Krebs on Security

DECEMBER 5, 2022

In December 2021, Google filed a civil lawsuit against two Russian men thought to be responsible for operating Glupteba , one of the Internet’s largest and oldest botnets. ” A report from the Polish computer emergency response team (CERT Orange Polksa) found Glupteba was the biggest malware threat in 2021.

Cybercrime 293

Cybercrime Malware Internet Internet 293

Krebs on Security

APRIL 3, 2024

A September 2021 story here checked in on The Manipulaters, and found that Saim Raza and company were prospering under their FudCo brands, which they secretly managed from a front company called We Code Solutions. “Please remove this article,” Sam Raza wrote, linking to the 2021 profile. “Why you post us? But on Jan.

Phishing 278

Phishing Cybercrime Malware Advertising 278

Krebs on Security

AUGUST 25, 2021

A copy of the May 2021 complaint is here (PDF). Because plaintiff did not file his lawsuit until May 21, 2021, three years and five months after his injury, his claims should be dismissed.” Met with continued silence from the parents for many months, Schober filed suit against the kids and their parents in a Colorado court.

Cryptocurrency 361

Cryptocurrency Malware Mobile Accountability 361

Krebs on Security

APRIL 27, 2022

Donahue is co-founder of Kodex , a company formed in February 2021 that builds security portals designed to help tech companies “manage information requests from government agencies who contact them, and to securely transfer data & collaborate against abuses on their platform.” A sample Kodex dashboard. Image: Kodex.us.

Mobile 223

Mobile Government Media Technology 223

Krebs on Security

MARCH 31, 2022

That was in March 2021, but there are similar fake EDR services on offer today. In July 2021, Sen. .” Tuesday’s story showed how fraudulently obtained EDRs were a tool used by members of LAPSUS$ , the data extortion group that recently hacked Microsoft , NVIDIA , Okta and Samsung.

Government 312

Government Accountability Education Media 312

Krebs on Security

JUNE 28, 2022

On December 7, 2021, Google announced it was suing two Russian men allegedly responsible for operating the Glupteba botnet, a global malware menace that has infected millions of computers over the past decade. But on Dec.

Passwords 302

Passwords Malware Internet Internet 302

Krebs on Security

JANUARY 17, 2024

The profile explains that he launched his own record label in 2021 called Punchmade Records, where he produces his own instrumentals and edits his own music videos. This November 2021 record includes a Certificate of Assumed Name, which shows that Punchmade LLC is the assumed name of OBN Group LLC.

Cybercrime 321

Cybercrime Media Banking Accountability 321

Krebs on Security

FEBRUARY 3, 2022

More recently in late 2021, Jeremy Fuchs of Avanan wrote that the use of a LinkedIn URL may mean that any profession — the market for LinkedIn — could click. Let me be clear that the activity described in this post is not new. “The idea is to create a link that contains a clean page, redirecting to a phishing page.”

Phishing 358

Phishing Marketing Scams Accountability 358

Krebs on Security

OCTOBER 17, 2023

As a result, the government was able to charge Golestan with 20 counts of wire fraud — one for each payment made by the phony companies that bought the IP addresses from ARIN. Golestan initially sought to fight those charges. Prosecutors estimated those addresses were valued at between $10 million and $14 million.

Internet 343

Internet Internet VPN Marketing 343

Krebs on Security

SEPTEMBER 1, 2021

Hosted on the same Internet address as VIP72 for the past decade until mid-August 2021, Check2IP also advertised the ability to let customers detect “DNS leaks,” instances where configuration errors can expose the true Internet address of hidden cybercrime infrastructure and services online.

Malware 338

Malware Cybercrime Internet Internet 338

Krebs on Security

AUGUST 4, 2022

” In 2021, more than 92,000 victims over the age of 60 reported losses of $1.7 . “They might also be concerned that their relatives will lose confidence in their abilities to manage their own financial affairs. And when an elderly victim does report a crime, they may be unable to supply detailed information to investigators.”

Banking 310

Banking Scams Accountability Passwords 310

Krebs on Security

DECEMBER 13, 2022

In November 2021, KrebsOnSecurity detailed how Pompompurin abused a vulnerability in an FBI online portal designed to share information with state and local law enforcement authorities, and how that access was used to blast out thousands of hoax email messages — all sent from an FBI email and Internet address.

