Krebs on Security

JUNE 22, 2023

.” The written notice goes on to say UPS believes the data exposure “affected packages for a small group of shippers and some of their customers from February 1, 2022 to April 24, 2023.” “It seems likely to me that UPS is leaking information somehow about upcoming deliveries.” info , legodelivery[.]info

Phishing 325

Phishing Retail Mobile Scams 325

Krebs on Security

SEPTEMBER 13, 2024

A cyberattack that shut down two of the top casinos in Las Vegas last year quickly became one of the most riveting security stories of 2023: It was the first known case of native English-speaking hackers in the United States and Britain teaming up with ransomware gangs based in Russia. POMPOMPURIN In March 2023, U.S.

Cybercrime 319

Cybercrime Accountability Mobile Hacking 319

Krebs on Security

APRIL 4, 2024

Other Privnote phishing domains that also phoned home to the same Internet address as pirwnote[.]com com is currently selling security cameras made by the Chinese manufacturer Hikvision , via an Internet address based in Hong Kong. Searching DomainTools for domains that include both of these terms reveals pirwnote[.]com.

Phishing 271

Phishing Cryptocurrency DDOS Internet 271

Krebs on Security

JULY 15, 2024

New York City-based Squarespace purchased roughly 10 million domain names from Google Domains in June 2023, and it has been gradually migrating those domains to its service ever since. In some cases, the attackers were able to redirect the hijacked domains to phishing sites set up to steal visitors’ cryptocurrency funds.

Accountability 327

Accountability Cryptocurrency Passwords DNS 327

Krebs on Security

MAY 22, 2023

Chaput said that on May 4, 2023, someone unleashed a spam torrent targeting users on these Mastodon communities via “private mentions,” a kind of direct messaging on the platform. that were created from different Internet addresses in Vienna, Austria.

Scams 300

Scams DDOS Cryptocurrency Accountability 300

Krebs on Security

MARCH 7, 2023

On March 3, 2023, social media giant Meta sued Freenom in a Northern California court, alleging cybersquatting violations and trademark infringement. In June 2015, ICANN suspended Freenom’s ability to create new domain names or initiate inbound transfers of domain names for 90 days.

Phishing 303

Phishing Media Internet Internet 303

Krebs on Security

FEBRUARY 28, 2024

A search in Google for a string of text from that script turns up a December 2023 blog post from cryptocurrency security firm SlowMist about phishing attacks on Telegram from North Korean state-sponsored hackers. “When the project team clicks the link, they encounter a region access restriction,” SlowMist wrote.

Malware 326

Malware Cryptocurrency Software Phishing 326

Krebs on Security

JANUARY 30, 2024

stole at least $800,000 from at least five victims between August 2022 and March 2023. In February 2023, LastPass disclosed that the intrusion involved a highly complex, targeted attack against a DevOps engineer who was one of only four LastPass employees with access to the corporate vault. . Image credit: Amitai Cohen of Wiz.

Social Engineering 356

Social Engineering Mobile Passwords Cybercrime 356

Krebs on Security

FEBRUARY 28, 2023

All three SIM-swapping entities that were tracked for this story remain active in 2023, and they all conduct business in open channels on the instant messaging platform Telegram. Thus, the second factor cannot be phished, either over the phone or Internet.

Mobile 340

Mobile Phishing Authentication Advertising 340

Krebs on Security

SEPTEMBER 5, 2023

” Monahan has been documenting the crypto thefts via Twitter/X since March 2023, frequently expressing frustration in the search for a common cause among the victims. The Internet is swimming with con artists masquerading as legitimate cryptocurrency recovery experts. Then on Aug. But on Nov.

Cryptocurrency 361

Cryptocurrency Passwords Encryption Accountability 361

Krebs on Security

OCTOBER 17, 2024

Image: FBI Active since at least January 2023, AnonSudan has been described in media reports as a “hacktivist” group motivated by ideological causes. companies, causing a multi-day outage for Microsoft’s cloud services in June 2023. 2023), and OpenAI (Nov. 7, 2023, a wave of rockets was launched into Israel.

DDOS 250

DDOS Government Internet Internet 250

Krebs on Security

MARCH 28, 2024

2023, the Pennsylvania news outlet LancasterOnline.com published a story about Adam Kidan , a wealthy businessman with a criminal past who is a major donor to Republican causes and candidates, including Rep. Kidan having his Microsoft Outlook account compromised and used to send malicious email to people in his contacts list.

Phishing 308

Phishing Scams Accountability Passwords 308

Krebs on Security

DECEMBER 18, 2024

. “So, the attacker receives the invitation to fill out the form – and when they complete it, they enter their intended victim’s email address into the form, not their own,” Cluely wrote in a December 2023 post. ” The fake Google representative was polite, patient, professional and reassuring. .”

Cryptocurrency 363

Cryptocurrency Accountability Authentication Phishing 363

Krebs on Security

JANUARY 30, 2025

In 2023, Suncity’s CEO was sentenced to 18 years in prison on charges of fraud, illegal gambling, and “ triad offenses,” i.e. working with Chinese transnational organized crime syndicates. cloud providers. ” A Suncity gambling site promoted via Funnull.

Accountability 236

Accountability Scams Passwords Retail 236