Krebs on Security

APRIL 16, 2024

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 13, 2012, after a state IT contractor clicked a malicious link in an email.

Identity Theft 271

Identity Theft Banking Cybercrime Hacking 271

Penetration Testing

DECEMBER 1, 2024

ACROS Security, the creators of 0patch micropatching technology, have uncovered a zero-day vulnerability affecting Windows Server 2012 and Server 2012 R2.

Technology 76

Technology Cybersecurity 76

Schneier on Security

DECEMBER 24, 2020

However, the shake-up between 2010 and 2012 gave Beijing an impetus not only to go after bigger, riskier targets, but also to put together the infrastructure needed to process the purloined information. In 2012, senior U.S. intelligence agencies. intelligence personnel, these new capabilities made China’s successful hack of the U.S.

Hacking 361

Hacking Government 361

Tech Republic Security

JULY 8, 2021

Patches to fix a severe flaw in the Windows Print spooler are now available for Windows 10 Version 1607, Windows Server 2012 and Windows Server 2016.

215

215

Joseph Steinberg

DECEMBER 2, 2022

The patent was issued by the United States Patent Office on September 6th, 2022, with a priority date going back over a decade, to June of 2012. The granting of this patent follows the patent office’s granting of four other related patents going back to the same priority date in June of 2012.

Media 267

Media Technology Artificial Intelligence Risk 267

Krebs on Security

DECEMBER 19, 2018

Satnam Narang , senior research engineer at Tenable , said the vulnerability affects the following installations of IE: Internet Explorer 11 from Windows 7 to Windows 10 as well as Windows Server 2012, 2016 and 2019; IE 9 on Windows Server 2008; and IE 10 on Windows Server 2012.

Internet 237

Internet Internet Software Engineering 237

Schneier on Security

MARCH 14, 2023

From Brian Krebs : A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S. Federal Bureau of Investigation (FBI).

Cybercrime 251

Cybercrime Marketing Passwords Spyware 251

Schneier on Security

JUNE 4, 2019

Really interesting paper calculating the worldwide cost of cybercrime: Abstract: In 2012 we presented the first systematic study of the costs of cybercrime. Our conclusions remain broadly the same as in 2012:it would be economically rational to spend less in anticipation of cybercrime (on antivirus, firewalls, etc.)

Cybercrime 221

Cybercrime Scams Cryptocurrency Antivirus 221

Krebs on Security

MAY 14, 2019

CVE-2019-0708 does not affect Microsoft’s latest operating systems — Windows 10 , Windows 8.1 , Windows 8 , Windows Server 2019 , Windows Server 2016 , Windows Server 2012 R2 , or Windows Server 2012. More information on how to download and deploy the update for CVE-2019-0708 is here.

Malware 271

Malware Ransomware Authentication 271

Schneier on Security

APRIL 12, 2019

Flame was discovered in 2012, linked to Stuxnet, and believed to be American in origin. It has recently been linked to more modern malware through new analysis tools that find linkages between different software. Seems that Flame did not disappear after it was discovered, as was previously thought.

Malware 227

Malware Software 227

Schneier on Security

JANUARY 4, 2021

The cover page says that the initial FOIA request was made in July 2012: eight and a half years ago. If there is any lesson for today, it’s that modern cryptanalysis is possible primarily because people make mistakes. The monograph a while to become public. And there’s more books to come.

346

346

Schneier on Security

NOVEMBER 20, 2018

The PCLOB was established in 2004 (when it didn't do much), disappeared from 2007-2012, and reconstituted in 2012. So it can examine the program of TSA watchlists, NSA anti-terrorism surveillance, and FBI counterterrorism activities. It issued a major report on NSA surveillance in 2014.

Surveillance 184

Surveillance 184

Schneier on Security

JANUARY 9, 2023

But way back in 2012, the Canadian CSEC—that’s their NSA—did some top-secret work on this kind of thing. Nowadays, it seems like an obvious thing to do—although the search is probably unconstitutional.

