Krebs on Security

MARCH 15, 2021

The biggest potential gold mine for de-anonymizing Maza members is the leak of user numbers for ICQ, an instant messaging service formerly owned by AOL that was widely used by cybercrime forum members up until around 2010. That’s about when AOL sold the platform in 2010 to Russian investor DST for $187.5

Passwords 340

Passwords Accountability Hacking Data breaches 340

Schneier on Security

FEBRUARY 19, 2021

was released in October 2010. Much more effort is needed to make home routers as secure as current desktop of server systems. One comment on the report: One-third ship with Linux kernel version 2.6.36 You can walk into a store today and buy a brand new router powered by software that’s almost 10 years out of date!

Firmware 331

Firmware Software Engineering Internet 331

The Last Watchdog

JUNE 10, 2024

This brought to mind 2010, the year I wrote news stories for USA TODAY about Mark Zuckerberg declaring privacy was “ no longer a social norm ” and Google CEO Eric Schmidt admitting that Google’s privacy policy was to “ get right up to the creepy line and not cross it.”

Data collection 261

Data collection Internet Internet Technology 261

Anton on Security

APRIL 7, 2022

Popular Episodes by Topic This is simply a post that categorizes our podcast episodes by topic and then by download/listen count. Data security “Data Security in the Cloud“ “Modern Data Security Approaches: Is Cloud More Secure?”

Cloud Migration 189

Cloud Migration Threat Detection CISO Engineering 189

Schneier on Security

APRIL 2, 2024

Through a 2010 FOIA request (yes, it took that long), we have copies of the NSA’s KRYPTOS Society Newsletter, “ Tales of the Krypt ,” from 1994 to 2003. There are many interesting things in the 800 pages of newsletter. There are many redactions.

Internet 334

Internet Internet 334

Krebs on Security

AUGUST 2, 2022

com , a malware-based proxy network that has been in existence since at least 2010. Cached versions of the site show that in 2010 the software which powers the network was produced with a copyright of “ Escort Software.” .” NEW SOCKS, SAME OLD SHOES. SocksEscort[.]com ” Super-socks[.]biz

Malware 309

Malware Cybercrime Internet Internet 309

Krebs on Security

NOVEMBER 15, 2022

Sources briefed on the investigation into Penchukov said that in 2010 — at a time when the Security Service of Ukraine (SBU) was preparing to serve search warrants on Tank and his crew — Tank received a tip that the SBU was coming to raid his home. “The Americans were unhappy, and a little surprised.

Banking 318

Banking Small Business Accountability Malware 318

Krebs on Security

JUNE 21, 2023

In 2010, someone with the username Pepyak on the Russian language affiliate forum GoFuckBiz[.]com In 2010, someone with the username Pepyak on the Russian language affiliate forum GoFuckBiz[.]com ” In January 2010, Pepyak asked the GoFuckBiz community where one might find a good USB-based modem in Phuket, Thailand.

Malware 266

Malware Antivirus Cybercrime Hacking 266

Krebs on Security

DECEMBER 8, 2021

“My exploit pack is hosted there with 0 problems,” DCReaver2 says of a shady online provider that another member asked about in May 2010. Arrested in 2010, Skorjanc was sentenced to nearly five years in prison for selling and supporting Mariposa, which was used to compromise millions of Microsoft Windows computers.

Cybercrime 325

Cybercrime Ransomware Accountability Advertising 325

Schneier on Security

APRIL 21, 2023

I don’t understand pickleball at all, so that explanation doesn’t make a lot of sense to me. (I I watched a video explaining the shot; that helped somewhat.) But it looks like an excellent example.

Hacking 265

Hacking 265

The Hacker News

MARCH 5, 2025

An example is the Stuxnet worm discovered in 2010, a malware designed to These attacks lead to data breaches, financial losses, and operational disruptions, with lasting impacts on an organization's reputation.

Data breaches 107

Data breaches Malware Network Security Risk 107

CSO Magazine

MARCH 29, 2021

The lack of stringent protections in the original DNS specification and discovery of security weaknesses over time, such as the decade-old Kaminsky bug , gave birth to the Domain Name System Security Extensions (DNSSEC) in 2010. To read this article in full, please click here (Insider Story)

DNS 135

DNS Encryption Internet Internet 135

Krebs on Security

JUNE 25, 2021

“The vulnerability report CVE-2018-18472 affects My Book Live devices originally introduced to the market between 2010 and 2012,” reads a reply from Western Digital that Wizcase posted to its blog. That response also suggested this bug has been present in its devices for at least a decade.

