Identity theft is number one threat for consumers, says report
The German BSI has published its 2023 state of IT security report which names identity theft as the main threat for consumers.
Read moredata breaches
New Leak Shows Business Side of China’s APT Menace
Credit to Author: BrianKrebs| Date: Thu, 22 Feb 2024 13:27:47 +0000
A new data leak that appears to have come from one of China’s top private cybersecurity firms provides a rare glimpse into the commercial side of China’s many state-sponsored hacking groups. Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign espionage campaigns to the nation’s burgeoning and highly competitive cybersecurity industry.
Read moreU.S. Internet Leaked Years of Internal, Customer Emails
Credit to Author: BrianKrebs| Date: Wed, 14 Feb 2024 16:45:46 +0000
The Minnesota-based Internet provider U.S. Internet Corp. has a business unit called Securence, which specializes in providing filtered, secure email services to businesses, educational institutions and government agencies worldwide. But until it was notified last week, U.S. Internet was publishing more than a decade’s worth of its internal email — and that of thousands of Securence clients — in plain text out on the Internet and just a click away for anyone with a Web browser.
Read moreArrests in $400M SIM-Swap Tied to Heist at FTX?
Credit to Author: BrianKrebs| Date: Thu, 01 Feb 2024 18:41:37 +0000
Three Americans were charged this week with stealing more than $400 million in a November 2022 SIM-swapping attack. The U.S. government did not name the victim organization, but there is every indication that the money was stolen from the now-defunct cryptocurrency exchange FTX, which had just filed for bankruptcy on that same day.
Read moreOkta: Breach Affected All Customer Support Users
Credit to Author: BrianKrebs| Date: Wed, 29 Nov 2023 19:41:14 +0000
When KrebsOnSecurity broke the news on Oct. 20, 2023 that identity and authentication giant Okta had suffered a breach in its customer support department, Okta said the intrusion allowed hackers to steal sensitive data from fewer than one percent of its 18,000+ customers. But today, Okta revised that impact statement, saying the attackers also stole the name and email address for nearly all of its customer support users.
Read moreID Theft Service Resold Access to USInfoSearch Data
Credit to Author: BrianKrebs| Date: Tue, 28 Nov 2023 15:57:38 +0000
One of the cybercrime underground’s more active sellers of Social Security numbers, background and credit reports has been pulling data from hacked accounts at the U.S. consumer data broker USinfoSearch, KrebsOnSecurity has learned.
Read moreHackers Stole Access Tokens from Okta’s Support Unit
Credit to Author: BrianKrebs| Date: Fri, 20 Oct 2023 18:39:23 +0000
Okta, a company that provides identity tools like multi-factor authentication and single sign-on to thousands of businesses, has suffered a security breach involving a compromise of its customer support unit, KrebsOnSecurity has learned. Okta says the incident affected a “very small number” of customers, however it appears the hackers responsible had access to Okta’s support platform for at least two weeks before the company fully contained the intrusion.
Read more‘Snatch’ Ransom Group Exposes Visitor IP Addresses
Credit to Author: BrianKrebs| Date: Wed, 27 Sep 2023 11:48:37 +0000
The victim shaming site operated by the Snatch ransomware group is leaking data about its true online location and internal operations, as well as the Internet addresses of its visitors, KrebsOnSecurity has found. The leaked data suggest that Snatch is one of several ransomware groups using paid ads on Google.com to trick people into installing malware disguised as popular free software, such as Microsoft Teams, Adobe Reader, Mozilla Thunderbird, and Discord.
Read more