Krebs – Page 7 – Computer Security Articles

Hackers Steal Phone, SMS Records for Nearly All AT&T Customers

July 12, 2024 admin A Little Sunshine, advance auto parts, allstate, anheuser-busch, at&t breach, data breaches, FBI, Latest Warnings, los angeles unified, Mitsubishi, neiman marcus, progressive, pure storage, santander bank, snowflake hack, state farm, Techcrunch, ticketmaster, U.S. Securities and Exchange Commission, wired

Credit to Author: BrianKrebs| Date: Fri, 12 Jul 2024 18:12:20 +0000

AT&T Corp. disclosed today that a new data breach has exposed phone call and text message records for roughly 110 million people — nearly all of its customers. AT&T said it delayed disclosing the incident in response to “national security and public safety concerns,” noting that some of the records included data that could be used to determine where a call was made or text message sent. AT&T also acknowledged the customer records were exposed in a cloud database that was protected only by a username and password (no multi-factor authentication needed).

Independent Krebs

The Stark Truth Behind the Resurgence of Russia’s Fin7

July 10, 2024 admin 7-zip, advanced ip scanner, aimp, anydesk, AutoDesk, bastion secure, bitwarden, Blackberry, combi security, esentire, FIN7, Malwarebytes, microsoft, Ne'er-Do-Well News, node.js, notepad++, pgadmin, prodaft, protectedpdfviewer, putty, python, ransomware, rest proxy, russia's war on ukraine, silent push, spearphishing, stark industries solutions, sublime text, typosquatting, Web Fraud 2.0, zach edwards

Credit to Author: BrianKrebs| Date: Wed, 10 Jul 2024 16:22:59 +0000

The Russia-based cybercrime group dubbed “Fin7,” known for phishing and malware attacks that have cost victim organizations an estimated $3 billion in losses since 2013, was declared dead last year by U.S. authorities. But experts say Fin7 has roared back to life in 2024 — setting up thousands of websites mimicking a range of media and technology companies — with the help of Stark Industries Solutions, a sprawling hosting provider is a persistent source of cyberattacks against enemies of Russia.

Independent Krebs

Microsoft Patch Tuesday, July 2024 Edition

July 9, 2024 admin askwoody.com, automox, cve-2024-38021, cve-2024-38074, cve-2024-38076, cve-2024-38077, cve-2024-38080, cve-2024-38112, forta, immersive labs, jason kikta, kevin breen, michael gorelik, morphisec, mshtml, sans internet storm center, Satnam Narang, sql server 2014, Time to Patch, tyler reguly, windows layer two bridge network

Credit to Author: BrianKrebs| Date: Tue, 09 Jul 2024 19:50:33 +0000

Microsoft Corp. today issued software updates to plug 139 security holes in various flavors of Windows and other Microsoft products. Redmond says attackers are already exploiting at least two of the vulnerabilities in active attacks against Windows users.

Independent Krebs

The Not-So-Secret Network Access Broker x999xx

July 3, 2024 admin Breadcrumbs, cobalt strike, cobaltforce, constella intelligence, dashin2008@yahoo.com, Flashpoint, Intel 471, kirtsov@telecom.ozersk.ru, lockbit, maksim georgievich kirtsov, maksya@icloud.com, maxnmalias-1@yahoo.com, mikhail matveev, Ne'er-Do-Well News, operation endgame, osint.industries, ozersk technological institute national research nuclear university, Recorded Future, u.s. department of justice, wazawaka, x999xx, Кирцов Максим Георгиевич

Credit to Author: BrianKrebs| Date: Wed, 03 Jul 2024 16:41:34 +0000

Most accomplished cybercriminals go out of their way to separate their real names from their hacker handles. But among certain old-school Russian hackers it is not uncommon to find major players who have done little to prevent people from figuring out who they are in real life. A case study in this phenomenon is “x999xx,” the nickname chosen by a venerated Russian hacker who specializes in providing the initial network access to various ransomware groups.

Independent Krebs

KrebsOnSecurity Threatened with Defamation Lawsuit Over Fake Radaris CEO

June 20, 2024 admin 617-794-0001, A Little Sunshine, aleksej gubarev, andtop company, atlas data privacy corp., barsky.com, Better Business Bureau, bitseller expert limited, boston law group, Breadcrumbs, Buzzfeed, constella intelligence, difive.com, dmitry lubarsky, DomainTools.com, gary norden, gn@difive.com, humanbook, igor lubarsky, pavel kaydash, radaris, radaris.com, steele dossier, trustoria.com, val gurvits, webzilla, xbt holding

Credit to Author: BrianKrebs| Date: Thu, 20 Jun 2024 19:16:01 +0000

On March 8, 2024, KrebsOnSecurity published a deep dive on the consumer data broker Radaris, showing how the original owners are two men in Massachusetts who operated multiple Russian language dating services and affiliate programs, in addition to a dizzying array of people-search websites. The subjects of that piece are threatening to sue KrebsOnSecurity for defamation unless the story is retracted. Meanwhile, their attorney has admitted that the person Radaris named as the CEO from its inception is a fabricated identity.

Independent Krebs

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

June 15, 2024 admin 0ktapus, caesars, data breaches, doordash, FBI, Group-IB, king bob, lastpass, mailchimp, mgm, murcia today, Ne'er-Do-Well News, noah michael urban, Okta, scattered spider, signal, SIM swapping, sosa, the com, tyler buchanan, vx-underground, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Sat, 15 Jun 2024 23:40:20 +0000

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider, a cybercrime group suspected of hacking into Twilio, LastPass, DoorDash, Mailchimp, and nearly 130 other organizations over the past two years.

Independent Krebs

Patch Tuesday, June 2024 “Recall” Edition

June 11, 2024 admin adam barnett, copilot, cve-2004-30080, cve-2024-30078, immersive labs, kevin beaumont, kevin breen, Mastodon, microsoft message queuing, microsoft patch tuesday june 2024, Patrick Gray, Rapid7, Recall, Risky Business podcast, Time to Patch, windows, windows wifi driver

Credit to Author: BrianKrebs| Date: Tue, 11 Jun 2024 22:57:35 +0000

Microsoft today released updates to fix more than 50 security vulnerabilities in Windows and related software, a relatively light Patch Tuesday this month for Windows administrators. The software giant also responded to a torrent of negative feedback on a new feature of Redmond’s flagship operating system that constantly takes screenshots of whatever users are doing on their computers, saying the feature would no longer be enabled by default.

Independent Krebs

‘Operation Endgame’ Hits Malware Delivery Platforms

May 30, 2024 admin 911 s5, Europol, IcedID, lockbit, matt burgess, Ne'er-Do-Well News, operation endgame, ransomware, smokeloader, The Coming Storm, trickbot

Credit to Author: BrianKrebs| Date: Thu, 30 May 2024 15:19:44 +0000

Law enforcement agencies in the United States and Europe today announced Operation Endgame, a coordinated action against some of the most popular cybercrime platforms for delivering ransomware and data-stealing malware. Dubbed “the largest ever operation against botnets,” the international effort is being billed as the opening salvo in an ongoing campaign targeting advanced malware “droppers” or “loaders” like IcedID, Smokeloader and Trickbot.