Krebs on Security

MARCH 11, 2025

Rapid7’s lead software engineer Adam Barnett said Windows 11 and Server 2019 onwards are not listed as receiving patches, so are presumably not vulnerable. The SANS Internet Storm Center has a useful list of all the Microsoft patches released today, indexed by severity.

System Administration 222

System Administration Engineering Internet Internet 222

Krebs on Security

DECEMBER 19, 2024

Cyber threat analysts at Silent Push said they recently received reports from a partner organization that identified an aggressive scanning effort against their website using an Internet address previously associated with a campaign by FIN7 , a notorious Russia-based hacking group. ” Orn advertising Araneida Scanner in Feb.

Hacking 230

Hacking Cybercrime Advertising Data breaches 230

Krebs on Security

FEBRUARY 4, 2025

An investigation into the history of these communities shows their apparent co-founders quite openly operate an Internet service provider and a pair of e-commerce platforms catering to buyers and sellers on both forums. Constella found that a user named Shoppy registered on Cracked in 2019 using the email address finn@shoppy[.]gg.

eCommerce 203

eCommerce Cybercrime Accountability Passwords 203

Krebs on Security

MARCH 27, 2025

Tamoian, a native Russian who left the country in 2019, is the founder of the cyber investigation platform malfors.com. He recently discovered two other sites impersonating the Ukrainian paramilitary groups — legionliberty[.]world world and rusvolcorps[.]ru ru — and reported both to Cloudflare.

Phishing 185

Phishing Government Engineering Internet 185

Krebs on Security

JULY 31, 2024

Your Web browser knows how to find a site like example.com thanks to the global Domain Name System (DNS), which serves as a kind of phone book for the Internet by translating human-friendly website names (example.com) into numeric Internet addresses. If this threat sounds familiar, that’s because it is hardly new.

DNS 310

DNS Internet Internet Phishing 310

Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. billion in 2019. In August 2019, the company said a third-party investigation into the exposure identified just 32 consumers whose non-public personal information likely was accessed without authorization. .

Insurance 348

Insurance Financial Services Penetration Testing Scams 348

The Hacker News

APRIL 29, 2024

A previously undocumented cyber threat dubbed Muddling Meerkat has been observed undertaking sophisticated domain name system (DNS) activities in a likely effort to evade security measures and conduct reconnaissance of networks across the world since October 2019.

DNS 145

DNS Internet Internet Cyber threats 145

Adam Shostack

JANUARY 2, 2025

The Internet of Garbage by Sarah Jeong. As a summary of the problems and challenges of the internet, it's aged sadly well since 2015. Shows how guerrilla marketing works in the age of Twitter, and outlines techniques now being used to screw up elections and people's lives. The Tangled Tree: A Radical New History of Life.

Marketing 130

Marketing Internet Internet Software 130

Krebs on Security

DECEMBER 19, 2018

Microsoft today released an emergency software patch to plug a critical security hole in its Internet Explorer (IE) Web browser that attackers are already using to break into Windows computers.

Internet 256

Internet Internet Software Engineering 256

The Last Watchdog

MARCH 28, 2019

The author of Mirai used a sledgehammer to kill a fly: the DDoS bombardment was so large that it also wiped out Dyn , a UK-based internet performance vendor. I had the chance at RSA 2019 to discuss the wider implications with Don Shin, A10 Networks’ senior product marketing manager. Here are the key takeaways: Reflective attacks.

DDOS 263

DDOS IoT DNS Internet 263

Krebs on Security

SEPTEMBER 8, 2020

The majority of the most dangerous or “critical” bugs deal with issues in Microsoft’s various Windows operating systems and its web browsers, Internet Explorer and Edge. An attacker could leverage the Exchange bug to run code of his choosing just by sending a booby-trapped email to a vulnerable Exchange server.

Software 308

Software Backups Authentication Internet 308

Krebs on Security

FEBRUARY 18, 2019

This post seeks to document the extent of those attacks, and traces the origins of this overwhelmingly successful cyber espionage campaign back to a cascading series of breaches at key Internet infrastructure providers. federal civilian agencies to secure the login credentials for their Internet domain records. That changed on Jan.

DNS 279

DNS Internet Internet Government 279

Krebs on Security

APRIL 10, 2020

Most people who who filed a tax return in 2018 and/or 2019 and provided their bank account information for a debit or credit should soon see an Economic Impact Payment direct-deposited into their bank accounts. Likewise, people drawing Social Security payments from the government will receive stimulus payments the same way.

