie-plot threat" to denote a threat scenario that caused undue fear solely because of its specificity. "Knowing that, and then seeing the proposal for giant glass structures in front of my building ­- ding ding ding! -- what does a giant glass structure become in the event of an explosion?"

175

175

Krebs on Security

SEPTEMBER 1, 2021

An ad circa 2005 for A311 Death, a powerful banking trojan authored by “Corpse,” the administrator of the early Russian hacking clique Prodexteam. Image: Google Translate via Archive.org.

Malware 344

Malware Cybercrime Internet Internet 344

Krebs on Security

JUNE 28, 2022

ru’s original WHOIS records, which shows it was assigned in 2005 to a “private person” who used the email address lycefer@gmail.com. ru)was registered in 2005 to two men, one of whom was named Dmitry Sergeevich Starovikov. And maybe that was the point. and starovikov[.]com.

Passwords 312

Passwords Malware Internet Internet 312

Heimadal Security

NOVEMBER 3, 2023

ISO 27001, sometimes referred to as ISO/IEC 27001 is an international standard that addresses organizational information security.

Data privacy 105

Data privacy Information Security Cybersecurity 105

The Hacker News

JUNE 18, 2022

Founded back in 2005, Palo Alto Networks is a cybersecurity giant that has earned the trust of the business community thanks to its impressive track record. In the world of cybersecurity, reputation is everything. Most business owners have little understanding of the technical side, so they have to rely on credibility.

Cybersecurity 102

Cybersecurity 102

Security Affairs

NOVEMBER 27, 2020

The hackers accessed company file servers that contained information about current and former employees from 2005 to 2020 and their beneficiaries and dependents. The investigation conducted by Canon found evidence of unauthorized accesses on its network between July 20 and August 6. ” reads the statement.

Data breaches 144

Data breaches Ransomware Banking Media 144

Security Boulevard

JUNE 1, 2021

Here’s a weird footnote in deepfake history… Old publishers of “facts” like map makers and encyclopedias gave up inserting fake data after the US Supreme Court ruled their facts can’t be copyrighted, as a New Yorker article from 2005 explained. The post Deepfake Map History appeared first on Security Boulevard.

102

102

Security Boulevard

FEBRUARY 3, 2022

The baton was then passed to the Insafe network in 2005, The post Safer Internet Day 2022 – Keep Everyone Safe Online appeared first on Indusface. Safer Internet Day 2022 lands on February 8. Safer Internet Day began as an EU SafeBorders project in 2004.

Internet 98

Internet Internet Cybersecurity 98

The Last Watchdog

OCTOBER 18, 2023

ABE has undergone significant theoretical advancements since 2005. “You can still get useful information from the image, but if you don’t have the correct key, you won’t be able to decrypt certain attributes, such as a face or a license plate number.” Versatile benefits It’s taken a while to get here.

Encryption 264

Encryption Surveillance Internet Internet 264

Security Boulevard

NOVEMBER 29, 2021

Cyber Monday is the online version of a complement to Black Friday that debuted in the US in 2005. It was initiated to encourage online shopping on the Monday after Thanksgiving. Since its inception, Cyber Monday has grown into a mega annual shopping carnival breaking sales records every year – with fraud following closely Digital […].

98

98

Security Boulevard

DECEMBER 5, 2022

Microsoft may have retired the Boa web server in 2005, but that hasn’t stopped widespread use—and now the company is saying a vulnerability in the server’s open source component has been exploited by bad actors, targeting the energy industry and underscoring the continued vulnerability of the supply chain.

IoT 98

IoT Malware Cybersecurity Network Security 98

Heimadal Security

NOVEMBER 23, 2022

Flaws from a web server discontinued since 2005 have been used to attack organizations from the energy sector. State-backed Chinese hacking groups have used the Boa web server to target several Indian electrical grid operators, compromising an Indian national emergency response system and a logistics company subsidiary.

Hacking 98

Hacking Cybersecurity 98

Bleeping Computer

NOVEMBER 22, 2022

Microsoft said today that security vulnerabilities found to impact a web server discontinued since 2005 have been used to target and compromise organizations in the energy sector. [.].

86

86

SecureBlitz

OCTOBER 1, 2022

In this interview, we spoke with David Monnier, Chief Evangelist at Team Cymru, a risk management solution launched in 2005 with a network that extends to 143 CSIRT teams in 86 countries and over 1,000 network operators and ISP community that helps keep the internet safe. Team Cymru has released the findings from their State […].

