Krebs on Security

JANUARY 25, 2024

” In February 2023, Hegel co-authored a report on this same network, which Sentinel One has dubbed MalVirt (a play on “malvertising”). This October 2023 report on the FreeCAD user forum came from a user who reported downloading a copy of the software from freecadsoft[.]com They paid Google for sponsored posts.”

Software 324

Software Advertising Malware Accountability 324

Krebs on Security

JUNE 22, 2023

.” The written notice goes on to say UPS believes the data exposure “affected packages for a small group of shippers and some of their customers from February 1, 2022 to April 24, 2023.” “It seems likely to me that UPS is leaking information somehow about upcoming deliveries.” info , legodelivery[.]info

Phishing 331

Phishing Retail Mobile Scams 331

Krebs on Security

SEPTEMBER 13, 2024

A cyberattack that shut down two of the top casinos in Las Vegas last year quickly became one of the most riveting security stories of 2023: It was the first known case of native English-speaking hackers in the United States and Britain teaming up with ransomware gangs based in Russia. POMPOMPURIN In March 2023, U.S.

Cybercrime 326

Cybercrime Accountability Mobile Hacking 326

Krebs on Security

JANUARY 30, 2024

stole at least $800,000 from at least five victims between August 2022 and March 2023. In February 2023, LastPass disclosed that the intrusion involved a highly complex, targeted attack against a DevOps engineer who was one of only four LastPass employees with access to the corporate vault. . Image credit: Amitai Cohen of Wiz.

Social Engineering 358

Social Engineering Mobile Passwords Cybercrime 358

Krebs on Security

AUGUST 3, 2023

Eremin said ThreatFabric has seen this malware obfuscation method used a few times in the past, but in April 2023 it started finding many more variants of known mobile malware families leveraging it for stealth. Eremin said Google flagged their initial May 9, 2023 report as “high” severity.

Mobile 235

Mobile Malware Banking Cybercrime 235

Krebs on Security

SEPTEMBER 1, 2023

Interisle’s newest study examined six million phishing reports between May 1, 2022 and April 30, 2023, and found 30,000.US For more phishing facts, see Interisle’s 2023 Phishing Landscape report (PDF). US phishing domains.US Department of Commerce.

Phishing 298

Phishing Telecommunications Government DNS 298

Krebs on Security

FEBRUARY 28, 2024

A search in Google for a string of text from that script turns up a December 2023 blog post from cryptocurrency security firm SlowMist about phishing attacks on Telegram from North Korean state-sponsored hackers. “When the project team clicks the link, they encounter a region access restriction,” SlowMist wrote.

Malware 332

Malware Cryptocurrency Software Phishing 332

Krebs on Security

JULY 15, 2024

New York City-based Squarespace purchased roughly 10 million domain names from Google Domains in June 2023, and it has been gradually migrating those domains to its service ever since. In some cases, the attackers were able to redirect the hijacked domains to phishing sites set up to steal visitors’ cryptocurrency funds.

Accountability 332

Accountability Cryptocurrency Passwords DNS 332

Krebs on Security

OCTOBER 18, 2023

In August 2023, security researcher Randy McEoin blogged about a scam he dubbed ClearFake , which uses hacked WordPress sites to serve visitors with a page that claims you need to update your browser before you can view the content.

Scams 339

Scams Malware Cryptocurrency Hacking 339

Krebs on Security

JULY 10, 2024

In May 2023, the U.S. But experts say Fin7 has roared back to life in 2024 — setting up thousands of websites mimicking a range of media and technology companies — with the help of Stark Industries Solutions , a sprawling hosting provider that is a persistent source of cyberattacks against enemies of Russia.

Phishing 320

Phishing Cybercrime Malware Software 320

Krebs on Security

MARCH 7, 2023

On March 3, 2023, social media giant Meta sued Freenom in a Northern California court, alleging cybersquatting violations and trademark infringement.

Phishing 309

Phishing Media Internet Internet 309

Krebs on Security

SEPTEMBER 5, 2023

” Monahan has been documenting the crypto thefts via Twitter/X since March 2023, frequently expressing frustration in the search for a common cause among the victims. Then on Aug. But on Nov. LastPass disclosed that criminal hackers had compromised encrypted copies of some password vaults, as well as other personal information.

Cryptocurrency 362

Cryptocurrency Passwords Encryption Accountability 362

Krebs on Security

SEPTEMBER 18, 2024

xyz , a domain registered in November 2023. According to DomainTools.com , the organization that registered this domain is called “ apkdownloadweb ,” is based in Rajshahi, Bangladesh, and uses the DNS servers of a Web hosting company in Bangladesh called webhostbd[.]net.

Scams 65

Scams DNS Internet Internet 65

Krebs on Security

FEBRUARY 28, 2023

All three SIM-swapping entities that were tracked for this story remain active in 2023, and they all conduct business in open channels on the instant messaging platform Telegram.

