Krebs – Page 16 – Computer Security Articles

Russia Sends Cybersecurity CEO to Jail for 14 Years

July 26, 2023 admin evil corp., Fancy Bear, financial times, Group-IB, gru, ilya sachkov, kaspersky lab, maksim yakubets, max seddon, Ruslan Stoyanov, Sergei Mikhailov, The Coming Storm

Credit to Author: BrianKrebs| Date: Wed, 26 Jul 2023 17:29:40 +0000

The Russian government today handed down a treason conviction and 14-year prison sentence on Iyla Sachkov, the former founder and CEO of one of Russia’s largest cybersecurity firms. Sachkov, 37, has been detained for nearly two years under charges that the Kremlin has kept classified and hidden from public view, and he joins a growing roster of former Russian cybercrime fighters who are now serving hard time for farcical treason convictions.

Independent Krebs

Who and What is Behind the Malware Proxy Service SocksEscort?

July 25, 2023 admin A Little Sunshine, adrian crismaru, avrecon, black lotus labs, DomainTools.com, Intel471, Internet of Things (IoT), lumen, riley kilmer, socksescort, spur.us, Web Fraud 2.0, wiremo

Credit to Author: BrianKrebs| Date: Tue, 25 Jul 2023 21:20:55 +0000

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. Now new findings reveal that AVrecon is the malware engine behind a 12-year-old service called SocksEscort, which rents hacked residential and small business devices to cybercriminals looking to hide their true location online.

Independent Krebs

Few Fortune 100 Firms List Security Pros in Their Executive Ranks

July 21, 2023 admin A Little Sunshine, Accenture, datos insights, ians, security maturity, tari schreider

Credit to Author: BrianKrebs| Date: Fri, 21 Jul 2023 19:11:16 +0000

Many things have changed since 2018, such as the names of the companies in the Fortune 100 list. But one aspect of that vaunted list that hasn’t shifted much since is that very few of these companies list any security professionals within their top executive ranks. The next time you receive a breach notification letter that invariably says a company you trusted places a top priority on customer security and privacy, consider this: Only four of the Fortune 100 companies currently list a security professional in the executive leadership pages of their websites. This is actually down from five of the Fortune 100 in 2018, the last time KrebsOnSecurity performed this analysis.

Independent Krebs

LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack

July 18, 2023 admin A Little Sunshine, abusewithus, agentjags, Ashley Madison hack, ashleymadison.com, constella intelligence, data breaches, domaintools, eric malek, Hulu, impact team, Jordan Evan Bloom, LeakedSource, Ne'er-Do-Well News, near-reality.com, noel biderman, ownagegaming1@gmail.com, pictrace, Royal Canadian Mounted Police, Runescape, trevor sykes

Credit to Author: BrianKrebs| Date: Tue, 18 Jul 2023 14:57:04 +0000

[This is Part III in a series on research conducted for a recent Hulu documentary on the 2015 hack of marital infidelity website AshleyMadison.com.] In 2019, a Canadian company called Defiant Tech Inc. pleaded guilty to running LeakedSource[.]com, a service that sold access to billions of passwords and other data exposed in countless data breaches. KrebsOnSecurity has learned that the owner of Defiant Tech, a 32-year-old Ontario man named Jordan Evan Bloom, was hired in late 2014 as a developer for the marital infidelity site AshleyMadison.com. Bloom resigned from AshleyMadison citing health reasons in June 2015 — less than one month before unidentified hackers stole data on 37 million users — and launched LeakedSource three months later.

Independent Krebs

SEO Expert Hired and Fired By Ashley Madison Turned on Company, Promising Revenge

July 13, 2023 admin A Little Sunshine, Ashley Madison hack, data breaches, Hulu, impact team, Ne'er-Do-Well News, william webster harrison

Credit to Author: BrianKrebs| Date: Thu, 13 Jul 2023 21:45:02 +0000

[This is Part II of a story published here last week on reporting that went into a new Hulu documentary series on the 2015 Ashley Madison hack.] It was around 9 p.m. on Sunday, July 19, when I received a message through the contact form on KrebsOnSecurity.com that the marital infidelity website AshleyMadison.com had been hacked. The message contained links to confidential Ashley Madison documents, and included a manifesto that said a hacker group calling itself the Impact Team was prepared to leak data on all 37 million users unless Ashley Madison and a sister property voluntarily closed down within 30 days.

Independent Krebs

Apple & Microsoft Patch Tuesday, July 2023 Edition

July 11, 2023 admin adam barnett, andrew brandt, apple zero-day, Cisco, cve-2023-32046, cve-2023-32049, cve-2023-35311, cve-2023-36884, immersive labs, ios 16.5.1, kevin breen, macos 13.4.1, patch tuesday july 2023, Rapid7, safari 16.5.2, Security Tools, Sophos, storm-0978, Time to Patch, Trend Micro

Credit to Author: BrianKrebs| Date: Tue, 11 Jul 2023 22:55:07 +0000

Microsoft Corp. today released software updates to quash 130 security bugs in its Windows operating systems and related software, including at least five flaws that are already seeing active exploitation. Meanwhile, Apple customers have their own zero-day woes again this month: On Monday, Apple issued (and then quickly pulled) an emergency update to fix a zero-day vulnerability that is being exploited on MacOS and iOS devices.

Independent Krebs

Top Suspect in 2015 Ashley Madison Hack Committed Suicide in 2014

July 7, 2023 admin A Little Sunshine, ashley madison, Ashley Madison hack, avid life media, Disney, Hulu, jeremy bullock, noel biderman, wall to wall media, warner bros., william webster harrison

Credit to Author: BrianKrebs| Date: Fri, 07 Jul 2023 19:55:45 +0000

When the marital infidelity website AshleyMadison.com learned in July 2015 that hackers were threatening to publish data stolen from 37 million users, the company’s then-CEO Noel Biderman was quick to point the finger at an unnamed former contractor. But as a new documentary series on Hulu reveals [SPOILER ALERT!], there was just one problem with that theory: Their top suspect had killed himself more than a year before the hackers began publishing stolen user data.

Independent Krebs

Who’s Behind the DomainNetworks Snail Mail Scam?

July 3, 2023 admin A Little Sunshine, Better Business Bureau, Breadcrumbs, constella intelligence, distributorinvoice@mail.com, domainnetworks, domaintools, eliran benz, Houzz, publicwww, sam alon, shenhavgroup@gmail.com, shmuel orit alon, tropicglobal@gmail.com, ubsagency@gmail.com, united business service, united business services, us domain authority llc, weblistingsinc.net, whmcs.com

Credit to Author: BrianKrebs| Date: Mon, 03 Jul 2023 14:56:35 +0000

If you’ve ever owned a domain name, the chances are good that at some point you’ve received a snail mail letter which appears to be a bill for a domain or website-related services. In reality, these misleading missives try to trick people into paying for useless services they never ordered, don’t need, and probably will never receive. Here’s a look at the most recent incarnation of this scam — DomainNetworks — and some clues about who may be behind it.