Krebs on Security

MARCH 11, 2025

and Server 2012 R2. ESET said the exploit was deployed via the PipeMagic backdoor , capable of exfiltrating data and enabling remote access to the machine. ESET’s Filip Juracko said the exploit in the wild targets only older versions of Windows OS: Windows 8.1

System Administration 215

System Administration Engineering Internet Internet 215

Krebs on Security

APRIL 16, 2024

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 13, 2012, after a state IT contractor clicked a malicious link in an email.

Identity Theft 283

Identity Theft Banking Cybercrime Hacking 283

Krebs on Security

MARCH 9, 2023

A Croatian national has been arrested for allegedly operating NetWire , a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. NetWire has been sold openly on the same website since 2012: worldwiredlabs[.]com. org , also registered in 2012.

DNS 300

DNS Cybercrime Passwords Accountability 300

Schneier on Security

JUNE 4, 2019

Really interesting paper calculating the worldwide cost of cybercrime: Abstract: In 2012 we presented the first systematic study of the costs of cybercrime. Our conclusions remain broadly the same as in 2012:it would be economically rational to spend less in anticipation of cybercrime (on antivirus, firewalls, etc.)

Cybercrime 250

Cybercrime Scams Cryptocurrency Antivirus 250

Schneier on Security

MARCH 14, 2023

From Brian Krebs : A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S. Federal Bureau of Investigation (FBI).

Cybercrime 274

Cybercrime Marketing Passwords Spyware 274

Krebs on Security

DECEMBER 19, 2018

Satnam Narang , senior research engineer at Tenable , said the vulnerability affects the following installations of IE: Internet Explorer 11 from Windows 7 to Windows 10 as well as Windows Server 2012, 2016 and 2019; IE 9 on Windows Server 2008; and IE 10 on Windows Server 2012.

Internet 252

Internet Internet Software Engineering 252

Schneier on Security

APRIL 12, 2019

Flame was discovered in 2012, linked to Stuxnet, and believed to be American in origin. It has recently been linked to more modern malware through new analysis tools that find linkages between different software. Seems that Flame did not disappear after it was discovered, as was previously thought.

Malware 258

Malware Software 258

Schneier on Security

DECEMBER 24, 2020

However, the shake-up between 2010 and 2012 gave Beijing an impetus not only to go after bigger, riskier targets, but also to put together the infrastructure needed to process the purloined information. In 2012, senior U.S. intelligence agencies. intelligence personnel, these new capabilities made China’s successful hack of the U.S.

Hacking 363

Hacking Government 363

Tech Republic Security

JULY 8, 2021

Patches to fix a severe flaw in the Windows Print spooler are now available for Windows 10 Version 1607, Windows Server 2012 and Windows Server 2016.

216

216

Joseph Steinberg

DECEMBER 2, 2022

The patent was issued by the United States Patent Office on September 6th, 2022, with a priority date going back over a decade, to June of 2012. The granting of this patent follows the patent office’s granting of four other related patents going back to the same priority date in June of 2012.

Media 269

Media Technology Artificial Intelligence Risk 269

Schneier on Security

JANUARY 4, 2021

The cover page says that the initial FOIA request was made in July 2012: eight and a half years ago. If there is any lesson for today, it’s that modern cryptanalysis is possible primarily because people make mistakes. The monograph a while to become public. And there’s more books to come.

362

362

Schneier on Security

NOVEMBER 20, 2018

The PCLOB was established in 2004 (when it didn't do much), disappeared from 2007-2012, and reconstituted in 2012. So it can examine the program of TSA watchlists, NSA anti-terrorism surveillance, and FBI counterterrorism activities. It issued a major report on NSA surveillance in 2014.

Surveillance 194

Surveillance 194

Schneier on Security

DECEMBER 17, 2018

Shamoon is the Iranian malware that was targeted against the Saudi Arabian oil company, Saudi Aramco, in 2012 and 2016. A new variant of the Shamoon malware has destroyed signifigant amounts of data at a UAE "heavy engineering company" and the Italian oil and gas contractor Saipem.

