2013 and Technology - Cyber Security Informer

FBI Raids Chinese Point-of-Sale Giant PAX Technology

Krebs on Security

OCTOBER 26, 2021

federal investigators today raided the Florida offices of PAX Technology , a Chinese provider of point-of-sale devices used by millions of businesses and retailers globally. FBI agents entering PAX Technology offices in Jacksonville today. Headquartered in Shenzhen, China, PAX Technology Inc. organizations. Source: WOKV.com.

Technology

Technology Retail Computers and Electronics Malware

Policy vs Technology

Schneier on Security

FEBRUARY 21, 2020

He didn't become a senator until 2013.) I teach cybersecurity policy and technology at the Harvard Kennedy School of Government. My most recent two books, Data and Goliath -- about surveillance -- and Click Here to Kill Everybody -- about IoT security -- are really about the policy implications of technology. They still are.

Technology

Technology Encryption Surveillance Government

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

In December 2023, KrebsOnSecurity revealed the real-life identity of Rescator , the nickname used by a Russian cybercriminal who sold more than 100 million payment cards stolen from Target and Home Depot between 2013 and 2014. “My nickname was MikeMike, and I worked with Dmitri Golubov and made technologies for him,” Shefel said.

Retail

Retail Advertising Cryptocurrency Marketing

10 Personal Finance Lessons for Technology Professionals

Troy Hunt

DECEMBER 30, 2018

So here it is - 10 Personal Financial Lessons for Technology Professionals. For example, the ICT industry (Information, Communication, Technology) was the 5th highest paying with an average salary of $104,874 (dollars are Aussie, take off about 30% for USD). Intro: This Industry Rocks! Banking is below that. Medical even lower.

Technology

Technology Education Marketing Insurance

On the Subversion of NIST by the NSA

Schneier on Security

JUNE 23, 2022

National Institute of Standards and Technology (NIST), which develops cryptographic standards for non-national security agencies of the U.S. These technologies provide crucial security for communications protocols. government, has emerged as the de facto international source for cryptographic standards.

Government

Government Technology

Two NSA Algorithms Rejected by the ISO

Schneier on Security

APRIL 25, 2018

These algorithms were both designed by the NSA and made public in 2013. It's like examining alien technology. They are optimized for small and low-cost processors like IoT devices. The risk of using NSA-designed ciphers, of course, is that they include NSA-designed backdoors. Personally, I doubt that they're backdoored.

IoT

IoT Encryption Technology Risk

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Krebs on Security

JUNE 29, 2023

Kislitsin also was indicted in Nevada in 2013, but the Nevada indictment does not name his alleged victim(s) in that case. ”] Kislitsin was hired by Group-IB in January 2013, nearly six months after the Formspring hack. ”

Cybersecurity

Cybersecurity Cybercrime Hacking Government

Mariposa Botnet Author, Darkcode Crime Forum Admin Arrested in Germany

Krebs on Security

OCTOBER 1, 2019

In December 2013, a Slovenian court sentenced Škorjanc to four years and ten months in prison for creating the malware that powered the ‘ Mariposa ‘ botnet. The “sellers” page on the Darkode cybercrime forum, circa 2013. 5, 2013, federal investigators visited McCormick at his University of Massachusetts dorm room.

Cybercrime

Cybercrime Malware Antivirus Banking

Tracing the Supply Chain Attack on Android

Krebs on Security

JUNE 25, 2019

com via Domaintools.com shows the domain was assigned in 2015 to a company called “ Shanghai Blazefire Network Technology Co. A records search at Domaintools for “Shanghai Blazefire Network Technology Co” returns 11 domains, including blazefire[.]net, jyhxz.net 2013-07-02 — longmen[.]com com , buydudu[.]com

Mobile

Mobile Technology Manufacturing Malware

Five James Bond gadgets which use real world technologies

CyberSecurity Insiders

NOVEMBER 16, 2021

To celebrate the recent release of the latest film No Time to Die , here’s our top five gadgets from the quintessential spy series, and how they relate to technologies we see in everyday life. Be sure to read more about some of the real-life applications of these technologies on the Thales DIS website.

