Scammers are flooding Facebook with groups that purport to offer video streaming of funeral services for the recently deceased. Friends and family who follow the links for the streaming services are then asked to cough up their credit card information. Recently, these scammers have branched out into offering fake streaming services for nearly any kind […]
Category Archives: Krebs
Category Added in a WPeMatico Campaign
2992, 303, 404, 545, 555, 6996, 7997, 8884, Advance Auto Parts, Ali Winston, AlphV, Aspertaine, AT&T, Beige Group, Black Cat, Bloomberg, BreachForums, Breadcrumbs, ChumLul, Court, CrowdStrike, Cultist, CVLT, Der Spiegel, Discord, Doxbin, EA Games, H3ll, Harm Nation, James Thomas Andrew McCarty, Judische, Kalana Limkin, Kaskar, Kayte, Kingbob, Krebs, KT, Kya Christian Nelson, Leak Society, Lending Tree, Mandiant, mark rasch, MGM Resorts, Microsoft, Minecraft, Ne'er-Do-Well News, Neiman Marcus, News, Nicholas "Convict" Ceraolo, NMK, Noah Michael Urban, Nvidia, Okta, Owen David Flowers, pompompurin, RCMP, Recorder, Roblox, Royal Canadian Mounted Police, Sagar "Weep" Singh, Samsung, Santander Bank, Scattered Spider, Security, SIM Swapping, Slit Town, Snowflake, Sosa, Star Chat, Steam, SWATting, T-Mobile, telegram, The Com, The Washington Post, Ticketmaster, Twitch, U.S. Department of Justice, U.S. Drug Enforcement Agency, UNC5537, Unit 221B, ViLE, violence-as-a-service, vSphere, Waifu, Web Fraud 2.0, wired
The Dark Nexus Between Harm Groups and ‘The Com’
13
Sep
Sep
A cyberattack that shut down two of the top casinos in Las Vegas last year quickly became one of the most riveting security stories of 2023: It was the first known case of native English-speaking hackers in the United States and Britain teaming up with ransomware gangs based in Russia. But that made-for-Hollywood narrative has […]
10
Sep
Sep
Microsoft Corp. today released updates to fix at least 79 security vulnerabilities in its Windows operating systems and related software, including multiple flaws that are already showing up in active attacks. Microsoft also corrected a critical bug that has caused some Windows 10 PCs to remain dangerously unpatched against actively exploited vulnerabilities for several months […]
03
Sep
Sep
An old but persistent email scam known as “sextortion” has a new personalized touch: The missives, which claim that malware has captured webcam footage of recipients pleasuring themselves, now include a photo of the target’s home in a bid to make threats about publishing the videos more frightening and convincing. This week, several readers reported receiving […]
02
Sep
Sep
Three men in the United Kingdom have pleaded guilty to operating otp[.]agency, a once popular online service that helped attackers intercept the one-time passcodes (OTPs) that many websites require as a second authentication factor in addition to passwords. Launched in November 2019, OTP Agency was a service for intercepting one-time passwords needed to log in […]
28
Aug
Aug
Multiple media reports this week warned Americans to be on guard against a new phishing scam that arrives in a text message informing recipients they are not yet registered to vote. A bit of digging reveals the missives were sent by a California political consulting firm as part of a well-meaning but potentially counterproductive get-out-the-vote […]
A Little Sunshine, Black Lotus Labs, Bronze Silhouette, Christopher Wray, CVE-2024-39717, Cybersecurity & Infrastructure Security Agency, Federal Bureau of Investigation, Insidious Taurus, Internet of Things (IoT), Krebs, KV-botnet, Latest Warnings, Lumen Technologies, Michael Horka, national security agency, News, Ryan English, Security, The Coming Storm, U.S. Department of Justice, Versa Director 22.1.4, Volt Typhoon
New 0-Day Attacks Linked to China’s ‘Volt Typhoon’
27
Aug
Aug
Malicious hackers are exploiting a zero-day vulnerability in Versa Director, a software product used by many Internet and IT service providers. Researchers believe the activity is linked to Volt Typhoon, a Chinese cyber espionage group focused on infiltrating critical U.S. networks and laying the groundwork for the ability to disrupt communications between the United States […]
A Little Sunshine, Active Directory, Andorra, DNS name devolution, Krebs, Latest Warnings, Memphis Real-Time Crime Center, memrtcc.ad, Mike Barlow, Mike O'Connor, namespace collision, News, Philippe Caturegli, Security, Seralys, The Coming Storm, Web Fraud 2.0, Web Proxy Auto-Discovery Protocol, wpad.ad, wpad.dk
Local Networks Go Global When Domain Names Collide
23
Aug
Aug
The proliferation of new top-level domains (TLDs) has exacerbated a well-known security weakness: Many organizations set up their internal Microsoft authentication systems years ago using domain names in TLDs that didn’t exist at the time. Meaning, they are continuously sending their Windows usernames and passwords to domain names they do not control and which are […]
19
Aug
Aug
New details are emerging about a breach at National Public Data (NPD), a consumer data broker that recently spilled hundreds of millions of Americans’ Social Security Numbers, addresses, and phone numbers online. KrebsOnSecurity has learned that another NPD data broker which shares access to the same consumer records inadvertently published the passwords to its back-end […]
A Little Sunshine, Atlas Data Privacy Corp., Data Breaches, fbi, HaveIBeenPwned.com, InfraGard, Instant Checkmate, Jerico Pictures, Krebs, National Criminal Data LLC, National Public Data breach, News, PeopleConnect, recordscheck.net, Sal Verini, Salvatore Verini, Security, Shadowglade LLC, SXUL, The Coming Storm, Trinity Entertainment, Troy Hunt, TruthFinder, Twisted History LLC, USDoD, VX-Underground
NationalPublicData.com Hack Exposes a Nation’s Data
15
Aug
Aug
A great many readers this month reported receiving alerts that their Social Security Number, name, address and other personal information were exposed in a breach at a little-known but aptly-named consumer data broker called NationalPublicData.com. This post examines what we know about a breach that has exposed hundreds of millions of consumer records. We’ll also […]