article thumbnail

An Interview With the Target & Home Depot Hacker

Krebs on Security

In December 2023, KrebsOnSecurity revealed the real-life identity of Rescator , the nickname used by a Russian cybercriminal who sold more than 100 million payment cards stolen from Target and Home Depot between 2013 and 2014. “Helkern was my friend, I [set up a] meeting with Golubov and him in 2013,” Shefel said.

Retail 255
article thumbnail

My TED Talks

Schneier on Security

TEDxPSU 2010: “ Reconceptualizing Security ” TEDxCambridge 2013: “ The Battle for Power on the Internet ” TEDMed 2016: “ Who Controls Your Medical Data ?” I have spoken at several TED conferences over the years. ” I’m putting this here because I want all three links in one place.

Internet 309
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Soft-Launching and Open Sourcing the Have I Been Pwned Rebrand

Troy Hunt

Assume for a moment that my valiant 2013 attempt at a logo was, itself, aesthetically sufficient. Reading how “PWNED” went from hacker slang to the internet’s favorite taunt, I think that's a fair conclusion to draw. In 2025, @stebets and I are rebuilding it as part of a rebrand. What should we use?

Passwords 307
article thumbnail

You only have nine months to ditch Exchange Server 2013

Malwarebytes

Microsoft has posted a reminder that Exchange Server 2013 reaches End of Support (EoS) on April 11, 2023. So there may have been some questions whether the EoS for Exchange Server 2013 would go forward as planned. For Exchange Server 2013 this means that Microsoft will no longer provide: Technical support for problems that may occur.

Software 134
article thumbnail

U.S. Offered $10M for Hacker Just Arrested by Russia

Krebs on Security

“It’s possible this is a shakedown by Kaliningrad authorities of a local internet thug who has tens of millions of dollars in cryptocurrency,” Intel 471 wrote in an analysis published Dec. “The country’s ingrained, institutional corruption dictates that if dues aren’t paid, trouble will come knocking.

article thumbnail

Hacking Kia cars made after 2013 using just their license plate

Security Affairs

Researchers discovered critical flaws in Kia’s dealer portal that could allow to hack Kia cars made after 2013 using just their license plate. “ Curry explained that he and his colleagues focused on Kia’s owners.kia.com website and the Kia Connect iOS app (com.myuvo.link) because both could execute internet-to-vehicle commands.

Hacking 139
article thumbnail

Security Vulnerabilities in Covert CIA Websites

Schneier on Security

The bulk of the websites that we discovered were active at various periods between 2004 and 2013. We’re now learning that the CIA is still “using an irresponsibly secured system for asset communication.” All of these flaws would have facilitated discovery by hostile parties. […].

Internet 325