Ne’er-Do-Well News – Page 8 – Computer Security Articles

3CX Breach Was a Double Supply Chain Compromise

April 24, 2023 admin 3cx, A Little Sunshine, clearsky security, diamond sleet, double supply chain breach, elastic security, ESET, iconicstealer, kaspersky lab, kim zetter, Latest Warnings, MacOS, Mandiant, marc-etienne m.leveille, microsoft, Ne'er-Do-Well News, peter kalnai, Supply chain, The Coming Storm, trading technologies, x_trader, Zero-Day, zinc

Credit to Author: BrianKrebs| Date: Fri, 21 Apr 2023 01:05:44 +0000

We learned some remarkable new details this week about the recent supply-chain attack on VoIP software provider 3CX, a complex, lengthy intrusion that has the makings of a cyberpunk spy novel: North Korean hackers using legions of fake executive accounts on LinkedIn to lure people into opening malware disguised as a job offer; malware targeting Mac and Linux users working at defense and cryptocurrency firms; and software supply-chain attacks nested within earlier supply chain attacks.

Independent Krebs

Giving a Face to the Malware Proxy Service ‘Faceless’

April 18, 2023 admin accessapproved, asus666, constella intelligence, denis viktorovich pankov, faceless, Flashpoint, gaihnik, lesstroy@mgn.ru, liberty reserve, mrmurza, Ne'er-Do-Well News, omega^gg4u, riley kilmer, Shodan, spur.us, u1018928, vadim panov, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 18 Apr 2023 20:59:39 +0000

For the past seven years, a malware-based proxy service known as “Faceless” has sold anonymity to countless cybercriminals. For less than a dollar per day, Faceless customers can route their malicious traffic through tens of thousands of compromised systems advertised on the service. In this post we’ll examine clues left behind over the past decade by the proprietor of Faceless, including some that may help put a face to the name.

Independent Krebs

A Serial Tech Investment Scammer Takes Up Coding?

April 3, 2023 admin A Little Sunshine, alan john mykhailov, blackstone corporate alliance ltd, Breadcrumbs, codestoyou, colette davies, david bruno, DomainTools.com, drydennow.com, igor gubskyi, igor hubskyi, iryna davies, john bernard, john clifton davies, maria yakovleva, mariya kulikova, mysolve, Ne'er-Do-Well News, safeswiss secure communication ag, secure swiss data, the inside knowledge gmbh

Credit to Author: BrianKrebs| Date: Mon, 03 Apr 2023 16:13:42 +0000

John Clifton Davies, a 60-year-old con man from the United Kingdom who fled the country in 2015 before being sentenced to 12 years in prison for fraud, has enjoyed a successful life abroad swindling technology startups by pretending to be a billionaire investor. Davies’ newest invention appears to be “CodesToYou,” which purports to be a “full cycle software development company” based in the U.K.

Independent Krebs

German Police Raid DDoS-Friendly Host ‘FlyHosting’

March 31, 2023 admin ddos-for-hire, flyhosting, german federal criminal police office, Ne'er-Do-Well News

Credit to Author: BrianKrebs| Date: Fri, 31 Mar 2023 18:35:15 +0000

Authorities in Germany this week seized Internet servers that powered FlyHosting, a dark web service that catered to cybercriminals operating DDoS-for-hire services. Fly Hosting first advertised on cybercrime forums in November 2022, saying it was a Germany-based hosting firm that was open for business to anyone looking for a reliable place to host malware, botnet controllers, or DDoS-for-hire infrastructure.

Independent Krebs

Feds Charge NY Man as BreachForums Boss “Pompompurin”

March 17, 2023 admin A Little Sunshine, breachforums, conor brian fitzpatrick, dc health link, FBI, john langmire, Ne'er-Do-Well News, pompompurin

Credit to Author: BrianKrebs| Date: Fri, 17 Mar 2023 23:39:22 +0000

The U.S. Federal Bureau of Investigation (FBI) this week arrested a New York man on suspicion of running BreachForums, a popular English-language cybercrime forum where some of the world biggest hacked databases routinely first show up for sale. The forum’s administrator “Pompompurin” has been a thorn in the side of the FBI for years, and BreachForums is widely considered a reincarnation of RaidForums, a remarkably similar crime forum that the FBI infiltrated and dismantled in 2022.

Independent Krebs

Two U.S. Men Charged in 2022 Hacking of DEA Portal

March 14, 2023 admin A Little Sunshine, convict, data breaches, Doxbin, emergency data request, kt, Ne'er-Do-Well News, nicholas ceraolo, ominus, Phobia, Ryan Stevenson, sagar steven singh, u.s. drug enforcement agency, vile, Web Fraud 2.0, weep

Credit to Author: BrianKrebs| Date: Wed, 15 Mar 2023 01:25:20 +0000

Two U.S. men have been charged with hacking into a U.S. Drug Enforcement Agency (DEA) online portal that taps into 16 different federal law enforcement databases. Both are alleged to be part of a larger criminal organization that specializes in using fake emergency data requests from compromised police and government email accounts to publicly threaten and extort their victims.

Independent Krebs

Who’s Behind the NetWire Remote Access Trojan?

March 9, 2023 admin A Little Sunshine, Breadcrumbs, constella intelligence, domaintools, dugidox, FBI, mario zanko, Ne'er-Do-Well News, netwire rat

Credit to Author: BrianKrebs| Date: Thu, 09 Mar 2023 18:52:25 +0000

A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S. Federal Bureau of Investigation (FBI). While the defendant in this case hasn’t yet been named publicly, the NetWire website has been leaking information about the likely true identity and location of its owner for the past 11 years.

Independent Krebs

Sued by Meta, Freenom Halts Domain Registrations

March 7, 2023 admin A Little Sunshine, Facebook, freenom, ICANN, instagram, meta, Ne'er-Do-Well News, Web Fraud 2.0, WhatsApp

Credit to Author: BrianKrebs| Date: Tue, 07 Mar 2023 23:19:26 +0000

The domain name registrar Freenom, whose free domain names have long been a draw for spammers and phishers, has stopped allowing new domain name registrations. The move comes just days after the Dutch registrar was sued by Meta, which alleges the company ignores abuse complaints about phishing websites while monetizing traffic to those abusive domains.