Mobile 344

Mobile Phishing Authentication Advertising 344

Krebs on Security

APRIL 18, 2023

In January 2023, the Faceless service website said it was willing to pay for information about previously undocumented security vulnerabilities in IoT devices. “We could reliably look up the [fingerprint] for these media sharing devices in Shodan and find those same systems for sale on Faceless,” Kilmer said.

Malware 299

Malware Passwords Accountability Advertising 299

Krebs on Security

NOVEMBER 2, 2023

Once the drops receive and successfully reship the stolen packages, the stuffers then sell the products on the local black market. The SWAT drop service has been around in various names and under different ownership for almost a decade.

Cybercrime 333

Cybercrime Marketing Scams Retail 333

Krebs on Security

AUGUST 4, 2023

According to the latest figures from Check Point Software , Microsoft was by far the most impersonated brand for phishing scams in the second quarter of 2023, accounting for nearly 30 percent of all brand phishing attempts.

Phishing 239

Phishing Scams Computers and Electronics Software 239

Krebs on Security

APRIL 4, 2024

Throughout 2023, Tornote was hosted with the Russian provider DDoS-Guard , at the Internet address 186.2.163[.]216. Like other phishing sites tied to this network, Tornote will use the same cryptocurrency addresses for roughly 5 days, and then rotate in new payment addresses. io, the main other domain at this address was hkleaks[.]ml.

Phishing 279

Phishing Cryptocurrency DDOS Internet 279

Krebs on Security

JANUARY 9, 2023

If you haven’t already done so, consider making 2023 the year that you freeze your credit files at the three major reporting bureaus, including Experian, Equifax and TransUnion. It is now free to people in all 50 U.S. states to place a security freeze on their credit files.

Identity Theft 355

Identity Theft Accountability Authentication Web Fraud 355

Krebs on Security

MAY 22, 2023

Chaput said that on May 4, 2023, someone unleashed a spam torrent targeting users on these Mastodon communities via “private mentions,” a kind of direct messaging on the platform. The messages said recipients had earned an investment credit at a cryptocurrency trading platform called moonxtrade[.]com.

Scams 307

Scams DDOS Cryptocurrency Accountability 307

Krebs on Security

OCTOBER 9, 2024

It remains unclear which Chetal family member acquired the 2023 Lamborghini Urus, which has a starting price of around $233,000. .” A November 2022 story at patch.com quoted Veer Chetal (class of 2024) crediting the Harvard program with his decision to pursue a career in law.

Cryptocurrency 293

Cryptocurrency Social Engineering Accountability Mobile 293

Krebs on Security

SEPTEMBER 26, 2024

As KrebsOnSecurity detailed in December 2023 , the Rescator shops were directly involved in some of the largest payment card breaches of the past decade. Passive domain name system (DNS) records show that in its early days BriansClub shared a server in Lithuania along with just a handful of other domains, including secure.pinpays[.]com

Cryptocurrency 299

Cryptocurrency Cybercrime Retail Government 299

Krebs on Security

OCTOBER 17, 2024

Image: FBI Active since at least January 2023, AnonSudan has been described in media reports as a “hacktivist” group motivated by ideological causes. companies, causing a multi-day outage for Microsoft’s cloud services in June 2023. 2023), and OpenAI (Nov. 7, 2023, a wave of rockets was launched into Israel.

DDOS 257

DDOS Government Internet Internet 257

Krebs on Security

MARCH 22, 2023

28, 2023, researchers at the Chinese security firm DarkNavy published a blog post purporting to show evidence that a major Chinese ecommerce company’s app was using this same three-exploit chain to read user data stored by other apps on the affected device, and to make its app nearly impossible to remove. .

Malware 326

Malware eCommerce Mobile Media 326

Krebs on Security

MARCH 28, 2024

2023, the Pennsylvania news outlet LancasterOnline.com published a story about Adam Kidan , a wealthy businessman with a criminal past who is a major donor to Republican causes and candidates, including Rep.

Phishing 314

Phishing Scams Accountability Passwords 314

Krebs on Security

DECEMBER 18, 2024

. “So, the attacker receives the invitation to fill out the form – and when they complete it, they enter their intended victim’s email address into the form, not their own,” Cluely wrote in a December 2023 post. ” The fake Google representative was polite, patient, professional and reassuring.

Cryptocurrency 363

Cryptocurrency Accountability Authentication Phishing 363

Krebs on Security

JANUARY 30, 2025

In 2023, Suncity’s CEO was sentenced to 18 years in prison on charges of fraud, illegal gambling, and “ triad offenses,” i.e. working with Chinese transnational organized crime syndicates.

Accountability 243

Accountability Scams Passwords Retail 243