Engineering 218

Engineering Malware 218

Krebs on Security

MAY 14, 2019

CVE-2019-0708 does not affect Microsoft’s latest operating systems — Windows 10 , Windows 8.1 , Windows 8 , Windows Server 2019 , Windows Server 2016 , Windows Server 2012 R2 , or Windows Server 2012. More information on how to download and deploy the update for CVE-2019-0708 is here.

Malware 264

Malware Ransomware Authentication 264

Schneier on Security

JANUARY 9, 2023

But way back in 2012, the Canadian CSEC—that’s their NSA—did some top-secret work on this kind of thing. Nowadays, it seems like an obvious thing to do—although the search is probably unconstitutional.

Surveillance 335

Surveillance Internet Internet Risk 335

Krebs on Security

FEBRUARY 4, 2020

Investigators say Bukoski’s booter service was among the longest running services targeted by the FBI, operating since at least 2012. The landing page for the Quantum Stresser attack-for-hire service. When an online pizza delivery order brings FBI agents to raid your home.

Internet 321

Internet Internet Government Accountability 321

Schneier on Security

AUGUST 25, 2020

This work replicates and extends the 2012 paper Why Johnny Can't Browse in Peace: On the Uniqueness of Web Browsing History Patterns [ 48 ]. The original work demonstrated that browsing profiles are highly distinctive and stable.We

Data collection 261

Data collection Risk 261

Security Affairs

MARCH 12, 2025

The exploit, linked to the PipeMagic backdoor , has targeted unsupported Windows versions like Server 2012 R2 and 8.1 The flaw enables attackers with low privileges to escalate to SYSTEM privileges but requires winning a race condition. but also affects Windows 10 (build 1809 and earlier) and Server 2016.

DNS 109

DNS Hacking Information Security 109

Krebs on Security

FEBRUARY 24, 2023

BHProxies has authored 129 posts on Black Hat World since 2012, and their last post on the forum was in December 2022. BHProxies initially was fairly active on Black Hat World between May and November 2012, after which it suddenly ceased all activity. The website BHProxies[.]com

Accountability 281

Accountability Advertising Marketing Malware 281

Security Affairs

DECEMBER 4, 2024

Since 2012, Crimenetwork facilitated the sale of illegal goods and services, including drugs, forged documents, hacking tools, and stolen data. Germany’s largest crime marketplace, Crimenetwork, has been shut down, and an administrator has been arrested.

Cybercrime 114

Cybercrime Cryptocurrency Hacking Internet 114

Krebs on Security

FEBRUARY 11, 2020

lnk) files ( CVE-2020-0729 ) that affects Windows 8 and 10 systems, as well as Windows Server 2008-2012. In addition, Redmond addressed a critical issue ( CVE-2020-0618 ) in the way Microsoft SQL Server versions 2012-2016 handle page requests. Microsoft once again fixed a critical flaw in the way Windows handles shortcut (.lnk)

Backups 63

Backups Malware Internet Internet 63

Schneier on Security

SEPTEMBER 24, 2019

officials in 2012, gave Russian spies in American cities including Washington, New York and San Francisco key insights into the location of undercover FBI surveillance teams, and likely the actual substance of FBI communications, according to former officials. counterintelligence vulnerabilities.

Hacking 264

Hacking Surveillance Encryption Internet 264

Krebs on Security

JULY 7, 2021

.” In a blog post , Microsoft’s Security Response Center said it was delayed in developing fixes for the vulnerability in Windows Server 2016 , Windows 10 version 1607 , and Windows Server 2012. “After installing such updates, delegated admin groups like printer operators can only install signed printer drivers.

Backups 348

Backups Software Engineering 348

Krebs on Security

MARCH 21, 2019

Hundreds of millions of Facebook users had their account passwords stored in plain text and searchable by thousands of Facebook employees — in some cases going back to 2012, KrebsOnSecurity has learned. Facebook says an ongoing investigation has so far found no indication that employees have abused access to this data.