Hacking 363

Hacking Energy and Utilities Cybercrime Accountability 363

Krebs on Security

MARCH 29, 2022

” On April 5, 2021, Everlynn posted a new sales thread to the cybercrime forum cracked[.]to In November 2021, KrebsOnSecurity broke the news that hackers sent a fake email alert to thousands of state and local law enforcement entities through the FBI’s Law Enforcement Enterprise Portal (LEEP).

Accountability 292

Accountability Government Hacking Social Engineering 292

Krebs on Security

JANUARY 9, 2023

In April 2021, KrebsOnSecurity revealed how identity thieves were exploiting lax authentication on Experian’s PIN retrieval page to unfreeze consumer credit files. A few days after that April 2021 story, KrebsOnSecurity broke the news that an Experian API was exposing the credit scores of most Americans.

Identity Theft 352

Identity Theft Accountability Authentication Web Fraud 352

Krebs on Security

JULY 10, 2022

In April 2021, KrebsOnSecurity revealed how identity thieves were exploiting lax authentication on Experian’s PIN retrieval page to unfreeze consumer credit files. A few days after that April 2021 story, KrebsOnSecurity broke the news that an Experian API was exposing the credit scores of most Americans.

Accountability 338

Accountability Passwords Authentication Password Management 338

Krebs on Security

NOVEMBER 6, 2023

January 2021 posts on Verified show that Fearlless and his partner Universalo purchased the SWAT reshipping business from a Verified member named SWAT, who’d been operating the service for years.

Passwords 296

Passwords Cybercrime Accountability Hacking 296

Krebs on Security

NOVEMBER 19, 2021

.” Anyone interested in letting the CFPB know about a fraud scam that abused a P2P payment platform like Zelle, Cashapp, or Venmo, for example, should send an email describing the incident to BigTechPaymentsInquiry@cfpb.gov. CFPB-2021-0017 in the subject line of the message. Be sure to include Docket No.

Scams 362

Scams Banking Passwords Authentication 362

Krebs on Security

OCTOBER 9, 2023

A different domain with that same Google Analytics code that was registered in 2021 is peraltansepeda[.]com According to dnslytics.com , that same analytics code has shown up on at least six other nearly identical USPS phishing pages dating back nearly as many years, including onlineuspsexpress[.]com

Phishing 326

Phishing Scams Passwords Web Fraud 326

Krebs on Security

JUNE 6, 2023

The crypto scam affiliate program “Project Impulse,” advertising in 2021. According to the FBI , financial losses from cryptocurrency investment scams dwarfed losses for all other types of cybercrime in 2022 , rising from $907 million in 2021 to $2.57 Image: Trend Micro. billion last year.

Accountability 253

Accountability Scams Cryptocurrency Advertising 253

Krebs on Security

AUGUST 16, 2022

” The administrator of Breached is “ Pompompurin ,” the same individual who alerted this author in November 2021 to a glaring security hole in a U.S. Thank you for your cooperation and prompt attention to this urgent matter.” Justice Department website that was used to spoof security alerts from the FBI.

Data breaches 319

Data breaches Banking Cybercrime Marketing 319

Krebs on Security

DECEMBER 8, 2022

In April, 2021, KrebsOnSecurity detailed how CLOP helped pioneer another innovation aimed at pushing more victims into paying an extortion demand: Emailing the ransomware victim’s customers and partners directly and warning that their data would be leaked to the dark web unless they can convince the victim firm to pay up.

Healthcare 323

Healthcare Backups Ransomware Insurance 323

Krebs on Security

SEPTEMBER 13, 2024

Department of Justice (DOJ) for a 2021 breach at T-Mobile that exposed the personal information of at least 76.6 In November 2021, KrebsOnSecurity broke the news that thousands of fake emails about a cybercrime investigation were blasted out from the FBI’s email systems and Internet addresses. million customers.

Cybercrime 319

Cybercrime Accountability Mobile Hacking 319

Krebs on Security

AUGUST 30, 2022

2021 post about the change. . “Security keys can differentiate legitimate sites from malicious ones and block phishing attempts that SMS 2FA or one-time password (OTP) verification codes would not,” Twitter said in an Oct. ”

Mobile 339

Mobile Phishing Authentication Accountability 339

Krebs on Security

APRIL 12, 2022

11, 2021, an individual using the moniker “ SubVirt ” posted on RaidForums an offer to sell Social Security numbers, dates of birth and other records on more than 120 million people in the United States (SubVirt would later edit the sales thread to say 30 million records).

