Krebs – Page 24 – Computer Security Articles

New Ransom Payment Schemes Target Executives, Telemedicine

December 8, 2022 admin alex holden, cl0p, clop ransomware, emsisoft, fabian wosar, Hold Security, ransomware, ta505, The Coming Storm, Tripwire, venus ransomware, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 08 Dec 2022 18:25:04 +0000

Ransomware groups are constantly devising new methods for infecting victims and convincing them to pay up, but a couple of strategies tested recently seem especially devious. The first centers on targeting healthcare organizations that offer consultations over the Internet and sending them booby-trapped medical records for the “patient.” The other involves carefully editing email inboxes of public company executives to make it appear that some were involved in insider trading.

Independent Krebs

Judge Orders U.S. Lawyer in Russian Botnet Case to Pay Google

December 5, 2022 admin A Little Sunshine, dmitry starovikov, glupteba botnet, google, halimah delaine prado, Igor Litvak, Ne'er-Do-Well News, royal hansen, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Mon, 05 Dec 2022 19:44:50 +0000

In December 2021, Google filed a civil lawsuit against two Russian men thought to be responsible for operating Glupteba, one of the Internet’s largest and oldest botnets. The defendants, who initially pursued a strategy of counter suing Google for tortious interference in their sprawling cybercrime business, later brazenly offered to dismantle the botnet in exchange for payment from Google. The judge in the case was not amused, found for the plaintiff, and ordered the defendants and their U.S. attorney to pay Google’s legal fees.

Independent Krebs

ConnectWise Quietly Patches Flaw That Helps Phishers

December 1, 2022 admin A Little Sunshine, connectwise, cybir, goto, ken pyle, lastpass, Latest Warnings, tarran street, The Coming Storm

Credit to Author: BrianKrebs| Date: Thu, 01 Dec 2022 19:35:11 +0000

ConnectWise, a self-hosted, remote desktop software application that is widely used by Managed Service Providers (MSPs), is warning about an unusually sophisticated phishing attack that can let attackers take remote control over user systems when recipients click the included link. The warning comes just days after the company quietly patched a vulnerability that makes it easier for phishers to launch these attacks.

Independent Krebs

U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer

November 28, 2022 admin A Little Sunshine, arello-mobile, army times, constella intelligence, foreign adtech, intelligence authorization act for 2023, Latest Warnings, max konev, national training center, pincer trojan, pushwoosh, Reuters, The Coming Storm, u.s. army, yuri shmakov, zach edwards

Credit to Author: BrianKrebs| Date: Mon, 28 Nov 2022 22:08:21 +0000

A recent scoop by Reuters revealed that mobile apps for the U.S. Army and the Centers for Disease Control and Prevention (CDC) were integrating software that sends visitor data to a Russian company called Pushwoosh, which claims to be based in the United States. But that story omitted an important historical detail about Pushwoosh: In 2013, one of its developers admitted to authoring the Pincer Trojan, malware designed to surreptitiously intercept and forward text messages from Android mobile devices.

Independent Krebs

Researchers Quietly Cracked Zeppelin Ransomware Keys

November 17, 2022 admin A Little Sunshine, cybersecurity & infrastructure security agency, Digital Ocean, FBI, joel lathrop, lance james, ransomware, Security Tools, unit 221b, zeppelin decryptor, zeppelin ransomware

Credit to Author: BrianKrebs| Date: Fri, 18 Nov 2022 02:30:26 +0000

Peter is an IT manager for a technology manufacturer that got hit with a Russian ransomware strain called “Zeppelin” in May 2020. He’d been on the job less than six months, and because of the way his predecessor architected things,… Read More »

Independent Krebs

Disneyland Malware Team: It’s a Puny World After All

November 16, 2022 admin A Little Sunshine, alex holden, disneyland team, gozi trojan, Hold Security, Ne'er-Do-Well News, Web Fraud 2.0, web injects

Credit to Author: BrianKrebs| Date: Wed, 16 Nov 2022 17:32:00 +0000

A financial cybercrime group calling itself the Disneyland Team has been making liberal use of visually confusing phishing domains that spoof popular bank brands using Punycode, an Internet standard that allows web browsers to render domain names with non-Latin alphabets like Cyrillic and Ukrainian.

Independent Krebs

Top Zeus Botnet Suspect “Tank” Arrested in Geneva

November 15, 2022 admin jabberzeus, Ne'er-Do-Well News, tank, vyacheslav igorevich penchukov

Credit to Author: BrianKrebs| Date: Tue, 15 Nov 2022 15:38:20 +0000

Vyacheslav “Tank” Penchukov, the accused 40-year-old Ukrainian leader of a prolific cybercriminal group that stole tens of millions of dollars from small to mid-sized businesses in the United States and Europe, has been arrested in Switzerland, according to multiple sources.

Independent Krebs

Lawsuit Seeks Food Benefits Stolen By Skimmers

November 10, 2022 admin A Little Sunshine, All About Skimmers, deborah harris, supplemental nutrition and assistance program, the center for law and social policy, the massachusetts law reform institute, u.s. department of agriculture

Credit to Author: BrianKrebs| Date: Thu, 10 Nov 2022 18:11:10 +0000

A nonprofit organization is suing the state of Massachusetts on behalf of thousands of low-income families who were collectively robbed of more than a $1 million in food assistance benefits by card skimming devices secretly installed at cash machines and grocery store checkout lanes across the state. Federal law bars states from replacing these benefits using federal funds, and a recent rash of skimming incidents nationwide has disproportionately affected those receiving food assistance via state-issued prepaid debit cards.