Internet 330

Internet Internet Backups Small Business 330

Krebs on Security

JULY 8, 2019

In 2010, the hottabych_k2 address was used to register the domain name dedserver[.]ru At least four posts made in 2010 to the hosting review service makeserver.ru When Oneiilk2 registered on Exploit in January 2015, he used the email address hottabych_k2@mail.ru. us to help users obfuscate their true online locations. .”

Ransomware 276

Ransomware Accountability Cybercrime Passwords 276

Security Boulevard

JULY 23, 2021

In 2010, John Kindervag introduced the concept of “Zero …. Five worthy reads is a regular column on five noteworthy items we’ve discovered while researching trending and timeless topics. This week, we explore why organizations should implement Zero Trust in 2021.

Cybersecurity 130

Cybersecurity 130

Heimadal Security

MARCH 3, 2021

The service provider notified the airline warning that data of the Enrich program was exposed to security breaches between March 2010 and June 2019. A security breach occurred via a third-party IT service provider. About the Enrich flyer program Enrich is the frequent flyer program of Malaysia Airlines.

Data breaches 131

Data breaches Passwords Cybersecurity 131

Krebs on Security

JUNE 1, 2023

Fitis’s real-life identity was exposed in 2010 after two of the biggest sponsors of pharmaceutical spam went to war with each other, and large volumes of internal documents, emails and chat records seized from both spam empires were leaked to this author. My fingerprints change beyond recognition every few days. Image: Archive.org.

Malware 295

Malware Cybercrime Software Accountability 295

SecureWorld News

FEBRUARY 20, 2025

Key findings from the advisory The advisory highlights the rapid and efficient attack lifecycle of Ghost ransomware, with some incidents seeing full encryption within a single day.

Ransomware 108

Ransomware IoT Encryption Social Engineering 108

Krebs on Security

SEPTEMBER 8, 2020

Microsoft fixed at least five other serious bugs in Sharepoint versions 2010 through 2019 that also could be used to compromise systems running this software. Security firm Tenable notes that this bug is reminiscent of CVE-2019-0604 , another Sharepoint problem that’s been exploited for cybercriminal gains since April 2019.

Software 300

Software Backups Authentication Internet 300

The Last Watchdog

JULY 6, 2023

Nuvoton was spun-off as a Winbond Electronics affiliate in July 2008 and went public in September 2010 on the Taiwan Stock Exchange (TWSE). About Nuvoton Technology: Nuvoton Technology Corporation (Nuvoton) was founded to bring innovative semiconductor solutions to the market.

Computers and Electronics 246

Computers and Electronics Marketing Technology IoT 246

Krebs on Security

FEBRUARY 11, 2020

Another flaw fixed this month in Microsoft Exchange 2010 through 2019 may merit special attention. The bug could allow attackers to exploit the Exchange Server and execute arbitrary code just by sending a specially crafted email.

Backups 63

Backups Malware Internet Internet 63

Security Affairs

SEPTEMBER 30, 2020

Rapid7 reported that 87% of almost 138,000 Exchange 2016 servers and 77% of around 25,000 Exchange 2019 servers are still vulnerable to CVE-2020-0688 attacks, and roughly 54,000 Exchange 2010 servers have not been updated in six years. After Microsoft addressed the flaw experts reportedly observed that APT actors exploiting the flaw.

Advertising 124

Advertising Authentication Hacking Accountability 124

Schneier on Security

JANUARY 21, 2020

Last year, Julian Assange was charged by the US with doing essentially the same thing with Chelsea Manning: The indictment alleges that in March 2010, Assange engaged in a conspiracy with Chelsea Manning, a former intelligence analyst in the U.S. This isn't new, or unique to Brazil.

Cybercrime 182

Cybercrime Passwords Government Hacking 182

Heimadal Security

JUNE 22, 2022

It was initially known as the Home Delivery Network, until it bought the B2B and B2C businesses of DHL Express UK and afterward, renamed itself as Yodel in May 2010. Yodel is a delivery service company from the United Kingdom. What Happened? A cyberattack has caused delays in package distribution and online order tracking for […].

B2C 105

B2C B2B Cyber Attacks Cybersecurity 105

Security Affairs

OCTOBER 9, 2020

. “My thought is that the existing Strategic Concept, which we agreed in 2010, has served NATO well. Having said that, I think we all have to realise that since we agreed the Strategic Concept back in 2010, the world has fundamentally changed.” And it has actually served us well for many years.

