A Little Sunshine – Page 23 – Computer Security Articles

IRS: Selfies Now Optional, Biometric Data to Be Deleted

February 22, 2022 admin A Little Sunshine, id.me, Internal Revenue Service, irs, login.gov, Sen. Ron Wyden, u.s. general services administration

Credit to Author: BrianKrebs| Date: Tue, 22 Feb 2022 17:50:33 +0000

The U.S. Internal Revenue Service (IRS) said Monday that taxpayers are no longer required to provide facial scans to create an account online at irs.gov. In lieu of providing biometric data, taxpayers can now opt for a live video interview with ID.me, the privately-held Virginia company that runs the agency’s identity proofing system. The IRS also said any biometric data already shared with ID.me would be permanently deleted over the next few weeks, and any biometric data provided for new signups will be destroyed after an account is created.

Independent Krebs

Report: Missouri Governor’s Office Responsible for Teacher Data Leak

February 22, 2022 admin A Little Sunshine, data breaches, elad gross, josh renaud, mallory mcgowin, missouri gov. mike parson, missouri highway patrol, shaji khan, st. louis post-dispatch

Credit to Author: BrianKrebs| Date: Tue, 22 Feb 2022 16:18:57 +0000

Missouri Governor Mike Parson made headlines last year when he vowed to criminally prosecute a journalist for reporting a security flaw in a state website that exposed personal information of more than 100,000 teachers. But Missouri prosecutors now say they… Read More »

Independent Krebs

Wazawaka Goes Waka Waka

February 14, 2022 admin #babuk, A Little Sunshine, babuk ransomware, biba99, boriselcin, Cisco Talos, cve-2021-20028, dmitry smilyanets, groove ransom, mikhail pavlovich matveev, Ne'er-Do-Well News, orange, RaidForums, ramp, ransomware, sonicwall vpn, teresacox19963@gmail.com, tox, verified, washington metropolitan police department, wazawaka

Credit to Author: BrianKrebs| Date: Mon, 14 Feb 2022 18:22:38 +0000

In January, KrebsOnSecurity examined clues left behind by “Wazawaka,” the hacker handle chosen by a major ransomware criminal in the Russian-speaking cybercrime scene. Wazawaka has since “lost his mind” according to his erstwhile colleagues, creating a Twitter account to drop exploit code for a widely-used virtual private networking (VPN) appliance, and publishing bizarre selfie videos taunting security researchers and journalists. In last month’s story, we explored clues that led from Wazawaka’s multitude of monikers, email addresses, and passwords to a 30-something father in Abakan, Russia named Mikhail Pavlovich Matveev. This post concerns itself with the other half of Wazawaka’s identities not mentioned in the first story, such as how Wazawaka also ran the Babuk ransomware affiliate program, and later became “Orange,” the founder of the ransomware-focused Dark Web forum known as “RAMP.”

Independent Krebs

IRS To Ditch Biometric Requirement for Online Access

February 7, 2022 admin A Little Sunshine, id.me, Internal Revenue Service, Sen. Ron Wyden, The Washington Post, u.s. general services administration

Credit to Author: BrianKrebs| Date: Mon, 07 Feb 2022 20:56:52 +0000

The Internal Revenue Service (IRS) said today it will be transitioning away from requiring biometric data from taxpayers who wish to access their records at the agency’s website. The reversal comes as privacy experts and lawmakers have been pushing the IRS and other federal agencies to find less intrusive methods for validating one’s identity with the U.S. government online.

Independent Krebs

How Phishers Are Slinking Their Links Into LinkedIn

February 3, 2022 admin A Little Sunshine, Amazon, avanan, Check Point, fortinet, irs, jeremy fuchs, Latest Warnings, LinkedIn, microsoft, Paypal, slinks, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 03 Feb 2022 18:49:38 +0000

If you received a link to LinkedIn.com via email, SMS or instant message, would you click it? Spammers, phishers and other ne’er-do-wells are hoping you will, because they’ve long taken advantage of a marketing feature on the business networking site which lets them create a LinkedIn.com link that bounces your browser to other websites, such as phishing pages that mimic top online brands (but chiefly Linkedin’s parent firm Microsoft).

Independent Krebs

Fake Investor John Bernard Sinks Norwegian Green Shipping Dreams

February 2, 2022 admin A Little Sunshine, freidig shipping, guy devos, harald berglihn, harald vanvik, inside knowledge, john bernard, john clifton davies, Ne'er-Do-Well News, nils-odd tønnevold, the weeknd, Uber, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Sat, 29 Jan 2022 18:05:52 +0000

Several articles here have delved into the history of John Bernard, the pseudonym used by a fake billionaire technology investor who’s tricked dozens of start-ups into giving him tens of millions of dollars. Bernard’s latest victim — a Norwegian startup hoping to build a fleet of environmentally friendly shipping vessels — is now embroiled in a lawsuit over a deal gone bad, in which Bernard falsely claimed to have secured $100 million from six other wealthy investors, including the founder of Uber and the artist Abel Makkonen Tesfaye, better known as The Weeknd.

Independent Krebs

Who Wrote the ALPHV/BlackCat Ransomware Strain?

February 2, 2022 admin @cookiedays, A Little Sunshine, alphv ransomware, binrs, blackcat ransomware, blackmatter, Breadcrumbs, Catalin Cimpanu, darkside, duckerman, duckermanit, Flashpoint, jason hill, Ne'er-Do-Well News, paul roberts, ramp, Recorded Future, reversinglabs, rEvil, sergey duck, sergey kryakov, sergey penchikov, smiseo, the record, tox, varonis, ybcat

Credit to Author: BrianKrebs| Date: Fri, 28 Jan 2022 13:18:36 +0000

In December 2021, researchers discovered a new ransomware-as-a-service named ALPHV (a.k.a. “BlackCat”), considered to be the first professional cybercrime group to create and use a ransomware strain in the Rust programming language. In this post, we’ll explore some of the clues left behind by the developer who was reputedly hired to code the ransomware variant.

Independent Krebs

Scary Fraud Ensues When ID Theft & Usury Collide

February 2, 2022 admin A Little Sunshine, buckley llp, installment loan, leslie bailey, mountain summit financial, native american financial services association, payday loan, public justice, The Coming Storm, tribal lenders, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 25 Jan 2022 19:48:40 +0000

What’s worse than finding out that identity thieves took out a 546 percent interest payday loan in your name? How about a 900 percent interest loan? Or how about not learning of the fraudulent loan until it gets handed off to collection agents? One reader’s nightmare experience spotlights what can happen when ID thieves and hackers start targeting online payday lenders.