Computers and Electronics 361

Computers and Electronics Banking Accountability Scams 361

Krebs on Security

AUGUST 10, 2021

The software giant warned that attackers already are pouncing on one of the flaws, which ironically enough involves an easy-to-exploit bug in the software component responsible for patching Windows 10 PCs and Windows Server 2019 machines. “In the case of ransomware attacks, they have also been used to ensure maximum damage.”

Software 326

Software Internet Internet Backups 326

Krebs on Security

MARCH 9, 2021

Top of the heap this month (apart from the ongoing, global Exchange Server mass-compromise ) is a patch for an Internet Explorer bug that is seeing active exploitation. “We strongly encourage all organizations that rely on Internet Explorer and Microsoft Edge (EdgeHTML-Based) to apply these patches as soon as possible.”

DNS 353

DNS Internet Internet Software 353

Adam Levin

JULY 10, 2020

For comparison, that’s a 273% increase over the first two quarters of 2019 combined. While the number of publicly reported breaches in Q1 2020 decreased by 58% compared to 2019, the coronavirus pandemic gave cybercriminals new ways to thrive,” wrote Bitdefender researcher and blogger Alina Bizga.

Data breaches 252

Data breaches Social Engineering Antivirus Scams 252

Krebs on Security

NOVEMBER 14, 2023

It affects Microsoft Windows 10 and later, as well as Microsoft Windows Server 2019 and subsequent versions. “This vulnerability can be exploited locally, with low complexity and without needing high-level privileges or user interaction,” said Mike Walters , president and co-founder of the security firm Action1.

Social Engineering 310

Social Engineering Internet Internet Phishing 310

Krebs on Security

JUNE 10, 2022

At the outset of their federal criminal trial for hijacking vast swaths of Internet addresses for use in large-scale email spam campaigns, three current or former executives at online advertising firm Adconion Direct (now Amobee ) have pleaded guilty to lesser misdemeanor charges of fraud and misrepresentation via email.

Government 321

Government Marketing Internet Internet 321

Krebs on Security

JUNE 7, 2022

Netflix has a new documentary series airing next week — “ Web of Make Believe: Death, Lies & the Internet ” — in which Yours Truly apparently has a decent amount of screen time. We’ve been fortunate that none of our swatting events ended in physical harm, and that our assailants have all faced justice.

Cybercrime 338

Cybercrime Internet Internet Web Fraud 338

Krebs on Security

NOVEMBER 17, 2020

These so-called “push notifications” rely on an Internet standard designed to work similarly across different operating systems and web browsers. The company’s site currently is ranked by Alexa.com as among the top 2,000 sites in terms of Internet traffic globally.

Antivirus 359

Antivirus Advertising Internet Internet 359

Krebs on Security

FEBRUARY 11, 2020

Microsoft today released updates to plug nearly 100 security holes in various versions of its Windows operating system and related software, including a zero-day vulnerability in Internet Explorer (IE) that is actively being exploited. Another flaw fixed this month in Microsoft Exchange 2010 through 2019 may merit special attention.

Backups 64

Backups Malware Internet Internet 64

Security Affairs

SEPTEMBER 26, 2024

internet service providers (ISPs) as part of a cyber espionage campaign code-named Salt Typhoon. internet service providers in recent months as part of a cyber espionage campaign code-named Salt Typhoon. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.”

Internet 128

Internet Internet DNS Telecommunications 128

Krebs on Security

JANUARY 29, 2020

leaked internal customer support data to the Internet, mobile provider Sprint has addressed a mix-up in which posts to a private customer support community were exposed to the Web. Fresh on the heels of a disclosure that Microsoft Corp.

Social Engineering 305

Social Engineering Telecommunications Data privacy Engineering 305

Security Affairs

NOVEMBER 18, 2024

Salt Typhoon is a China-linked APT group active since at least 2019. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.” China has long targeted global internet service providers and recent attacks are aligned with past operations linked to Beijing.

Mobile 112

Mobile Telecommunications Data breaches Hacking 112

Krebs on Security

MARCH 2, 2021

The patches released today fix security problems in Microsoft Exchange Server 2013 , 2016 and 2019. “HAFNIUM has previously compromised victims by exploiting vulnerabilities in internet-facing servers. . “HAFNIUM has previously compromised victims by exploiting vulnerabilities in internet-facing servers.