Artificial Intelligence 128

Artificial Intelligence Technology Advertising Marketing 128

Anton on Security

DECEMBER 20, 2021

Random fun new posts: “SOC Technology Failures?—?Do Do They Matter?” Kill SOC Toil, Do SOC Eng” “Anton and The Great XDR Debate, Part 1” Fun posts by topic.

Threat Detection 44

Threat Detection Cloud Migration Encryption Engineering 44

The Hacker News

FEBRUARY 28, 2023

Xorist, detected since 2010, is distributed as a It's based on commodity ransomware dubbed Xorist and has been observed in attacks targeting entities in the U.S., the Philippines, the U.K., and Turkey.

Ransomware 103

Ransomware Cybersecurity 103

CSO Magazine

MARCH 1, 2023

Gen Z refers to those born between mid-to-late 1990s and 2010, making them between the ages of 11 and 28. In doing so, I had to educate myself on what they value and realized the many differences between Gen Z and previous generations. This means they grew up experiencing a much faster rate in which technology evolves.

Education 126

Education Internet Internet Technology 126

Security Affairs

NOVEMBER 4, 2021

The oldest vulnerability included in the catalog is the CVE-2010-5326? RCE in SAP NetWeaver Application Server and dates back to 2010. The catalog includes vulnerabilities for products from Adobe, Apple, Atlassian, Cisco, Google, IBM, Microsoft, Nagios, Netgear, Oracle, Pulse Secure, and many other companies.

Risk 136

Risk Cyber Attacks Cybersecurity Hacking 136

Security Affairs

JULY 26, 2020

The toolkit was first released in 2010 by SANS fellow researcher Lenny Zeltser , who is still maintaining the software. REMnux is a Linux toolkit for reverse-engineering and dissecting software, it includes a collection of free tools created by the community that allows researchers to investigate malware.

Malware 145

Malware Advertising Software Engineering 145

Krebs on Security

JANUARY 24, 2023

RUSdot is the successor forum to Spamdot , a far more secretive and restricted community where most of the world’s top spammers, virus writers and cybercriminals collaborated for years before the forum imploded in 2010. A Google-translated version of the Rusdot spam forum.

Cybercrime 269

Cybercrime Advertising IoT Malware 269

Security Affairs

APRIL 11, 2021

.” Reports claim that the attack was launched by Israel-linked hackers, the same state is suspected to have had a main role in the Stuxnet attack that hit the same nuclear plant back in 2010.

Cyber Attacks 134

Cyber Attacks Energy and Utilities Media Hacking 134

Security Affairs

JANUARY 4, 2021

He published thousands of classified diplomatic and military documents on WikiLeaks in 2010. In 2010, Assange gained unauthorized access to a government computer system of a NATO country and years later he contacted s LulzSec leader who was working for the FBI and provided him a list of targets.

Government 142

Government Risk Passwords Hacking 142

Heimadal Security

JUNE 14, 2022

This month’s Patch Tuesday has brought us some improvements and fixes for issues associated with Microsoft Edge Stable Channel (Version 102.0.1245.39), which incorporates the latest Security Updates of the Chromium project for CVE-2022-2011, CVE-2022-2010, CVE-2022-2008, and CVE-2022-2007.

105

105

Anton on Security

SEPTEMBER 16, 2021

Now, posts by topic. Security operations / detection & response: “Security Correlation Then and Now: A Sad Truth About SIEM” “Can We Have “Detection as Code”?”

Threat Detection 42

Threat Detection Cloud Migration Encryption Engineering 42

Schneier on Security

AUGUST 28, 2019

And the NSA routinely assists in securing business and consumer systems, including helping Google defend itself from Chinese hackers in 2010. Yes, there are some military applications that are different. The US nuclear system Barr mentions is one such example -- and it uses ancient computers and 8-inch floppy drives.

Computers and Electronics 279

Computers and Electronics Encryption Internet Internet 279

Krebs on Security

JULY 20, 2021

In 2010, Microsoft — in tandem with a number of security researchers — launched a combined technical and legal sneak attack on the Waledac botnet, successfully dismantling it. A screenshot of the “SevAntivir” fake antivirus or “scareware” affiliate program run by Severa.

Antivirus 339

Antivirus Cybercrime Identity Theft Scams 339