Technology

Technology Banking Financial Services Marketing

MY TAKE: Cyber attacks on industrial controls, operational technology have only just begun

The Last Watchdog

OCTOBER 8, 2018

Monitoring and management of many existing industrial control systems’ (ICS) embedded devices, like pumps, valves and turbines, are ancient in technological terms. I talked to Phil Neray, vice president of industrial security at CyberX , a company founded in 2013 that operates a platform for real-time security of the industrial internet.

Technology

Technology Cyber Attacks Internet Internet

Adconion Execs Plead Guilty in Federal Anti-Spam Case

Krebs on Security

JUNE 10, 2022

In 2019, AFRINIC fired a top employee after it emerged that in 2013 he quietly commandeered millions of IPs from defunct African entities or from those that were long ago acquired by other firms, and then conspired to sell an estimated $50 million worth of the IPs to marketers based outside Africa.

Government

Government Marketing Internet Internet

On Robots Killing People

Schneier on Security

SEPTEMBER 11, 2023

A malfunctioning robot he went to inspect killed him when he obstructed its path, according to Gabriel Hallevy in his 2013 book, When Robots Kill: Artificial Intelligence Under Criminal Law. Fatalities in the first decades of aviation forced regulation, which required new developments in both law and technology.

Artificial Intelligence

Artificial Intelligence Technology Risk Government

FEMA IT Specialist Charged in ID Theft, Tax Refund Fraud Conspiracy

Krebs on Security

JUNE 18, 2020

An information technology specialist at the Federal Emergency Management Agency (FEMA) was arrested this week on suspicion of hacking into the human resource databases of University of Pittsburgh Medical Center (UPMC) in 2014, stealing personal data on more than 65,000 UPMC employees, and selling the data on the dark web.

Identity Theft

Identity Theft Healthcare Hacking Technology

Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov

Security Affairs

AUGUST 1, 2019

Back in 2008, a whistle-blower identifies a vulnerability in Cisco video surveillance software, but the tech giant continued to sell the software to US agencies until July 2013. Cisco finally addressed the flaws in 2013 and stopped selling Cisco Video Surveillance Manager (VSM) in 2014. Cisco is going to pay $8.6 Pierluigi Paganini.

Surveillance

Surveillance Technology Government Software

U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer

Krebs on Security

NOVEMBER 28, 2022

But that story omitted an important historical detail about Pushwoosh: In 2013, one of its developers admitted to authoring the Pincer Trojan , malware designed to surreptitiously intercept and forward text messages from Android mobile devices. Pushwoosh says it is a U.S. ” GOV 311. ” FOREIGN ADTECH THREAT? ”

Mobile

Mobile Malware Technology Government

5 pro-freedom technologies that could change the Internet

Malwarebytes

JULY 4, 2022

After a good start, the Internet-enabled, technological revolution we are living through has hit some bumps in the road. To celebrate Independence Day we want to draw your attention to five technologies that could improve life, liberty and the pursuit of happiness on the Internet. Onion networking.

Internet

Internet Internet Technology DNS

Tech CEO Sentenced to 5 Years in IP Address Scheme

Krebs on Security

OCTOBER 17, 2023

based technology company Micfo LLC , has been sentenced to five years in prison for wire fraud. By 2013, a number of Micfo’s customers had landed on the radar of Spamhaus , a group that many network operators rely upon to stem the tide of junk email. Amir Golestan , the 40-year-old CEO of the Charleston, S.C.

Internet

Internet Internet VPN Marketing

Phish-Friendly Domain Registry “.top” Put on Notice

Krebs on Security

JULY 23, 2024

ICANN’s warning redacted the name of the recipient, but records show the.top registry is operated by a Chinese entity called Jiangsu Bangning Science & Technology Co. But the fact that high volumes of phishing sites are being registered through Jiangsu Bangning Science & Technology Co Ltd. is hardly a new trend.

Phishing

Phishing DNS Scams Technology

Experian API Exposed Credit Scores of Most Americans

Krebs on Security

APRIL 28, 2021

Bill Demirkapi , an independent security researcher who’s currently a sophomore at the Rochester Institute of Technology , said he discovered the data exposure while shopping around for student loan vendors online. Geico said the data was used by thieves involved in fraudulently applying for unemployment insurance benefits.

