The Coming Storm Archives

A Little Sunshine, All About Skimmers, Andy Chandler, apple, CSIS Security Group, Ford Merrill, ghost tap, Google, Grant Smith, imessage, Krebs, M3AAWG, News, RCS, Resecurity, SecAlliance, Security, smishing, The Coming Storm, ThreatFabric, Web Fraud 2.0, ZNFC

How Phished Data Turns into Apple & Google Wallets

Posted on February 18, 2025 by [email protected]

18
Feb

Carding — the underground business of stealing, selling and swiping stolen payment card data — has long been the dominion of Russia-based hackers. Happily, the broad deployment of more secure chip-based payment cards in the United States has weakened the carding market. But a flurry of innovation from cybercrime groups in China is breathing new […]

Continue reading →

A Little Sunshine, AS400495, BackConnect Security LLC, Curtis Gervais, DiamondCDN, Director of National Intelligence, DOGE, Dstat, Edward Coristine, elon musk, Eric Taylor, Krebs, Marshal Webb, Ne'er-Do-Well News, Neuralink, News, Packetware, Path Networks, President Trump, Rivage, Security, Tesla Sexy LLC, The Com, The Coming Storm, Tucker Preston, wired

Teen on Musk’s DOGE Team Graduated from ‘The Com’

Posted on February 7, 2025 by [email protected]

07
Feb

Wired reported this week that a 19-year-old working for Elon Musk‘s so-called Department of Government Efficiency (DOGE) was given access to sensitive US government systems even though his past association with cybercrime communities should have precluded him from gaining the necessary security clearances to do so. As today’s story explores, the DOGE teen is a […]

Continue reading →

A Little Sunshine, Andrew Hoog, app transport security, apple, Artificial Intelligence, ByteDance, China, Deepseek, Deepseek AI, iOs, Krebs, Latest Warnings, News, NowSecure, Security, The Coming Storm, Volcengine

Experts Flag Security, Privacy Risks in DeepSeek AI App

Posted on February 6, 2025 by [email protected]

06
Feb

New mobile apps from the Chinese artificial intelligence (AI) company DeepSeek have remained among the top three “free” downloads for Apple and Google devices since their debut on Jan. 25, 2025. But experts caution that many of DeepSeek’s design choices — such as using hard-coded encryption keys, and sending unencrypted user and device data to […]

Continue reading →

A Little Sunshine, Alfa Bank, David Sacks, House Judiciary Committee's Select Subcommittee on the Weaponization of the Federal Government, Jack Goldsmith, Joe Hall, John Durham, Krebs, Lawfare, Melania Trump, Michael Sussman, News, President Trump, Quinta Jurecic, Rep. Jim Jordan, Security, The Coming Storm, United States Council on Transnational Organized Crime, World Liberty Financial

A Tumultuous Week for Federal Cybersecurity Efforts

Posted on January 27, 2025 by [email protected]

27
Jan

Image: Shutterstock. Greg Meland. President Trump last week issued a flurry of executive orders that upended a number of government initiatives focused on improving the nation’s cybersecurity posture. The president fired all advisors from the Department of Homeland Security’s Cyber Safety Review Board, called for the creation of a strategic cryptocurrency reserve, and voided a […]

Continue reading →

Adam Barnett, Bitlocker, Bob Hopkins, CVE-2024-49142, CVE-2025-21186, CVE-2025-21210, CVE-2025-21298, CVE-2025-21311, CVE-2025-21333, CVE-2025-21334, CVE-2025-21335, CVE-2025-21366, CVE-2025-21395, Kev Breen, Krebs, Latest Warnings, Microsoft Access, Microsoft Patch Tuesday January 2025, News, Rapid7, Satnam Narang, Security, The Coming Storm, Time to Patch, unpatched.ai, Windows 11, Windows Hyper-V, Windows NTLMv1

Microsoft: Happy 2025. Here’s 161 Security Updates

Posted on January 14, 2025 by [email protected]