Internet 97

Internet Internet Risk Cybersecurity 97

Heimadal Security

JULY 21, 2021

It has been on those drivers from 2005 and now the researchers have found that the real threat is that this bug could let hackers gain local system privileges. SentinelLabs has released a new report stating the discovery of CVE-2021-3438, a 16-years-old vulnerability present in printer drivers belonging to HP, Samsung, and Xerox.

Cybersecurity 98

Cybersecurity 98

SecureWorld News

AUGUST 18, 2022

I t was assigned CVE-2022-38392 and described as this: "A certain 5400 RPM OEM hard drive, as shipped with laptop PCs in approximately 2005, allows physically proximate attackers to cause a denial of service (device malfunction and system crash) via a resonant-frequency attack with the audio signal from the Rhythm Nation music video.".

Manufacturing 113

Manufacturing Risk Cybersecurity 113

Dark Reading

JANUARY 25, 2023

Zacks Elite sign-ups for the period 1999–2005 were accessed, including name, address, email address, phone number, and the password associated with Zacks.com.

Hacking 83

Hacking Passwords 83

CSO Magazine

MAY 20, 2021

and one that our founding editor Derek Slater offered up to readers way back in 2005—heck, if there's one website you ought to be able to trust to tell you what a CSO is, it's CSOonline. A CSO is a departmental leader responsible for information security, corporate security or both.

CSO 116

CSO CISO Information Security Technology 116

Security Boulevard

MARCH 18, 2023

Have you also downloaded my Cybercrime Forum Data Set for 2022 including a free 256GB compilation of all of my publicly accessible research from 2005 up to 2023 for free in the form of a torrent ? Have you also grabbed a copy of all of my publicly accessible research from 2005 up to 2023 from here for free?

Cybercrime 96

Cybercrime Cyber threats Information Security 96

CyberSecurity Insiders

AUGUST 11, 2021

What’s interesting is the fact that the law enforcement in US could only detect 11,792 cyber attacks on companies and government agencies between 2005- June’20. And if that doesn’t work, then they sell the siphoned data for monetary benefits. Then what happened to the other cases…?

Cyber Attacks 145

Cyber Attacks Marketing Passwords Government 145

Hot for Security

MARCH 30, 2021

Back in August 2005, for instance, the CNN newsroom was hit by the Zotob worm, with the station reporting the incident live on air. Whether the near-simultaneous attacks against the TV station and parliamentary services are coincidence or not is currently unclear.

Cyber Attacks 145

Cyber Attacks Encryption Government Ransomware 145

Krebs on Security

JULY 30, 2019

“The largest category of information accessed was information on consumers and small businesses as of the time they applied for one of our credit card products from 2005 through early 2019,” the statement continues.

Data breaches 279

Data breaches Small Business Media Accountability 279

CyberSecurity Insiders

MARCH 11, 2021

Note 1- Earlier, the company was only called as Coors of the United States and as soon as it merged with a Canada-based company Molson in 2005, the collective reference of the company as Molson Coors started.

Cyber Attacks 122

Cyber Attacks Ransomware Backups Cryptocurrency 122

Krebs on Security

JANUARY 8, 2024

From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a From one of his ads in 2005: Domains For Projects Advertised By Spam I can register bulletproof domains for sites and projects advertised by spam(of course they must be legal). w s, icamis[.]ru ru , and icamis[.]biz.

Cybercrime 271

Cybercrime Banking Computers and Electronics DDOS 271

Security Affairs

MAY 31, 2021

The feature was first introduced in 2005 with the x64 editions of Windows XP and Windows Server 2003 Service Pack 1. Kento published technical details of its attack in a blog post and also released proof-of-concept (PoC) code for his attack.

Hacking 144

Hacking Malware Software Information Security 144

Security Affairs

APRIL 19, 2020

” Webkinz were originally released by the Canadian toy company Ganz on April 29, 2005. Webkinz are stuffed animals that have a playable online counterpart, www.webkinz.com, in “Webkinz World.”

Hacking 143

Hacking Passwords Data breaches Advertising 143

Security Affairs

JULY 24, 2020

It was formed in 2005 in response to European Union requirements to separate the natural monopoly of infrastructure management from the competitive operations of running train services. The company has over 13,000 employees for a revenue of around $8 Billion.

Ransomware 143

Ransomware Advertising Media Internet 143