Internet 343

Internet Internet Software Education 343

Krebs on Security

MARCH 5, 2021

On March 2, Microsoft released emergency security updates to plug four security holes in Exchange Server versions 2013 through 2019 that hackers were actively using to siphon email communications from Internet-facing systems running Exchange. Speaking on condition of anonymity, two cybersecurity experts who’ve briefed U.S.

Hacking 364

Hacking Software Government Internet 364

Krebs on Security

MARCH 7, 2020

While what my source did was technically wire fraud (obtaining something of value via the Internet through false pretenses), cybercriminals bent on using fake.gov domains to hoodwink Americans likely would not be deterred by such concerns. Then you either mail or fax it in. After that, they send account creation links to all the contacts.”.

Internet 297

Internet Internet Cybercrime Government 297

Krebs on Security

SEPTEMBER 8, 2021

According to a security advisory from Redmond, the security hole CVE-2021-40444 affects the “MSHTML” component of Internet Explorer (IE) on Windows 10 and many Windows Server versions. There is currently no official patch for the flaw, but Microsoft has released recommendations for mitigating the threat.

Software 356

Software Engineering Internet Internet 356

Schneier on Security

FEBRUARY 13, 2021

I wrote this in 2019: The other solution is to build a secure system, even though any of its parts can be subverted. It sounds ridiculous on its face, but the Internet itself was a solution to a similar problem: a reliable network built out of unreliable parts. We need some fundamental security research here.

Surveillance 363

Surveillance Internet Internet Government 363

Security Affairs

DECEMBER 3, 2024

In 2021, the University of Toronto-based Citizen Lab Internet reported that a Polish opposition duo was hacked with NSO spyware. According to the Gazeta Wyborcza daily, the spyware was used to spy on the phone of Jacek Karnowski, mayor of the city of Sopot, in 2018-2019.

Spyware 117

Spyware Government Surveillance Hacking 117

Krebs on Security

DECEMBER 1, 2020

As KrebsOnSecurity noted in 2019 , Vaughn’s identity was revealed by following the trail of clues from a gaming website he used that later got hacked. That is, until early January 2019, when news broke that hackers had broken into the servers of computer game maker BlankMediaGames and made off with account details of some 7.6

DDOS 278

DDOS Hacking Mobile Encryption 278

Krebs on Security

FEBRUARY 8, 2021

“According to the analysis of foreign law enforcement agencies, more than 50% of all phishing attacks in 2019 in Australia were carried out thanks to the development of the Ternopil hacker,” the attorney general’s office said, noting that investigators had identified hundreds of U-Admin customers. ” U-Admin, a.k.a.

Phishing 329

Phishing Scams Banking Mobile 329

Krebs on Security

JANUARY 24, 2020

On December 23, 2019, unknown attackers began contacting customer support people at OpenProvider , a popular domain name registrar based in The Netherlands. 23, 2019, the e-hawk.net domain was transferred to a reseller account within OpenProvider. Use access control lists for applications, Internet traffic and monitoring.

DNS 313

DNS Social Engineering Engineering Accountability 313

Troy Hunt

JANUARY 15, 2021

A little bit of a change of pace this week with the video being solely on the events unfolding around removing content, people and even entire platforms from the internet. These are significant events in history, regardless of your political persuasion, and they're likely to have a very long-lasting impact on the way we communicate online.

Password Management 260

Password Management Internet Internet Accountability 260

Krebs on Security

APRIL 26, 2019

iLnkP2p is bundled with millions of Internet of Things (IoT) devices, including security cameras and Webcams, baby monitors, smart doorbells, and digital video recorders. “In reality, enumeration of these prefixes has shown that the number of online devices was ~1,517,260 in March 2019.

IoT 278

IoT Firewall Manufacturing Computers and Electronics 278

Krebs on Security

JUNE 22, 2022

A copy of the passport for Denis Kloster, as posted to his Vkontakte page in 2019. 2019, he obtained a visa from the American Embassy in Bangkok, Thailand. That phone number is tied to the WHOIS registration records for multiple domain names over the years, including proxy[.]info info , allproxy[.]info It shows that in Oct.

Advertising 318

Advertising Cybercrime System Administration Hacking 318

Krebs on Security

NOVEMBER 9, 2021

Both involve weaknesses in Microsoft’s Remote Desktop Protocol (RDP, Windows’ built-in remote administration tool) running on Windows 7 through Windows 11 systems, and on Windows Server 2008-2019 systems. The flaws let an attacker view the RDP password for the vulnerable system.

Backups 306

Backups Passwords Authentication Internet 306