Passwords 56

Passwords Engineering Accountability Advertising 56

Adam Levin

JANUARY 15, 2020

Only families & friends can have access to baby’s moments at your control,” says the app’s description, which has been downloaded over a million times since 2012. Every Baby’s photos, audios & videos or diaries will be stored in secured space. Bithouse has yet to comment on the leak or take the leaked data offline.

Data privacy 225

Data privacy Data breaches 225

Malwarebytes

NOVEMBER 14, 2024

Cybercriminal offering to sell Pure Incubation data Pure Incubation was founded in 2012, and the company later rebranded to DemandScience. In February, 2024, a cybercriminal offered the records for sale on a data breach forum claiming the information came from pureincubation[.]com.

B2B 109

B2B Data breaches Marketing Software 109

Security Affairs

NOVEMBER 15, 2021

These issues impacts Windows Server 2019 and lower versions, including Windows Server 2016, Windows Server 2012 R2, Windows Server 2012, Windows Server 2008 R2 SP1, and Windows Server 2008 SP2.

Authentication 138

Authentication Hacking Information Security 138

Security Affairs

MARCH 10, 2025

An attacker can exploit the flaw to bypass protections for a previous vulnerability, CVE-2012-1823, using specific character sequences. The issue resides in the Best-Fit feature of encoding conversion within the Windows operating system.

DDOS 104

DDOS Security Intelligence Malware Hacking 104

Schneier on Security

NOVEMBER 7, 2019

These operations have spanned from as early as 2012 to the present day. Named MESSAGETAP, the tool was deployed by APT41 in a telecommunications network provider in support of Chinese espionage efforts. APT41's operations have included state-sponsored cyber espionage missions as well as financially-motivated intrusions.

Telecommunications 189

Telecommunications Encryption Malware 189

Schneier on Security

APRIL 27, 2021

The one example he gives is that it uses FFmpeg DLLs from 2012, and have not been patched with the 100+ security updates since then.). Moxie got his hands on one of the devices, which seems to be a pair of Windows software packages and a whole lot of connecting cables. According to Moxie, the software is riddled with vulnerabilities.

Software 321

Software Accountability 321

Krebs on Security

DECEMBER 23, 2018

On June 25, 2012, Islam and nearly two-dozen others were caught up in an FBI dragnet dubbed Operation Card Shop. JoshTheGod’s (Mir Islam’s ) Twitter feed, in April 2012 warning fellow carding forum carderprofit members that the forum was being run by the FBI.

Internet 265

Internet Internet Government Accountability 265

The Hacker News

APRIL 2, 2024

Earth Freybug is a cyberthreat group that has been active since at least 2012 that focuses on espionage and financially motivated activities," Trend Micro security researcher Christopher So said in a report published today. "It It has been observed to

Malware 144

Malware 144

Schneier on Security

JANUARY 27, 2023

He told me the story when he heard about my new book , which he partially recounts his 2012 book, Ghost in the Wires. Early in his career, Kevin Mitnick successfully hacked California law.

Hacking 349

Hacking Engineering 349

We Live Security

OCTOBER 5, 2021

ESET research discovers a previously undocumented UEFI bootkit with roots going back all the way to at least 2012. The post UEFI threats moving to the ESP: Introducing ESPecter bootkit appeared first on WeLiveSecurity.

Malware 145

Malware 145

Schneier on Security

JULY 9, 2019

Original report : Based on the data available to us, Operation Soft Cell has been active since at least 2012, though some evidence suggests even earlier activity by the threat actor against telecommunications providers. The attack was aiming to obtain CDR records of a large telecommunications provider.

Hacking 278

Hacking Telecommunications Malware Passwords 278

The Hacker News

AUGUST 4, 2024

Evasive Panda, also known by the names Bronze Highland, Daggerfly, and StormBamboo, is a cyber espionage group that's been active since at least 2012,

Software 140

Software Internet Internet 140

Krebs on Security

JUNE 25, 2019

com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-12-09 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., 2333youxi[.]com blazefire[.]com blazefire[.]net

Mobile 273

Mobile Technology Manufacturing Malware 273