Krebs – Page 14 – Computer Security Articles

‘Snatch’ Ransom Group Exposes Visitor IP Addresses

September 27, 2023 admin @htmalgae, 8base ransomware, atomicstealer, Breadcrumbs, data breaches, DomainTools.com, google.com, Malwarebytes, microsoft teams, mihail kolesnikov, Ne'er-Do-Well News, ransomware, rilide, Trustwave Spiderlabs

Credit to Author: BrianKrebs| Date: Wed, 27 Sep 2023 11:48:37 +0000

The victim shaming site operated by the Snatch ransomware group is leaking data about its true online location and internal operations, as well as the Internet addresses of its visitors, KrebsOnSecurity has found. The leaked data suggest that Snatch is one of several ransomware groups using paid ads on Google.com to trick people into installing malware disguised as popular free software, such as Microsoft Teams, Adobe Reader, Mozilla Thunderbird, and Discord.

Independent Krebs

LastPass: ‘Horse Gone Barn Bolted’ is Strong Password

September 22, 2023 admin A Little Sunshine, data breaches, International Computer Science Institute, karim toubba, lastpass breach, Nicholas Weaver, The Coming Storm, Web Fraud 2.0, wladimir palant

Credit to Author: BrianKrebs| Date: Fri, 22 Sep 2023 23:41:09 +0000

The password manager service LastPass is now forcing some of its users to pick longer master passwords. LastPass says the changes are needed to ensure all customers are protected by their latest security improvements. But critics say the move is little more than a public relations stunt that will do nothing to help countless early adopters whose password vaults were exposed in a 2022 breach at LastPass.

Independent Krebs

Who’s Behind the 8Base Ransomware Website?

September 18, 2023 admin @htmalgae, 8base ransomware, A Little Sunshine, andrei kolev, gitlab, jcube group, Ne'er-Do-Well News, ransomware, VMware

Credit to Author: BrianKrebs| Date: Tue, 19 Sep 2023 02:12:53 +0000

The victim shaming website operated by the cybercriminals behind 8Base — currently one of the more active ransomware groups — was until earlier today leaking quite a bit of information that the crime group probably did not intend to be made public. The leaked data suggests that at least some of website’s code was written by a 36-year-old programmer residing in the capital city of Moldova.

Independent Krebs

FBI Hacker Dropped Stolen Airbus Data on 9/11

September 13, 2023 admin A Little Sunshine, airbus, breachforums, data breaches, FBI, genesis market, hudson rock, infragard, microsoft, redline, The Coming Storm, usdod

Credit to Author: BrianKrebs| Date: Thu, 14 Sep 2023 00:22:05 +0000

In December 2022, KrebsOnSecurity broke the news that a cybercriminal using the handle “USDoD” had infiltrated the FBI’s vetted information sharing network InfraGard, and was selling the contact information for all 80,000 members. The FBI responded by reverifying all InfraGard members and by seizing the cybercrime forum where the data was being sold. But on Sept. 11, 2023, USDoD resurfaced after a lengthy absence to leak sensitive employee data stolen from the aerospace giant Airbus, while promising to visit the same treatment on top U.S. defense contractors.

Independent Krebs

Adobe, Apple, Google & Microsoft Patch 0-Day Bugs

September 12, 2023 admin adobe, apple, automox, cve-2023-26369, cve-2023-36761, cve-2023-36802, cve-2023-38148, cve-2023-41064, google, ios 16.16.1, lockdown mode, microsoft, microsoft patch tuesday september 2023, Microsoft Word, Time to Patch, tom bowyer

Credit to Author: BrianKrebs| Date: Tue, 12 Sep 2023 22:36:01 +0000

Microsoft today issued software updates to fix at least five dozen security holes in Windows and supported software, including patches for two zero-day vulnerabilities that are already being exploited. Also, Adobe, Google Chrome and Apple iOS users may have their own zero-day patching to do.

Independent Krebs

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

September 5, 2023 admin 1password, A Little Sunshine, adblock plus, Ars Technica, chainalysis, data breaches, karim toubba, lastpass breach, metamask, Nicholas Weaver, nick bax, plex, taylor monahan, The Coming Storm, unciphered, Web Fraud 2.0, wladimir palant

Credit to Author: BrianKrebs| Date: Wed, 06 Sep 2023 00:21:07 +0000

In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts to conclude that crooks likely have succeeded at cracking open some of the stolen LastPass vaults.

Independent Krebs

Why is .US Being Used to Phish So Many of Us?

September 1, 2023 admin A Little Sunshine, coalition for online accountability, dean marks, GoDaddy, interisle consulting group, national telecommunications and information administration, The Coming Storm, u.s. department of commerce, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Fri, 01 Sep 2023 15:38:11 +0000

Domain names ending in “.US” — the top-level domain for the United States — are among the most prevalent in phishing scams, new research shows. This is noteworthy because .US is overseen by the U.S. government, which is frequently the target of phishing domains ending in .US. Also, .US domains are only supposed to be available to U.S. citizens and to those who can demonstrate that they have a physical presence in the United States.

Independent Krebs

U.S. Hacks QakBot, Quietly Removes Botnet Infections

August 29, 2023 admin DoJ, don alway, FBI, Federal Bureau of Investigation, Latest Warnings, martin estrada, qakbot, Qbot, ransomware, The Coming Storm, u.s. department of justice

Credit to Author: BrianKrebs| Date: Tue, 29 Aug 2023 18:35:25 +0000

The U.S. government today announced a coordinated crackdown against QakBot, a complex malware family used by multiple cybercrime groups to lay the groundwork for ransomware infections. The international law enforcement operation involved seizing control over the botnet’s online infrastructure, and quietly removing the Qakbot malware from tens of thousands of infected Microsoft Windows computer systems.