A number of cybercriminal innovations are making it easier for scammers to cash in on your upcoming travel plans. This story examines a recent spear-phishing campaign that ensued when a California hotel had its booking.com credentials stolen. We’ll also explore an array of cybercrime services aimed at phishers who target hotels that rely on the […]
Category Archives: Krebs
Category Added in a WPeMatico Campaign
AlphV, Anthem Inc., BlackCat, Data Breaches, Equifax, Experian, HIPAA Journal, IDX, Krebs, Latest Warnings, News, RansomHub, Security, Sen. Mark Warner, Sen. Ron Wyden, The Coming Storm, TransUnion, U.S. Department of Health and Human Resources, United Health Group
Change Healthcare Breach Hits 100M Americans
30
Oct
Oct
Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information. Image: Tamer Tuncay, Shutterstock.com. A ransomware attack at Change Healthcare in the third week of February […]
A Little Sunshine, AccuWeather, Adx, Android Advertising ID, App Tracking Transparency, apple, Associated Press, bid request, BR24, Daniel's Law, Electronic Frontier Foundation, Eva Galperin, Fog Reveal, GasBuddy, Google, Grindr, Identifier for Advertisers, Judge Andrew F. Wilkinson Judicial Security Act, Justin Sherman, Justyna Maloney, Krebs, Latest Warnings, Macy's, MAID, mobile advertising ID, MyFitnessPal, netzpolitik.org, News, Scott Maloney, Security, Sen. Ron Wyden, SilentPush, Tangles, The Coming Storm, Troutman Pepper, U.S. Securities and Exchange Commission, WebLoc, Zach Edwards
The Global Surveillance Free-for-All in Mobile Ad Data
23
Oct
Oct
Not long ago, the ability to digitally track someone’s daily movements just by knowing their home address, employer, or place of worship was considered a dangerous power that should remain only within the purview of nation states. But a new lawsuit in a likely constitutional battle over a New Jersey privacy law shows that anyone […]
18
Oct
Oct
Brazilian authorities reportedly have arrested a 33-year-old man on suspicion of being “USDoD,” a prolific cybercriminal who rose to infamy in 2022 after infiltrating the FBI’s InfraGard program and leaking contact information for 80,000 members. More recently, USDoD was behind a breach at the consumer data broker National Public Data that led to the leak […]
17
Oct
Oct
The U.S. government on Wednesday announced the arrest and charging of two Sudanese brothers accused of running Anonymous Sudan (a.k.a. AnonSudan), a cybercrime business known for launching powerful distributed denial-of-service (DDoS) attacks against a range of targets, including dozens of hospitals, news websites and cloud providers. The younger brother is facing charges that could land […]
A Little Sunshine, Angel "Chi Chi" Borrero, AnyDesk, Breadcrumbs, gemini, Jeandiel "Box" Serrano, Krebs, Malone "Greavys" Lam, Ne'er-Do-Well News, News, Pantic, Reynaldo "Rey" Diaz, Security, SIM Swapping, Swag, The Com, Veer Chetal, Web Fraud 2.0, Wiz, ZachXBT
Lamborghini Carjackers Lured by $243M Cyberheist
09
Oct
Oct
The parents of a 19-year-old Connecticut honors student accused of taking part in a $243 million cryptocurrency heist in August were carjacked a week later — while out house-hunting in a brand new Lamborghini. Prosecutors say the couple was beaten and briefly kidnapped by six young men who traveled from Florida as part of a […]
.NET, adobe, Adobe Framemaker, Adobe Substance 3D Painter, Animate, apple, Azure, Commerce, CVE-2024-43572, CVE-2024-43573, Dimension, Elastic Security Labs, GrimResource, Immersive Labs, InCopy, InDesign, Krebs, Latest Warnings, Lightroom, macOS 15, MSHTML, News, Nikolas Cemerikic, Office, OpenSSH for Windows; Power BI; Windows Hyper-V; Windows Mobile Broadband, Satnam Narang, Security, Security Tools, Sequoia, Substance 3D Stager, Tenable, Time to Patch, Visual Studio
Patch Tuesday, October 2024 Edition
08
Oct
Oct
Microsoft today released security updates to fix at least 117 security holes in Windows computers and other software, including two vulnerabilities that are already seeing active attacks. Also, Adobe plugged 52 security holes across a range of products, and Apple has addressed a bug in its new macOS 15 “Sequoia” update that broke many cybersecurity […]
03
Oct
Oct
Organizations that get relieved of credentials to their cloud environments can quickly find themselves part of a disturbing new trend: Cybercriminals using stolen cloud credentials to operate and resell sexualized AI-powered chat services. Researchers say these illicit chat bots, which use custom jailbreaks to bypass content filtering, often veer into darker role-playing scenarios, including child […]
A Little Sunshine, Assad Faiq, CosmoTheGod, Dream Agency, Enzo Zellocchi, Eric Taylor, facebook, fbi, Iris Au, Kenneth Childs, Krebs, Ledger breach, Mir Islam, Ne'er-Do-Well News, News, Rise Agency, Security, Shopify, SIM Swapping, Tassilo Heinrich, The Godfather, Tomi Masters, Troy Woody Jr., Vurg, Web Fraud 2.0, Zort
Crooked Cops, Stolen Laptops & the Ghost of UGNazi
30
Sep
Sep
A California man accused of failing to pay taxes on tens of millions of dollars allegedly earned from cybercrime also paid local police officers hundreds of thousands of dollars to help him extort, intimidate and silence rivals and former business partners, a new indictment charges. KrebsOnSecurity has learned that many of the man’s alleged targets […]
A Little Sunshine, alex holden, Arpa Plus, briansclub, Chainanlysis, Cryptex, CS Proxy Solutions CY, Dark Angels, Financial Crimes Enforcement Network, Hold Security, Home Depot breach, Joker's stash, Krebs, Liberty Reserve, Mazafaka, Ne'er-Do-Well News, News, Novaya Gazeta, Orbest Investments LP, Organized Crime and Corruption Project, Perfect Money, PinPays, pm2btc, Progate Solutions, Rich Sanders, RM Everton Ltd, Security, Sergey Sergeevich Ivanov, Sergey Sergeevich Omelnitskii, Taleon, target breach, The Coming Storm, The Laundromat, Timur Kamilevich Shakhmametov, U.S. Department of Justice, UAPS, Universal Anonymous Payment System, unlimited cashouts, v1pee, Vega, Web Fraud 2.0
U.S. Indicts 2 Top Russian Hackers, Sanctions Cryptex
26
Sep
Sep
The United States today unveiled sanctions and indictments against the alleged proprietor of Joker’s Stash, a now-defunct cybercrime store that peddled tens of millions of payment cards stolen in some of the largest data breaches of the past decade. The government also indicted and sanctioned a top Russian cybercriminal known as Taleon, whose cryptocurrency exchange […]