Document and Passwords - Cyber Security Informer

FBI warns of malicious free online document converters spreading malware

Security Affairs

MARCH 24, 2025

The FBI warns of a significant increase in scams involving free online document converters to infect users with malware. The FBI warns that threat actors use malicious online document converters to steal users sensitive information and infect their systems with malware. ” reads the alert. ” reads the alert.

Malware

Malware Scams Identity Theft Antivirus

ClickFix: How to Infect Your PC in Three Easy Steps

Krebs on Security

MARCH 14, 2025

In this scam, dubbed “ ClickFix ,” the visitor to a hacked or malicious website is asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware. Executing this series of keypresses prompts Windows to download password-stealing malware.

Phishing

Phishing Malware Scams Passwords

Building Password Purgatory with Cloudflare Pages and Workers

Troy Hunt

MARCH 9, 2022

Which led me to a moment of clarity just yesterday as I was pondering revenge tactics and, in a flash of inspiration, came up with the idea of Password Purgatory: purgatory: a place or state of temporary suffering or misery You know how we all hate password complexity criteria? All they have to do first is create a password.

Passwords

Passwords DNS Accountability Risk

I Wanna Go Fast: How Many Pwned Password Queries Can You Make Per Second?

Troy Hunt

FEBRUARY 24, 2022

There's a time and a place for going fast, and there's no better place to do that than when querying Have I Been Pwned's Pwned Passwords service. (Ok, In December last year, Pwned Passwords saw not just a fresh batch of 225M new passwords from the NCA , but it also welcomed the ongoing ingestion of new passwords from the FBI.

Passwords

Passwords Malware

Passwords Advice

Adam Shostack

JANUARY 2, 2025

Bruse Marshall has put together a useful comparison of password requirements from OWASP ASVS v3 and v4. Bruce Marshall has put together a comparison of OWASP ASVS v3 and v4 password requirements: OWASP ASVS 3.0 & 4.0 We should judge standards on their delivery of these important contextual documents. Comparison.

Passwords

Microsoft Executives Hacked

Schneier on Security

JANUARY 29, 2024

Microsoft is reporting that a Russian intelligence agency—the same one responsible for SolarWinds—accessed the email system of the company’s executives. The investigation indicates they were initially targeting email accounts for information related to Midnight Blizzard itself.

Hacking

Hacking Accountability Passwords Cybersecurity

iPhones in a law enforcement forensics lab mysteriously rebooted losing their After First Unlock (AFU) state

Security Affairs

NOVEMBER 8, 2024

Law enforcement warns that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them much harder to unlock, per a document obtained by 404 Media. 404 Media obtained the document from a mobile forensics source and verified it with another source. Below is the hypothesis reported in the document.

Media

Media Mobile Passwords Hacking

Apple indeed added a feature called “inactivity reboot” in iOS 18.1 that reboots locked devices

Security Affairs

NOVEMBER 12, 2024

Law enforcement warned that securely stored iPhones awaiting forensic examination are mysteriously rebooting, making them much harder to unlock, per a document obtained by 404 Media. 404 Media obtained the document from a mobile forensics source and verified it with another source. reported 404 Media. “The

Media

Media Wireless Mobile Encryption

Facebook and Instagram passwords were stored in plaintext, Meta fined

Malwarebytes

OCTOBER 1, 2024

Ireland’s privacy watchdog Data Protection Commission (DPC) has fined Meta €91M ($101M) after the discovery in 2019 that Meta had stored 600 million Facebook and Instagram passwords in plaintext. Most of these passwords belonged to Facebook Lite users, but it affected other Facebook and Instagram users as well.

Passwords

Passwords Data breaches Media Phishing

News alert: INE Security announces new initiative to help companies accelerate CMMC 2.0 compliance

The Last Watchdog

JANUARY 27, 2025

Organizations can use this checklist to track progress and identify areas requiring attention before assessment. demands a structured approach to implementation and preparation. demands a structured approach to implementation and preparation. demands a structured approach to implementation and preparation.

Password Management

Password Management Architecture Threat Detection Cybersecurity

Dental group lied through teeth about data breach, fined $350,000

Malwarebytes

JANUARY 6, 2025

Nothing showed evidence that a HIPAA-compliant risk analysis had ever been conducted (lists of usernames and passwords in plain text on the compromised server). There were no password policies until at least January 2024 (the same username and password were used for all Westend Dental servers that contained protected health information).

Data breaches

Data breaches Ransomware Passwords Insurance

How to Protect Your Gmail Password: Top Tips for Maximum Security

Hacker's King

DECEMBER 28, 2024

Your Gmail account stores valuable information such as emails, contacts, and documents. A compromised password can lead to identity theft and data breaches. To safeguard your Gmail password, you need to adopt a few best practices that will enhance your accounts security and keep cyber threats at bay.

