Breadcrumbs – Page 2 – Computer Security Articles

National Public Data Published Its Own Passwords

August 19, 2024 admin A Little Sunshine, atlas data privacy corp., Breadcrumbs, creationnext, data breaches, national public data breach, npd.pentester.com, npdbreach.com, salvatore verini, The Coming Storm, usinfosearch.com

Credit to Author: BrianKrebs| Date: Mon, 19 Aug 2024 16:23:31 +0000

New details are emerging about a breach at National Public Data (NPD), a consumer data broker that recently spilled hundreds of millions of Americans’ Social Security Numbers, addresses, and phone numbers online. KrebsOnSecurity has learned that another NPD data broker which shares access to the same consumer records inadvertently published the passwords to its back-end database in a file that was freely available for download from its homepage until today.

Independent Krebs

The Not-So-Secret Network Access Broker x999xx

July 3, 2024 admin Breadcrumbs, cobalt strike, cobaltforce, constella intelligence, dashin2008@yahoo.com, Flashpoint, Intel 471, kirtsov@telecom.ozersk.ru, lockbit, maksim georgievich kirtsov, maksya@icloud.com, maxnmalias-1@yahoo.com, mikhail matveev, Ne'er-Do-Well News, operation endgame, osint.industries, ozersk technological institute national research nuclear university, Recorded Future, u.s. department of justice, wazawaka, x999xx, Кирцов Максим Георгиевич

Credit to Author: BrianKrebs| Date: Wed, 03 Jul 2024 16:41:34 +0000

Most accomplished cybercriminals go out of their way to separate their real names from their hacker handles. But among certain old-school Russian hackers it is not uncommon to find major players who have done little to prevent people from figuring out who they are in real life. A case study in this phenomenon is “x999xx,” the nickname chosen by a venerated Russian hacker who specializes in providing the initial network access to various ransomware groups.

Independent Krebs

KrebsOnSecurity Threatened with Defamation Lawsuit Over Fake Radaris CEO

June 20, 2024 admin 617-794-0001, A Little Sunshine, aleksej gubarev, andtop company, atlas data privacy corp., barsky.com, Better Business Bureau, bitseller expert limited, boston law group, Breadcrumbs, Buzzfeed, constella intelligence, difive.com, dmitry lubarsky, DomainTools.com, gary norden, gn@difive.com, humanbook, igor lubarsky, pavel kaydash, radaris, radaris.com, steele dossier, trustoria.com, val gurvits, webzilla, xbt holding

Credit to Author: BrianKrebs| Date: Thu, 20 Jun 2024 19:16:01 +0000

On March 8, 2024, KrebsOnSecurity published a deep dive on the consumer data broker Radaris, showing how the original owners are two men in Massachusetts who operated multiple Russian language dating services and affiliate programs, in addition to a dizzying array of people-search websites. The subjects of that piece are threatening to sue KrebsOnSecurity for defamation unless the story is retracted. Meanwhile, their attorney has admitted that the person Radaris named as the CEO from its inception is a fabricated identity.

Independent Krebs

Stark Industries Solutions: An Iron Hammer in the Cloud

May 23, 2024 admin A Little Sunshine, andrey nesterenko, arbor, as44477, blue charlie, Breadcrumbs, callisto group, coldriver, comcast cable communications, computer technologies institute ltd, constella intelligence, correctiv.org, ddos-for-hire, ddosia, dfyz, dfyz_bk@bk.ru, don chicho, egihosting, ESET, federal state autonomous educational establishment of additional professional education center of realization of state educational policy and informational technologies, green floid llc, information technology laboratories group, innovation it solutions corp, integrated technologies laboratory, Intel 471, Internet Research Agency, itl llc, jeffrey carr, lockbit, max tulyev, mercenaries team, mirhosting, netassist, netscout, noname057(16), perfect quality hosting, pq hosting plus s.r.l., prolocation, proxyline, raymond dijkxhoorn, Recorded Future, richard hummel, russia's war on ukraine, seaborgium, serverius-as, spamhaus, stark industries solutions, surbl, team cymru, ukrinform

Credit to Author: BrianKrebs| Date: Thu, 23 May 2024 23:32:43 +0000

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. An investigation into Stark Industries reveals it is being used as a global proxy network that conceals the true source of cyberattacks and disinformation campaigns against enemies of Russia.