Government 259

Government Identity Theft Mobile Data breaches 259

Krebs on Security

SEPTEMBER 30, 2024

The complaint references a November 2021 incident wherein Iza and E.Z. They’re active-duty.” ” The FBI alleges LASD officers had on several previous occasions tried to kidnap and extort E.Z. at Iza’s behest. were in a car together when Iza asked to stop and get snacks at a convenience store. to hand over his phone.

Cryptocurrency 310

Cryptocurrency Government Internet Internet 310

Krebs on Security

SEPTEMBER 2, 2021

Bill said that in the first week of April 2021, he identified 15,000 compromised Office365 accounts being accessed by this group, spread over 6,500 different organizations that use Office365.

Accountability 343

Accountability Authentication Passwords Hacking 343

Krebs on Security

JULY 18, 2022

In August 2021, 911’s biggest competitor — a 15-year-old proxy network built on malware-compromised PCs called VIP72 — abruptly closed up shop. .” The service charged 20 percent of all “scam wires,” unauthorized wire transfers resulting from bank account takeovers or scams like CEO impersonation schemes.

VPN 349

VPN Computers and Electronics Antivirus Software 349

Krebs on Security

MAY 22, 2023

According to the FBI , financial losses from cryptocurrency investment scams dwarfed losses for all other types of cybercrime in 2022 , rising from $907 million in 2021 to $2.57 billion last year.

Scams 300

Scams DDOS Cryptocurrency Accountability 300

Krebs on Security

AUGUST 2, 2022

1, 2021: 15-Year-Old Malware Proxy Network VIP72 Goes Dark. July 18, 2022: A Deep Dive Into the Residential Proxy Service ‘911’ June 28, 2022: The Link Between AWM Proxy & the Glupteba Botnet. June 22, 2022: Meet the Administrators of the RSOCKS Proxy Botnet.

Malware 315

Malware Cybercrime Internet Internet 315

Krebs on Security

FEBRUARY 28, 2023

In August 2021, T-Mobile acknowledged that hackers made off with the names, dates of birth, Social Security numbers and driver’s license/ID information on more than 40 million current, former or prospective customers who applied for credit with the company.

Mobile 340

Mobile Phishing Authentication Advertising 340

Krebs on Security

JANUARY 25, 2022

Curiously, the fraudsters had taken out a loan in Jim’s name with MSF using his real email address — the same email address the fraudsters had used to impersonate him to MSF back in May 2021. 16, 2021, the U.S. ” Buckley notes that on Nov.

Financial Services 243

Financial Services Banking Accountability Identity Theft 243

Krebs on Security

AUGUST 17, 2023

Nevertheless, Cyberthreat reported that Devilscream was arrested by Indonesian police in late 2021 as part of a collaboration between INTERPOL and the U.S. 16Shop documentation instructing operators on how to deploy the kit. Image: ZeroFox. Federal Bureau of Investigation (FBI).

Phishing 229

Phishing Passwords Internet Internet 229

Krebs on Security

JULY 21, 2022

Nolan said her nightmare began in late 2021 with a Twitter direct message from someone who was following many of the same cryptocurrency influencers she followed. Nolan’s case may be especially bad because she was already interested in crypto investing when the scammer reached out.

Scams 331

Scams Cryptocurrency Marketing Internet 331

Krebs on Security

SEPTEMBER 26, 2024

In January 2021, Joker’s Stash announced it was closing up shop , after European authorities seized a number of servers for the fraud store, and its proprietor came down with the Coronavirus. Joker’s Stash also was unique because it claimed to sell only payment cards that its own hackers had stolen directly from merchants.

Cryptocurrency 292

Cryptocurrency Cybercrime Retail Government 292

Krebs on Security

APRIL 18, 2023

” Russian corporate records indicate this entity was liquidated in 2021. More recent records for IP Pankov Denis Viktorovich show a microenterprise with this name in Omsk that described its main activity as “retail sale by mail or via the Internet.”

Malware 292

Malware Passwords Accountability Advertising 292

Krebs on Security

SEPTEMBER 4, 2022

18, 2021, police in Abington Township, Pa., According to investigators, McGovern-Allen was one of the shooters, who yelled “Justin Active was here” as they haphazardly fired at least eight rounds into the lower story of the West Chester residence.

Government 49

Government Accountability Cryptocurrency Web Fraud 49

Krebs on Security

MARCH 22, 2022

The latest document in the hacked archive is dated April 2021. Incredibly, Vrublevsky himself appears to have used ChronoPay’s Confluence wiki to document his entire 20+ years of personal and professional history in the high-risk payments space, including the company’s most recent forays with HPay.

Banking 231

Banking Marketing DDOS Risk 231