A Little Sunshine – Page 20 – Computer Security Articles

Experian, You Have Some Explaining to Do

July 10, 2022 admin A Little Sunshine, arthur rishi, emory roan, Equifax, Experian, john turner, Latest Warnings, Nicholas Weaver, privacyrights.org, TransUnion, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Mon, 11 Jul 2022 04:07:15 +0000

Twice in the past month KrebsOnSecurity has heard from readers who’ve had their accounts at big-three credit bureau Experian hacked and updated with a new email address that wasn’t theirs. In both cases the readers used password managers to select strong, unique passwords for their Experian accounts. Research suggests identity thieves were able to hijack the accounts simply by signing up for new accounts at Experian using the victim’s personal information and a different email address.

Independent Krebs

The Link Between AWM Proxy & the Glupteba Botnet

June 28, 2022 admin A Little Sunshine, alureon, awm proxy, Breadcrumbs, constella intelligence, dennstr, dmitry starovikov, domaintools, ESET, glupteba botnet, google, kaspersky lab, lycefer, meris, Ne'er-Do-Well News, pay-per-install, riley kilmer, rootkit, rsocks botnet, spur.us, tdl-4, tdss, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 28 Jun 2022 18:33:31 +0000

On December 7, 2021, Google announced it had sued two Russian men allegedly responsible for operating the Glupteba botnet, a global malware menace that has infected millions of computers over the past decade. That same day, AWM Proxy — a 14-year-old anonymity service that rents hacked PCs to cybercriminals — suddenly went offline. Security experts had long seen a link between Glupteba and AWM Proxy, but new research shows AWM Proxy’s founder is one of the men being sued by Google.

Independent Krebs

Meet the Administrators of the RSOCKS Proxy Botnet

June 22, 2022 admin 79136334444, A Little Sunshine, Breadcrumbs, constella intelligence, denis "neo" kloster, exploit, internet advertising omsk, istanx@gmail.com, Ne'er-Do-Well News, rsocks botnet, rusdot, sl mobpartners, spamdot, stanx, stanx@rusdot.com, u.s. department of justice, verified

Credit to Author: BrianKrebs| Date: Wed, 22 Jun 2022 13:06:34 +0000

Authorities in the United States, Germany, the Netherlands and the U.K. last week said they dismantled the “RSOCKS” botnet, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. While the coordinated action did not name the Russian hackers allegedly behind RSOCKS, KrebsOnSecurity has identified its owner as a Russian man living abroad who also runs the world’s top Russian spamming forum.

Independent Krebs

Why Paper Receipts are Money at the Drive-Thru

June 20, 2022 admin A Little Sunshine, employment fraud, jimmy john's, steve saladin, u.s. internal revenue service

Credit to Author: BrianKrebs| Date: Mon, 20 Jun 2022 17:56:48 +0000

Check out the handmade sign posted to the front door of a shuttered Jimmy John’s sandwich chain shop in Missouri last week. See if you can tell from the store owner’s message what happened.

Independent Krebs

Ransomware Group Debuts Searchable Victim Data

June 14, 2022 admin A Little Sunshine, alphv ransomware, blackcat ransomware, brett callow, emsisoft, ransomware, The Coming Storm

Credit to Author: BrianKrebs| Date: Tue, 14 Jun 2022 19:53:12 +0000

Cybercrime groups that specialize in stealing corporate data and demanding a ransom not to publish it have tried countless approaches to shaming their victims into paying. The latest innovation in ratcheting up the heat comes from the ALPHV/BlackCat ransomware group, which has traditionally published any stolen victim data on the Dark Web. Today, however, the group began publishing individual victim websites on the public Internet, with the leaked data made available in an easily searchable form.

Independent Krebs

Adconion Execs Plead Guilty in Federal Anti-Spam Case

June 10, 2022 admin A Little Sunshine, Adconion Direct, afrinic, Amobee, ARIN, CAN-SPAM Act, Daniel Dye, inspiring networks, Jacob Bychak, maikel uerlings, Mark Manoogian, Media Breakaway, Micfo, Mohammed Abdul Qayyum, mybroadband.co.za, Ne'er-Do-Well News, Optinrealbig, Petr Pacas, Scott Richter

Credit to Author: BrianKrebs| Date: Sat, 11 Jun 2022 00:04:22 +0000

On the eve of their federal criminal trial for allegedly stealing vast swaths of Internet addresses for use in large-scale email spam campaigns, three current or former executives at online advertising firm Adconion Direct have agreed to plead guilty to lesser misdemeanor charges of fraud and misrepresentation via email.

Independent Krebs

What Counts as “Good Faith Security Research?”

June 3, 2022 admin A Little Sunshine, computer fraud and abuse act, Department of Justice, deputy attorney general lisa o. monaco, Digital Millennium Copyright Act, good faith security research, Orin Kerr, university of california berkley, van buren v. united states

Credit to Author: BrianKrebs| Date: Fri, 03 Jun 2022 19:33:03 +0000

The U.S. Department of Justice (DOJ) recently revised its policy on charging violations of the Computer Fraud and Abuse Act (CFAA), a 1986 law that remains the primary statute by which federal prosecutors pursue cybercrime cases. The new guidelines state that prosecutors should avoid charging security researchers who operate in “good faith” when finding and reporting vulnerabilities. But legal experts continue to advise researchers to proceed with caution, noting the new guidelines can’t be used as a defense in court, nor are they any kind of shield against civil prosecution.

Independent Krebs

Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade Sanctions

May 31, 2022 admin A Little Sunshine, advintel, conti, costa rica, crprensa.com, cyberscoop, data breaches, data ransom, hive, Ne'er-Do-Well News, ransomware, russia's war on ukraine, unc1756

Credit to Author: BrianKrebs| Date: Tue, 31 May 2022 19:57:58 +0000

Costa Rica’s national health service was hacked sometime earlier this morning by a Russian ransomware group known as Hive. The intrusion comes just weeks after Costa Rican President Rodrigo Chaves declared a state of emergency in response to a data ransom attack from a different Russian ransomware gang — Conti. Ransomware experts say there is good reason to believe the same cybercriminals are behind both attacks, and that Hive has been helping Conti rebrand and evade international sanctions targeting extortion payouts to cybercriminals operating in Russia.