Passwords

Passwords Identity Theft Accountability Data breaches

IT administrators' passwords are awful too

Malwarebytes

OCTOBER 19, 2023

The administrator password is "admin". Research has revealed that IT administrators are just as likely to do the tech equivalent of putting the key under the mat as end users, with both groups using similarly predictable passwords. For that reason, using default passwords is considered a serious security risk.

Passwords

Passwords Authentication Password Management Engineering

Cisco warns of password-spraying attacks targeting Secure Firewall devices

Security Affairs

MARCH 29, 2024

Cisco warns customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services of Cisco Secure Firewall devices. Cisco is warning customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices. ” reads the report.

Firewall

Firewall Passwords VPN Authentication

Top Unexpected Ways to Utilise a Password Manager for Enhanced Security and Organisation

IT Security Guru

JANUARY 22, 2024

Password managers have become integral tools for individuals and businesses alike. However, these digital guardians can offer more than just a secure vault for passwords. In fact, a good password manager can play a crucial role in enhancing both the personal and professional aspects of a user’s digital life.

Password Management

Password Management Passwords Banking Accountability

Threat Modeling and Logins

Adam Shostack

JANUARY 2, 2025

The bank unexpectedly sent me a temporary password to sign up, and when I did, the temporary password had expired. But then, after I went to reset the password, the bank emailed me a one time code. Which is a fine practice, and brings me to the question: Why expire the first passwords at all? Why make it harder?

Banking

Banking Passwords Password Management Authentication

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Security Affairs

MARCH 20, 2025

The malspam messages had the topic Free primary legal aid use a password-protected attachment Algorithm of actions of members of the family of a missing serviceman LegalAid.rar.

Computers and Electronics

Computers and Electronics Telecommunications Malware Surveillance

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

Krebs on Security

FEBRUARY 4, 2025

The breach tracking service Constella Intelligence says this email address used the same password (and slight variations of it) across many accounts online — including at hacker forums — and that the same password was used in connection with dozens of other email addresses, such as florianmarzahl@hotmail.de, and fmarzahl137@gmail.com.

eCommerce

eCommerce Cybercrime Accountability Passwords

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Hacker's King

FEBRUARY 9, 2025

It quickly spots common security flaws like misconfigurations, outdated sof, such as, and weak passwords, helping you test systems efficiently and thoroughly. To make it user-friendly for both beginners and experts, clear commands and comprehensive documentation are incorporated in this tool.

Penetration Testing

Penetration Testing Architecture Cybercrime Cybersecurity

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

Hacker's King

FEBRUARY 9, 2025

It quickly spots common security flaws like misconfigurations, outdated sof, such as, and weak passwords, helping you test systems efficiently and thoroughly. To make it user-friendly for both beginners and experts, clear commands and comprehensive documentation are incorporated in this tool.

Penetration Testing

Penetration Testing Architecture Cybercrime Cybersecurity

U.S. CISA adds Cisco ASA and FTD, and RoundCube Webmail bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

OCTOBER 25, 2024

Cisco warned customers of password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices. The company published a document containing recommendations against password spray attacks aimed at Remote Access VPN (RAVPN) services.

VPN

VPN Firewall Technology Passwords

Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office

Security Affairs

NOVEMBER 21, 2024

Stolen files allegedly include contracts, insurance, and financial documents. “In that case, officials at the president’s press office later said the information appeared to have been downloaded using the password of a former employee.” ” reported the Associated Press.

Government

Government Hacking Ransomware Insurance

Why Phone Numbers Stink As Identity Proof

Krebs on Security

MARCH 17, 2019

Illegal SIM swaps allow fraudsters to hijack a target’s phone’s number and use it to steal financial data, passwords, cryptocurrencies and other items of value from victims. “But from that site’s side, when they see a password reset come in via that phone number, they have no way to know if that’s me. .

Accountability

Accountability Passwords Mobile Banking

Understanding Have I Been Pwned's Use of SHA-1 and k-Anonymity

Troy Hunt

JUNE 30, 2022

Four and a half years ago now, I rolled out version 2 of HIBP's Pwned Passwords that implemented a really cool k-anonymity model courtesy of the brains at Cloudflare. Actually, the multiple problems, the first of which is that it's just way too fast for storing user passwords in an online system.

Passwords

Passwords Identity Theft Consumer Services Password Management

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Krebs on Security

SEPTEMBER 5, 2023

In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. 15, 2022, LastPass said an investigation into the August breach determined the attacker did not access any customer data or password vaults.