Insurance

Insurance Identity Theft Accountability Technology

Does the World Need Cloud Detection and Response (CDR)?

Anton on Security

JUNE 23, 2022

Three roads I see: CDR should exist as a technology and/or market : Cloud is a new realm for threat detection and so old tools/approaches are not ideal; so we need new tools that work well in this new realm. As you can see, I stole some ideas from my original EDR definition so that some useful similarities come out.

Threat Detection

Threat Detection Marketing Technology

Data Enrichment, People Data Labs and Another 622M Email Addresses

Troy Hunt

NOVEMBER 22, 2019

id":null, "title":"partner", "description":null, "location":null, "position_type":"Past", "company_name":"report uri", "company_url":"linkedin.com/company/report-uri", "start_date_year":2017, "end_date_year":null, "start_date_month":11, "end_date_month":null, "company_website":null, "company_size":"1-10", "company_industry":"internet" }, {. "id":null,

Data breaches

Data breaches Technology Software Accountability

A Basic Timeline of the Exchange Mass-Hack

Krebs on Security

MARCH 8, 2021

. “We never got a ‘real’ confirmation of the zero-day before the patch was released,” said Dubex’s Chief Technology Officer Jacob Herbst. 2, Microsoft patched four flaws in Exchange Server 2013 through 2019. How long have the vulnerabilities exploited here been around?

Hacking

Hacking Technology Software

Tracing the Supply Chain Attack on Android

Krebs on Security

JUNE 25, 2019

com via Domaintools.com shows the domain was assigned in 2015 to a company called “ Shanghai Blazefire Network Technology Co. A records search at Domaintools for “Shanghai Blazefire Network Technology Co” returns 11 domains, including blazefire[.]net, jyhxz.net 2013-07-02 — longmen[.]com com , buydudu[.]com

Mobile

Mobile Technology Manufacturing Software

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Krebs on Security

SEPTEMBER 30, 2024

Also known as “ Assad Faiq” and “ The Godfather ,” Iza is the 30-something founder of a cryptocurrency investment platform called Zort that advertised the ability to make smart trades based on artificial intelligence technology. Troy Woody Jr. left) and Mir Islam, are currently in prison in the Philippines for murder.

Cryptocurrency

Cryptocurrency Government Internet Internet

Ukraine Nabs Suspect in 773M Password ?Megabreach?

Krebs on Security

MAY 19, 2020

” Alex Holden , chief technology officer and founder of Milwaukee-based Hold Security , said Sanixer’s claim to infamy was simply for disclosing the Collection #1 data, which was just one of many credential dumps amalgamated by other cyber criminals.

Passwords

Passwords Accountability Hacking Password Management

Modernizing Health Care Security with SASE

Security Boulevard

SEPTEMBER 3, 2021

Since 2013 and the most recent set of updates to the Health Insurance Portability and Accountability Act (HIPAA), U.S. health care providers have been adopting technologies faster than at any point in the preceding decades.

Insurance

Insurance Information Security Accountability Technology

Breach Exposes Users of Microleaves Proxy Service

Krebs on Security

JULY 28, 2022

Launched in 2013, Microleaves is a service that allows customers to route their Internet traffic through PCs in virtually any country or city around the globe. The very first discussion thread started by the new user Microleaves on the forum BlackHatWorld in 2013 sought forum members who could help test and grow the proxy network.

Advertising

Advertising Software Computers and Electronics Internet

The Great $50M African IP Address Heist

Krebs on Security

DECEMBER 11, 2019

Historic WHOIS records from domaintools.com [a former advertiser on this site] indicate Byaruhanga was the registrant of two domain names tied to this company — ipv4leasing.org and.net — back in 2013. “To say that he had an evident conflict of interest would be a gross understatement.”

Internet

Internet Internet Marketing Government

Tech CEO Pleads to Wire Fraud in IP Address Scheme

Krebs on Security

NOVEMBER 17, 2021

The CEO of a South Carolina technology firm has pleaded guilty to 20 counts of wire fraud in connection with an elaborate network of phony companies set up to obtain more than 735,000 Internet Protocol (IP) addresses from the nonprofit organization that leases the digital real estate to entities in North America.