Surveillance 325

Surveillance Internet Internet Risk 325

Schneier on Security

DECEMBER 17, 2018

Shamoon is the Iranian malware that was targeted against the Saudi Arabian oil company, Saudi Aramco, in 2012 and 2016. A new variant of the Shamoon malware has destroyed signifigant amounts of data at a UAE "heavy engineering company" and the Italian oil and gas contractor Saipem.

Engineering 202

Engineering Malware 202

Krebs on Security

FEBRUARY 4, 2020

Investigators say Bukoski’s booter service was among the longest running services targeted by the FBI, operating since at least 2012. The landing page for the Quantum Stresser attack-for-hire service. When an online pizza delivery order brings FBI agents to raid your home.

Internet 295

Internet Internet Government Accountability 295

Krebs on Security

JULY 7, 2021

.” In a blog post , Microsoft’s Security Response Center said it was delayed in developing fixes for the vulnerability in Windows Server 2016 , Windows 10 version 1607 , and Windows Server 2012. “After installing such updates, delegated admin groups like printer operators can only install signed printer drivers.

Backups 356

Backups Software Engineering 356

Krebs on Security

FEBRUARY 24, 2023

BHProxies has authored 129 posts on Black Hat World since 2012, and their last post on the forum was in December 2022. BHProxies initially was fairly active on Black Hat World between May and November 2012, after which it suddenly ceased all activity. The website BHProxies[.]com

Accountability 269

Accountability Advertising Marketing Malware 269

Krebs on Security

MARCH 21, 2019

Hundreds of millions of Facebook users had their account passwords stored in plain text and searchable by thousands of Facebook employees — in some cases going back to 2012, KrebsOnSecurity has learned. Facebook says an ongoing investigation has so far found no indication that employees have abused access to this data.

Passwords 56

Passwords Engineering Accountability Advertising 56

Adam Levin

JANUARY 15, 2020

Only families & friends can have access to baby’s moments at your control,” says the app’s description, which has been downloaded over a million times since 2012. Every Baby’s photos, audios & videos or diaries will be stored in secured space. Bithouse has yet to comment on the leak or take the leaked data offline.

Data privacy 225

Data privacy Data breaches 225

Security Affairs

NOVEMBER 15, 2021

These issues impacts Windows Server 2019 and lower versions, including Windows Server 2016, Windows Server 2012 R2, Windows Server 2012, Windows Server 2008 R2 SP1, and Windows Server 2008 SP2.

Authentication 141

Authentication Hacking Information Security 141

Krebs on Security

FEBRUARY 11, 2020

lnk) files ( CVE-2020-0729 ) that affects Windows 8 and 10 systems, as well as Windows Server 2008-2012. In addition, Redmond addressed a critical issue ( CVE-2020-0618 ) in the way Microsoft SQL Server versions 2012-2016 handle page requests. Microsoft once again fixed a critical flaw in the way Windows handles shortcut (.lnk)

Backups 58

Backups Malware Internet Internet 58

Schneier on Security

APRIL 27, 2021

The one example he gives is that it uses FFmpeg DLLs from 2012, and have not been patched with the 100+ security updates since then.). Moxie got his hands on one of the devices, which seems to be a pair of Windows software packages and a whole lot of connecting cables. According to Moxie, the software is riddled with vulnerabilities.

Software 327

Software Accountability 327

Malwarebytes

MAY 6, 2024

This week on the Lock and Code podcast… You’ve likely felt it: The dull pull downwards of a smartphone scroll. The “five more minutes” just before bed. The sleep still there after waking. The edges of your calm slowly fraying.