Cryptocurrency

Cryptocurrency Passwords Encryption Accountability

Legal Threats Make Powerful Phishing Lures

Krebs on Security

MAY 22, 2019

Our {legal team | legal council | legal departement} has prepared a document explaining the {litigation | legal dispute | legal contset}. Please download and read the attached encrypted document carefully. Note: The password for the document is 123456. Yes, the spelling/grammar is poor and awkward (e.g.,

Phishing

Phishing Antivirus Scams Malware

Hackers Were Inside Citrix for Five Months

Krebs on Security

FEBRUARY 19, 2020

The disclosure comes almost a year after Citrix acknowledged that digital intruders had broken in by probing its employee accounts for weak passwords. How would your organization hold up to a password spraying attack? As the Citrix hack shows, if you don’t know you should probably check, and then act on the results accordingly.

VPN

VPN Passwords Software Telecommunications

Are You One of the 533M People Who Got Facebooked?

Krebs on Security

APRIL 6, 2021

. — rely on that number for password resets. From there, the bad guys can reset the password of any account to which that mobile number is tied, and of course intercept any one-time tokens sent to that number for the purposes of multi-factor authentication. It’s time we stopped letting everyone treat them that way.

Mobile

Mobile Accountability Passwords Authentication

The 773 Million Record "Collection #1" Data Breach

Troy Hunt

JANUARY 16, 2019

Collection #1 is a set of email addresses and passwords totalling 2,692,818,238 rows. In total, there are 1,160,253,228 unique combinations of email addresses and passwords. This is when treating the password as case sensitive but the email address as not case sensitive. There are 21,222,975 unique passwords. It'll be 99.x%

Data breaches

Data breaches Passwords Password Management Accountability

Dirt-Cheap, Legit, Windows Software: Pick Two

Krebs on Security

JANUARY 8, 2019

Account + password = free lifetime use. Log in with the original password and the official website will ask you to change your password! Be sure to remember the modified new password. Once you forget your password, you will lose Office365! Password Initial: (sent password). Sounds legit, right?

Software

Software Passwords Accountability Web Fraud

An Interview With the Target & Home Depot Hacker

Krebs on Security

NOVEMBER 14, 2024

Hydra trafficked in illegal drugs and financial services, including cryptocurrency tumbling for money laundering, exchange services between cryptocurrency and Russian rubles, and the sale of falsified documents and hacking services. Incredibly, the day after our initial interview via Telegram, Shefel proposed going into business together.

Retail

Retail Advertising Cryptocurrency Marketing

Recent ‘MFA Bombing’ Attacks Targeting Apple Users

Krebs on Security

MARCH 26, 2024

Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple’s password reset feature. “It was like this system notification from Apple to approve [a reset of the account password], but I couldn’t do anything else with my phone.

Passwords

Passwords Accountability Engineering Cryptocurrency

Malicious Office 365 Apps Are the Ultimate Insiders

Krebs on Security

MAY 5, 2021

After a user logs in, the link prompts them to install a malicious but innocuously-named app that gives the attacker persistent, password-free access to any of the user’s emails and files, both of which are then plundered to launch malware and phishing scams against others.

Accountability

Accountability Advertising Passwords Phishing

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

Webroot

MARCH 3, 2025

Common attacks to consumer protection Identity theft and fraud Some common types of identity theft and fraud include account takeover fraud , when criminals use stolen personal information such as account numbers, usernames, or passwords to hijack bank accounts, credit cards, and even email and social media accounts.

Consumer Protection

Consumer Protection Identity Theft Scams Social Engineering

FCC Proposal Targets SIM Swapping, Port-Out Fraud

Krebs on Security

OCTOBER 1, 2021

From there, the attackers can reset the password for almost any online account tied to that mobile number, because most online services still allow people to reset their passwords simply by clicking a link sent via SMS to the phone number on file.

Wireless

Wireless Mobile Passwords Authentication

Ask Fitis, the Bear: Real Crooks Sign Their Malware

Krebs on Security

JUNE 1, 2023

.” Constella Intelligence , a company that tracks exposed databases, finds that 774748@gmail.com was used in connection with just a handful of passwords, but most frequently the password “ featar24 “ Pivoting off of that password reveals a handful of email addresses, including akafitis@gmail.com. ru in 2008.

Malware

Malware Cybercrime Software Accountability

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

Krebs on Security

FEBRUARY 26, 2025

At the end of 2023, malicious hackers learned that many companies had uploaded sensitive customer records to accounts at the cloud data storage service Snowflake that were protected with little more than a username and password (no multi-factor authentication needed).

Hacking

Hacking Government Identity Theft Accountability

Password-stealing Chrome extension smuggled on to Web Store

Malwarebytes

SEPTEMBER 4, 2023

Researchers at the University of Wisconsin–Madison have demonstrated that Chrome browser extensions can steal passwords from the text input fields in websites, even if the extension is compliant with Chrome's latest security and privacy standard, Manifest V3. This creates a significant challenge for vendors like Google.

