A Year Later, Cybercrime Groups Still Rampant on Facebook

Credit to Author: BrianKrebs| Date: Mon, 08 Apr 2019 19:39:41 +0000

Almost exactly one year ago, KrebsOnSecurity reported that a mere two hours of searching turned up more than 100 Facebook groups with some 300,000 members openly advertising services to support all types of cybercrime, including spam, credit card fraud and identity theft. Facebook responded by deleting those groups. Last week, a similar analysis found some 74 cybercrime groups operating openly on Facebook with more than 385,000 members.

Read more

Massive bank app security holes: You might want to go back to that money under the mattress tactic

Credit to Author: Evan Schuman| Date: Fri, 05 Apr 2019 10:24:00 -0700

A new report from a well-regarded payments consulting firm has found a lengthy list of security insanity while examining several major fintech company mobile apps. Although the very nature of apps that manage and move money would suggest presumably strong security, banks and their cohorts tend to adopt new technology slower than almost any other vertical, which puts them in a bad place when it comes to security.

My favorite finding from the Aite Group report: “Several mobile banking apps hard-coded private certificates and API keys into their apps. [Thieves] could exploit this by copying the private certificates to their computers and running any number of free password-cracking programs against them,” the report noted. “Should the [attackers] successfully crack the private key, they would be able to decrypt all communication between the back-end servers and mobile devices, among other things. The API keys allow an adversary to then begin targeting the [financial institution’s] API servers, gaining them access to data in the back-end databases. This allows [attackers] to authenticate the device with the back-end servers of that app, since this is what APIs use for authentication and authorization.”

To read this article in full, please click here

Read more

Alleged Chief of Romanian ATM Skimming Gang Arrested in Mexico

Credit to Author: BrianKrebs| Date: Thu, 04 Apr 2019 22:44:42 +0000

An alleged top boss of a Romanian crime syndicate that U.S. authorities say is responsible for deploying card-skimming devices at Automated Teller Machines (ATMs) throughout North America was arrested in Mexico last week on firearms charges. The arrest comes months after the accused allegedly ordered the execution of a former bodyguard who was trying to help U.S. authorities bring down the group’s lucrative skimming operations.

Read more

Canadian Police Raid ‘Orcus RAT’ Author

Credit to Author: BrianKrebs| Date: Tue, 02 Apr 2019 14:50:11 +0000

Canadian police last week raided the residence of a Toronto software developer responsible for authoring and selling “Orcus RAT,” a software product that’s been marketed on underground forums and used in countless malware attacks since its creation in 2015. Its author maintains Orcus is a legitimate Remote Administration Tool that is merely being abused, but security experts say it includes multiple features more typically seen in malware known as a Remote Access Trojan.

Read more

Microsoft Patch Alert: Most March patches look good

Credit to Author: Woody Leonhard| Date: Mon, 01 Apr 2019 16:04:00 -0700

March was an unusually light patching month – all of Office only had one security patch – and there don’t appear to be any immediate patching worries. Just as in the past few months, Microsoft’s holding off on its second cumulative update for Windows 10 1809, raising hopes that it’s taking Win10 quality more seriously.

Win10 1809 deployment proceeded at a positively lethargic rate, even though Microsoft declared the OS fit for business consumption last week, leading to all sorts of speculation about the next-next update, Win10 version 1903, ultimately overtaking its younger sibling.

To read this article in full, please click here

Read more

Annual Protest Raises $250K to Cure Krebs

Credit to Author: BrianKrebs| Date: Sun, 31 Mar 2019 08:51:02 +0000

For the second year in a row, denizens of a large German-language online forum have donated more than USD $250,000 to cancer research organizations in protest of a story KrebsOnSecurity published in 2018 that unmasked the creators of Coinhive, a now-defunct cryptocurrency mining service that was massively abused by cybercriminals. Krebs is translated as “cancer” in German.

Read more

Man Behind Fatal ‘Swatting’ Gets 20 Years

Credit to Author: BrianKrebs| Date: Fri, 29 Mar 2019 22:19:15 +0000

Tyler Barriss, a 26-year-old California man who admitted making a phony emergency call to police in late 2017 that led to the shooting death of an innocent Kansas resident, has been sentenced to 20 years in federal prison.

Read more

A Month After 2 Million Customer Cards Sold Online, Buca di Beppo Parent Admits Breach

Credit to Author: BrianKrebs| Date: Fri, 29 Mar 2019 19:22:40 +0000

On Feb. 21, 2019, KrebsOnSecurity contacted Italian restaurant chain Buca di Beppo after discovering strong evidence that two million credit and debit card numbers belonging to the company’s customers were being sold in the cybercrime underground. Today, Buca’s parent firm announced it had remediated a 10-month breach of its payment systems at dozens of restaurants, including some locations of its other brands such as Earl of Sandwich and Planet Hollywood.

Read more

With its Apple Card, Apple edges further into financial services

Credit to Author: Lucas Mearian| Date: Fri, 29 Mar 2019 03:00:00 -0700

Apple’s Monday announcement of a credit card – the Apple Card – represented a natural progression of the company’s journey into financial services that began with the Apple Wallet app and its contactless digital payment service, Apple Pay.

apple card iphonexs entertainment 032519 carousel.jpg.medium 2x Apple

The Apple Card, as described by the company this week, will offer users some attractive features: up to 3% cash back on daily purchases, no late or international transaction fees, and a physical chipped card make of titanium (sans any credit card numbers – just your name and an Apple symbol).

To read this article in full, please click here

Read more

Microsoft connects rival browsers to Windows 10's Application Guard

Credit to Author: Gregg Keizer| Date: Tue, 26 Mar 2019 03:00:00 -0700

Microsoft earlier this month released a pair of add-ons for Google’s Chrome and Mozilla’s Firefox to cobble together an unwieldy connection between those browsers, Edge and Windows 10’s advanced security technology, Windows Defender Application Guard (WDAG).

The debut of the browser extensions – separate add-ons for Chrome and Firefox – was quietly plugged at the end of a March 15 blog post relating a recent Windows Insider build. That build, 18358, will lead, presumably next month, to Windows 10’s next feature upgrade, labeled 1903 and also Windows 10 April 2019 Update.

To read this article in full, please click here

Read more

ASUS Live Update Utility cracked, installs ShadowHammer backdoor on 1M PCs, but only 600 targeted

Credit to Author: Woody Leonhard| Date: Mon, 25 Mar 2019 09:28:00 -0700

Great way to wake up on Monday morning, especially if you own an ASUS machine.

Kaspersky just published a teaser for a more thorough explanation to come in two weeks at the Kaspersky Security Analysts Summit in Singapore. It’s quite an eye-opener.

Apparently somebody broke into the ASUS update servers, and swapped out a valid software/firmware update with one of their own. The bogus update looked like the genuine thing, with a valid certificate, and its size matched the original’s size. As a result, the bad update stayed on ASUS’s servers “for a long time.”

To read this article in full, please click here

Read more