Media 113

Media Internet Internet Accountability 113

Schneier on Security

AUGUST 25, 2020

This work replicates and extends the 2012 paper Why Johnny Can't Browse in Peace: On the Uniqueness of Web Browsing History Patterns [ 48 ]. The original work demonstrated that browsing profiles are highly distinctive and stable.We

Data collection 230

Data collection Risk 230

The Hacker News

APRIL 2, 2024

Earth Freybug is a cyberthreat group that has been active since at least 2012 that focuses on espionage and financially motivated activities," Trend Micro security researcher Christopher So said in a report published today. "It It has been observed to

Malware 145

Malware 145

Schneier on Security

SEPTEMBER 24, 2019

officials in 2012, gave Russian spies in American cities including Washington, New York and San Francisco key insights into the location of undercover FBI surveillance teams, and likely the actual substance of FBI communications, according to former officials. counterintelligence vulnerabilities.

Hacking 233

Hacking Surveillance Encryption Internet 233

Schneier on Security

JANUARY 27, 2023

He told me the story when he heard about my new book , which he partially recounts his 2012 book, Ghost in the Wires. Early in his career, Kevin Mitnick successfully hacked California law.

Hacking 343

Hacking Engineering 343

The Hacker News

AUGUST 4, 2024

Evasive Panda, also known by the names Bronze Highland, Daggerfly, and StormBamboo, is a cyber espionage group that's been active since at least 2012,

Software 142

Software Internet Internet 142

We Live Security

OCTOBER 5, 2021

ESET research discovers a previously undocumented UEFI bootkit with roots going back all the way to at least 2012. The post UEFI threats moving to the ESP: Introducing ESPecter bootkit appeared first on WeLiveSecurity.

Malware 145

Malware 145

The Hacker News

MARCH 23, 2024

Kimsuky, active since at least 2012, is known to target entities located in South Korea as well as North America, Asia, and Europe. According

Malware 141

Malware 141

The Hacker News

JULY 23, 2024

The vulnerabilities are listed below - CVE-2012-4792 (CVSS score: 9.3) - Microsoft Internet Explorer Use-After-Free Vulnerability CVE-2024-39891 (CVSS score: 5.3) - Twilio Authy Information Disclosure

Internet 134

Internet Internet Cybersecurity 134

Krebs on Security

DECEMBER 23, 2018

On June 25, 2012, Islam and nearly two-dozen others were caught up in an FBI dragnet dubbed Operation Card Shop. JoshTheGod’s (Mir Islam’s ) Twitter feed, in April 2012 warning fellow carding forum carderprofit members that the forum was being run by the FBI.

Internet 249

Internet Internet Government Accountability 249

Anton on Security

OCTOBER 20, 2022

Note that this blog was informed by my observations of the previous wave of security data lakes ( dating back to 2012 ) and related attempts by organizations to build security data science capabilities. So, in 2012, we said : “Finally, “collect once?—?analyze However, we are not living in 2012 or 2018 anymore?—?we So, has it?

Big data 202

Big data Threat Detection Software Technology 202

Schneier on Security

JULY 9, 2019

Original report : Based on the data available to us, Operation Soft Cell has been active since at least 2012, though some evidence suggests even earlier activity by the threat actor against telecommunications providers. The attack was aiming to obtain CDR records of a large telecommunications provider.

Hacking 261

Hacking Telecommunications Malware Passwords 261

The Hacker News

FEBRUARY 17, 2024

He was added to the FBI's most-wanted list in 2012. Vyacheslav Igorevich Penchukov (aka Vyacheslav Igoravich Andreev, father, and tank), 37, was arrested by Swiss authorities in October 2022 and extradited to the U.S.

Malware 133

Malware 133

Krebs on Security

NOVEMBER 26, 2021

And virtually all IRRs have disallowed its use since at least 2012, said Adam Korab , a network engineer and security researcher based in Houston. “LEVEL 3 is the last IRR operator which allows the use of this method, although they have discouraged its use since at least 2012,” Korab told KrebsOnSecurity.

Internet 72

Internet Internet Authentication Telecommunications 72

Krebs on Security

JUNE 25, 2019

com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-12-09 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., 2333youxi[.]com blazefire[.]com blazefire[.]net

Mobile 257

Mobile Technology Manufacturing Malware 257