Internet

Internet Internet VPN Marketing

Snowden Ten Years Later

Schneier on Security

JUNE 6, 2023

In 2013 and 2014, I wrote extensively about new revelations regarding NSA surveillance based on the documents provided by Edward Snowden. I wrote the essay below in September 2013. I am less trusting of communications technology. They were leaked in 2013, but most of them were from 2012 or before.)

Surveillance

Surveillance Computers and Electronics Government Encryption

The Stark Truth Behind the Resurgence of Russia’s Fin7

Krebs on Security

JULY 10, 2024

The Russia-based cybercrime group dubbed “ Fin7 ,” known for phishing and malware attacks that have cost victim organizations an estimated $3 billion in losses since 2013, was declared dead last year by U.S. authorities.

Phishing

Phishing Cybercrime Malware Software

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

Krebs on Security

JANUARY 8, 2024

From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a In December 2023, KrebsOnSecurity published new details about the identity of “Rescator,” a Russian cybercriminal who is thought to be closely connected to the 2013 data breach at Target.

Cybercrime

Cybercrime Banking Computers and Electronics DDOS

DarkTrace Cyber Protects Fashion retailer Ted Baker

CyberSecurity Insiders

JULY 30, 2021

Cyber Security firm DarkTrace that uses the technology of Artificial Intelligence to track down cyber threats is nowadays busy protecting the computer network of British Fashion retailer Ted Baker. Note 2- Established in 2013, Darktrace is a British American company that helps protect its users from various cyber attacks.

Retail

Retail Artificial Intelligence Cyber Attacks Cyber threats

China-linked Daxin Malware Targeted Multiple Governments in Espionage Attacks

The Hacker News

MARCH 1, 2022

A previously undocumented espionage tool has been deployed against selected governments and other critical infrastructure targets as part of a long-running espionage campaign orchestrated by China-linked threat actors since at least 2013.

Government

Government Malware Technology

Who is Tech Investor John Bernard?

Krebs on Security

SEPTEMBER 25, 2020

Rather, he had his firm included on a list of angel investors focused on technology companies, so those seeking investments usually came to him. A review of business records tied to Davies’ phony insolvency consulting businesses between 2007 and 2013 provides some additional pointers. ’s National Crime Agency (NCA).

Scams

Scams Insurance Advertising Technology

The War in Technology: A Digital Iron Curtain Goes Up

SecureWorld News

MARCH 10, 2022

WaPost : Depriving rivals of American-made technology also threatens the future global prospects of an industry that has driven U.S. In 2013, the Russian security agency, FSB, demanded that I provide them the private data of the Ukrainian users of VK who were protesting against a pro-Russian President.

Technology

Technology Internet Internet Telecommunications

NopSec Recognized as 2013 “Emerging Security Vendor” by CRN Magazine

NopSec

AUGUST 12, 2013

NopSec was recognized on the CRN Magazine 2013 list of “Emerging Security Vendors” for the second consecutive year. CRN’s Emerging Vendors for 2013 looks at the hot tech startups in specific technology segments that are making their presence known through the technology industry as a whole.

Technology

Technology Risk

Port Covington, MD re-emerges as ‘CyberTown, USA’ — ground zero for cybersecurity research

The Last Watchdog

JANUARY 7, 2019

When CyberTown, USA is fully built out, it’s backers envision it emerging as the world’s premier technology hub for cybersecurity and data science. Janke: Cybersecurity is the fastest growing segment in technology and is the number one risk-concern of the Fortune 500. LW: What are the key drivers behind this development?

Cybersecurity

Cybersecurity Engineering Technology Government

Sounding the Alarm on Emergency Alert System Flaws

Krebs on Security

AUGUST 12, 2022

We’re grateful for the responsible disclosure and to the security research community for continuing to engage and share information with our teams to make our products and technologies ever more secure. According to the EAS wiki, in February 2013, hackers broke into the EAS networks in Great Falls, Mt. and Marquette, Mich.