Independent Krebs

How Did Authorities Identify the Alleged Lockbit Boss?

May 13, 2024 admin 3k@xakep.ru, 7.9521020220, A Little Sunshine, antichat, Breadcrumbs, Cerber, constella intelligence, d.horoshev@gmail.com, dmitrij ju horoshev, dmitry yuriyevich khoroshev, exploit, icq number 669316, Intel 471, khoroshev1@icloud.com, lockbit, lockbitsupp, Ne'er-Do-Well News, nerowolfe, pin@darktower.su, putinkrab, ransomware, Ransomware as a Service, sitedev5@yandex.ru, stairwell.ru, tkaner.com, u.s. department of the treasury, verified

Credit to Author: BrianKrebs| Date: Mon, 13 May 2024 11:26:27 +0000

Last week, the United States joined the U.K. and Australia in sanctioning and charging a Russian man named Dmitry Yuryevich Khoroshev as the leader of the infamous LockBit ransomware group. LockBit’s leader “LockBitSupp” claims the feds named the wrong guy, saying the charges don’t explain how they connected him to Khoroshev. This post examines the activities of Khoroshev’s many alter egos on the cybercrime forums, and tracks the career of a gifted malware author who has written and sold malicious code for the past 14 years.

Independent Krebs

Who Stole 3.6M Tax Records from South Carolina?

April 16, 2024 admin aleksandr ermakov, Associated Press, Breadcrumbs, data breaches, embargo, Home Depot breach, jeffrey collins, mark keel, mazafaka, mikhail shefel, Ne'er-Do-Well News, nikki haley, rescator, shtazi, target breach, tax refund fraud, tax return fraud, the post and courier, u.s. internal revenue service, verified

Credit to Author: BrianKrebs| Date: Tue, 16 Apr 2024 11:26:55 +0000

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 million people. The answer may no longer be a mystery: KrebsOnSecurity found compelling clues suggesting the intrusion was carried out by the same Russian hacking crew that stole of millions of payment card records from big box retailers like Home Depot and Target in the years that followed.

Independent Krebs

Fake Lawsuit Threat Exposes Privnote Phishing Sites

April 15, 2024 admin A Little Sunshine, alexandr ermakov, andrey sokol, Breadcrumbs, fory66399, hkleaks, Latest Warnings, metamask, privnote, privnote.com, russia's war on ukraine, taylor monahan, tornote.io, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 04 Apr 2024 14:12:16 +0000

A cybercrook who has been setting up websites that mimic the self-destructing message service Privnote.com accidentally exposed the breadth of their operations recently when they threatened to sue a software company. The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers.

Independent Krebs

‘The Manipulaters’ Improve Phishing, Still Fail at Opsec

April 15, 2024 admin A Little Sunshine, bluebtcus@gmail.com, Breadcrumbs, DomainTools.com, fudco, fudpage, fudsender, fudtools, heartsender, Ne'er-Do-Well News, saim raza, the manipulaters, we code solutions, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Wed, 03 Apr 2024 13:16:25 +0000

Roughly nine years ago, KrebsOnSecurity profiled a Pakistan-based cybercrime group called “The Manipulaters,” a sprawling web hosting network of phishing and spam delivery platforms. In January 2024, The Manipulaters pleaded with this author to unpublish previous stories about their work, claiming the group had turned over a new leaf and gone legitimate. But new research suggests that while they have improved the quality of their products and services, these nitwits still fail spectacularly at hiding their illegal activities.