14
Jan

Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three “zero-day” weaknesses that are already under active attack. Redmond’s inaugural Patch Tuesday of 2025 bundles more fixes than the company has shipped in one go since 2017. Rapid7‘s Adam Barnett says January marks the fourth consecutive month […]

Continue reading →

800-275-2273, A Little Sunshine, Allison Nixon, Aristotle, autodoxers, Coinbase, Crypto Chameleon, Discord, domaintools, Krebs, Latest Warnings, Lookout, Mark Cuban, News, Okta, Perm, Security, Shark Tank, Star Fraud, Stotle, telegram, The Coming Storm, Trezor, Unit 221B, voice phishing, Web Fraud 2.0

A Day in the Life of a Prolific Voice Phishing Crew

Posted on January 7, 2025 by [email protected]

07
Jan

Besieged by scammers seeking to phish user accounts over the telephone, Apple and Google frequently caution that they will never reach out unbidden to users this way. However, new details about the internal operations of a prolific voice phishing gang show the group routinely abuses legitimate services at Apple and Google to force a variety […]

Continue reading →

A Little Sunshine, Acunetix, Altug Sara, [email protected], Araneida Scanner, Bilitro Yazilim, Breadcrumbs, domaintools, Fin7, Invicti Security, Krebs, Matt Sciberras, Ne'er-Do-Well News, Neil Roseman, News, [email protected], Security, Silent Push, The Coming Storm, U.S. Department of Health and Human Services, Zach Edwards

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

Posted on December 19, 2024 by [email protected]

19
Dec

Cybercriminals are selling hundreds of thousands of credential sets stolen with the help of a cracked version of Acunetix, a powerful commercial web app vulnerability scanner, new research finds. The cracked software is being resold as a cloud-based attack tool by at least two different services, one of which KrebsOnSecurity traced to an information technology […]

Continue reading →

@chenlun, A Little Sunshine, and Mobile Anti-Abuse Working Group, Anti-Phishing Working Group, Coalition Against Unsolicited Commercial Email, ICANN, Interisle Consulting, Internet Corporation for Assigned Names and Numbers, John Levine, Krebs, Latest Warnings, malware, Messaging, new gTLDs, News, phishing, Security, spam, The Coming Storm, U.S. Postal Service

Why Phishers Love New TLDs Like .shop, .top and .xyz

Posted on December 3, 2024 by [email protected]

03
Dec

Phishing attacks increased nearly 40 percent in the year ending August 2024, with much of that growth concentrated at a small number of new generic top-level domains (gTLDs) — such as .shop, .top, .xyz — that attract scammers with rock-bottom prices and no meaningful registration requirements, new research finds. Meanwhile, the nonprofit entity that oversees […]

Continue reading →

A Little Sunshine, AT&T, Boxfan, buttholio, Connor Riley Moucka, cyb3rph4nt0m, DDoS-for-Hire, John Erin Binns, Judische, Kiberphant0m, Krebs, Naver, Ne'er-Do-Well News, News, Proman557, ransomware, Reverseshell, Security, Shi-Bot, Snowflake, South Korea, telekomterrorist, The Coming Storm, Vars_Secc, Verizon, Waifu

Hacker in Snowflake Extortions May Be a U.S. Soldier

Posted on November 26, 2024 by [email protected]

26
Nov

Two men have been arrested for allegedly stealing data from and extorting dozens of companies that used the cloud data storage company Snowflake, but a third suspect — a prolific hacker known as Kiberphant0m — remains at large and continues to publicly extort victims. However, this person’s identity may not remain a secret for long: […]

Continue reading →

abyss0, BreachForums, Data Breaches, Finastra, ke-la.com, Krebs, Latest Warnings, Ne'er-Do-Well News, News, Security, The Coming Storm

Fintech Giant Finastra Investigating Data Breach

Posted on November 19, 2024 by [email protected]

19
Nov

The financial technology firm Finastra is investigating the alleged large-scale theft of information from its internal file transfer platform, KrebsOnSecurity has learned. Finastra, which provides software and services to 45 of the world’s top 50 banks, notified customers of the security incident after a cybercriminal began selling more than 400 gigabytes of data purportedly stolen […]

Continue reading →

Login