Passwords

Passwords Password Management Ransomware

April’s Patch Tuesday Brings Record Number of Fixes

Krebs on Security

APRIL 9, 2024

It involves convincing a user to click on a malicious link in an email, which can then steal the user’s password hash and authenticate as the user in another Microsoft service. Adobe has since clarified that its apps won’t use AI to auto-scan your documents, as the original language in its FAQ suggested.

DNS

DNS Social Engineering Malware Media

Internet Archive was breached twice in a month

Security Affairs

OCTOBER 21, 2024

The breach may have exposed personal identification documents uploaded by users for Wayback Machine page removal requests, depending on the attacker’s Zendesk API access. HIBP confirmed that the stolen archive had 31M records, including email address, screen name, bcrypt password hash, and timestamps for password changes.

Internet

Internet Internet Data breaches Authentication

The March Madness Cyber Threat

Adam Levin

MARCH 17, 2022

Sensitive information including passwords and financial information can be exfiltrated and ransomware can be deployed to block access to critical data. Change passwords regularly. Use online or cloud-based office software for non-sensitive documents. Create a culture of cybersecurity and data hygiene.

Cyber threats

Cyber threats Phishing Passwords Malware

Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks

Krebs on Security

JULY 15, 2024

“And since there’s no password on the account, it just shoots them to the ‘create password for your new account’ flow. What’s more, Monahan said, Squarespace did not require email verification for new accounts created with a password.

Accountability

Accountability Cryptocurrency Passwords DNS

Begging for Bounties and More Info Stealer Logs

Troy Hunt

JULY 31, 2024

The sender then attached a text file with 197 lines of email addresses and passwords belonging to users of Scott's pride and joy. Exposure of sensitive user data including names, emails, addresses, and documents. Most with the same password too, because a normal person obviously owns this email address.

Scams

Scams Passwords Malware Accountability

GUEST ESSAY: How the FIDO Alliance helps drive the move to passwordless authentication

The Last Watchdog

DECEMBER 6, 2021

For IT leaders, passwords no longer cut it. Every new account you sign up for, application you download, or device you purchase requires a password. Every new account you sign up for, application you download, or device you purchase requires a password. Lowering password use. So why are they still around?

Authentication

Authentication Passwords Mobile Phishing

FBI warns of malicious free online document converters spreading malware

ClickFix: How to Infect Your PC in Three Easy Steps

Trending Sources

Building Password Purgatory with Cloudflare Pages and Workers

I Wanna Go Fast: How Many Pwned Password Queries Can You Make Per Second?

Passwords Advice

Microsoft Executives Hacked

iPhones in a law enforcement forensics lab mysteriously rebooted losing their After First Unlock (AFU) state

Apple indeed added a feature called “inactivity reboot” in iOS 18.1 that reboots locked devices

Facebook and Instagram passwords were stored in plaintext, Meta fined

News alert: INE Security announces new initiative to help companies accelerate CMMC 2.0 compliance

Dental group lied through teeth about data breach, fined $350,000

How to Protect Your Gmail Password: Top Tips for Maximum Security

IT administrators' passwords are awful too

Cisco warns of password-spraying attacks targeting Secure Firewall devices

Top Unexpected Ways to Utilise a Password Manager for Enhanced Security and Organisation

Threat Modeling and Logins

CERT-UA warns of cyber espionage against the Ukrainian defense industry using Dark Crystal RAT

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

SploitScan: Find Latest CVE Documentation and Exploitation With All Details

U.S. CISA adds Cisco ASA and FTD, and RoundCube Webmail bugs to its Known Exploited Vulnerabilities catalog

Ransomhub ransomware gang claims the hack of Mexican government Legal Affairs Office

Why Phone Numbers Stink As Identity Proof

Understanding Have I Been Pwned's Use of SHA-1 and k-Anonymity

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Legal Threats Make Powerful Phishing Lures

Hackers Were Inside Citrix for Five Months

Are You One of the 533M People Who Got Facebooked?

The 773 Million Record "Collection #1" Data Breach

Dirt-Cheap, Legit, Windows Software: Pick Two

An Interview With the Target & Home Depot Hacker

Recent ‘MFA Bombing’ Attacks Targeting Apple Users

Malicious Office 365 Apps Are the Ultimate Insiders

National Consumer Protection Week: Keeping your personal data safe in a digitally connected world

FCC Proposal Targets SIM Swapping, Port-Out Fraud

Ask Fitis, the Bear: Real Crooks Sign Their Malware

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

Password-stealing Chrome extension smuggled on to Web Store

April’s Patch Tuesday Brings Record Number of Fixes

Internet Archive was breached twice in a month

The March Madness Cyber Threat

Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks

Begging for Bounties and More Info Stealer Logs

GUEST ESSAY: How the FIDO Alliance helps drive the move to passwordless authentication

Stay Connected