Firmware

Firmware Manufacturing Passwords Software

Microsoft: Two New 0-Day Flaws in Exchange Server

Krebs on Security

OCTOBER 1, 2022

is investigating reports that attackers are exploiting two previously unknown vulnerabilities in Exchange Server , a technology many organizations rely on to send and receive email. In customer guidance released Thursday, Microsoft said it is investigating two reported zero-day flaws affecting Microsoft Exchange Server 2013, 2016, and 2019.

Hacking

Hacking Passwords Internet Internet

Google Cloud completes Mandiant acquisition for $5.4 billion

CyberSecurity Insiders

SEPTEMBER 14, 2022

Thomas Kurian, the CEO of Google Cloud, confirmed the finish of the buyout and added that integrating new technology into its portfolio will help enterprises shield themselves at every stage of their security lifecycle. billion and will integrate the newly gained technology into its Google Cloud Division.

Cyber threats

Cyber threats Hacking Technology Software

A Decade Later: How To Send Messages That Even The NSA, CIA, and FBI Cannot Read

Joseph Steinberg

OCTOBER 4, 2023

Since 2013, of course, there have been multiple efforts by governments to spy on users of digital communications and to force technology companies to provide access to the electronic communications of suspected criminals.

Encryption

Encryption Artificial Intelligence Government Media

Google announced the completion of the acquisition of Mandiant for $5.4 billion

Security Affairs

SEPTEMBER 12, 2022

Mandiant is considered a leading cyber security firm, in 2013 FireEye acquired it, but FireEye separated Mandiant Solutions in 2021 as part of a $1.2 (NASDAQ: MNDT) today announced that it has entered into a definitive agreement to be acquired by Google LLC for $23.00 per share in an all-cash transaction valued at approximately $5.4

Cyber threats

Cyber threats Cybersecurity Hacking Technology

FBI Raids Chinese Point-of-Sale Giant PAX Technology

Policy vs Technology

Trending Sources

An Interview With the Target & Home Depot Hacker

10 Personal Finance Lessons for Technology Professionals

On the Subversion of NIST by the NSA

Two NSA Algorithms Rejected by the ISO

Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks

Mariposa Botnet Author, Darkcode Crime Forum Admin Arrested in Germany

Tracing the Supply Chain Attack on Android

Five James Bond gadgets which use real world technologies

MY TAKE: Cyber attacks on industrial controls, operational technology have only just begun

Adconion Execs Plead Guilty in Federal Anti-Spam Case

On Robots Killing People

FEMA IT Specialist Charged in ID Theft, Tax Refund Fraud Conspiracy

Cisco to pay $8.6 million fine for selling flawed surveillance technology to the US Gov

U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer

5 pro-freedom technologies that could change the Internet

Tech CEO Sentenced to 5 Years in IP Address Scheme

Phish-Friendly Domain Registry “.top” Put on Notice

Experian API Exposed Credit Scores of Most Americans

Does the World Need Cloud Detection and Response (CDR)?

Data Enrichment, People Data Labs and Another 622M Email Addresses

A Basic Timeline of the Exchange Mass-Hack

Tracing the Supply Chain Attack on Android

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

Ukraine Nabs Suspect in 773M Password ?Megabreach?

Modernizing Health Care Security with SASE

Breach Exposes Users of Microleaves Proxy Service

The Great $50M African IP Address Heist

Tech CEO Pleads to Wire Fraud in IP Address Scheme

Snowden Ten Years Later

The Stark Truth Behind the Resurgence of Russia’s Fin7

Meet Ika & Sal: The Bulletproof Hosting Duo from Hell

DarkTrace Cyber Protects Fashion retailer Ted Baker

China-linked Daxin Malware Targeted Multiple Governments in Espionage Attacks

Who is Tech Investor John Bernard?

The War in Technology: A Digital Iron Curtain Goes Up

NopSec Recognized as 2013 “Emerging Security Vendor” by CRN Magazine

Port Covington, MD re-emerges as ‘CyberTown, USA’ — ground zero for cybersecurity research

Sounding the Alarm on Emergency Alert System Flaws

Microsoft: Two New 0-Day Flaws in Exchange Server

Google Cloud completes Mandiant acquisition for $5.4 billion

A Decade Later: How To Send Messages That Even The NSA, CIA, and FBI Cannot Read

Google announced the completion of the acquisition of Mandiant for $5.4 billion

Stay Connected