Krebs – Computer Security Articles

Russian FSB Counterintelligence Chief Gets 9 Years in Cybercrime Bribery Scheme

April 22, 2024 admin 0 Comments A Little Sunshine, alexander kovalev, artem zaitsev, federal security service (fsb), ferum shop, get-net llc, grigory tsaregorodtsev, Ne'er-Do-Well News, sky-fraud, Trump's-Dumps, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Mon, 22 Apr 2024 20:07:56 +0000

The head of counterintelligence for a division of the Russian Federal Security Service (FSB) was sentenced last week to nine years in a penal colony for accepting a USD $1.7 million bribe to ignore the activities of a prolific Russian cybercrime group that hacked thousands of e-commerce websites. The protection scheme was exposed in 2022 when Russian authorities arrested six members of the group, which sold millions of stolen payment cards at flashy online shops like Trump’s Dumps.

Independent Krebs

Who Stole 3.6M Tax Records from South Carolina?

April 16, 2024 admin aleksandr ermakov, Associated Press, Breadcrumbs, data breaches, embargo, Home Depot breach, jeffrey collins, mark keel, mazafaka, mikhail shefel, Ne'er-Do-Well News, nikki haley, rescator, shtazi, target breach, tax refund fraud, tax return fraud, the post and courier, u.s. internal revenue service, verified

Credit to Author: BrianKrebs| Date: Tue, 16 Apr 2024 11:26:55 +0000

For nearly a dozen years, residents of South Carolina have been kept in the dark by state and federal investigators over who was responsible for hacking into the state’s revenue department in 2012 and stealing tax and bank account information for 3.6 million people. The answer may no longer be a mystery: KrebsOnSecurity found compelling clues suggesting the intrusion was carried out by the same Russian hacking crew that stole of millions of payment card records from big box retailers like Home Depot and Target in the years that followed.

Independent Krebs

Crickets from Chirp Systems in Smart Lock Key Leak

April 15, 2024 admin A Little Sunshine, august.com, chirp systems, Latest Warnings, matt brown, ProPublica, realpage inc., Security Tools, u.s. cybersecurity & infrastructure security agency

Credit to Author: BrianKrebs| Date: Mon, 15 Apr 2024 14:51:17 +0000

The U.S. government is warning that smart locks securing entry to an estimated 50,000 dwellings nationwide contain hard-coded credentials that can be used to remotely open any of the locks. The lock’s maker Chirp Systems remains unresponsive, even though it was first notified about the critical weakness in March 2021. Meanwhile, Chirp’s parent company, RealPage, Inc., is being sued by multiple U.S. states for allegedly colluding with landlords to illegally raise rents.

Independent Krebs

Why CISA is Warning CISOs About a Breach at Sisense

April 15, 2024 admin A Little Sunshine, data breaches, Nicholas Weaver, sangram dash, sisense breach, The Coming Storm, u.s. cybersecurity and infrastructure security agency

Credit to Author: BrianKrebs| Date: Thu, 11 Apr 2024 20:48:06 +0000

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said today it is investigating a breach at business intelligence company Sisense, whose products are designed to allow companies to view the status of multiple third-party online services in a single dashboard. CISA urged all Sisense customers to reset any credentials and secrets that may have been shared with the company, which is the same advice Sisense gave to its customers Wednesday evening.

Independent Krebs

Twitter’s Clumsy Pivot to X.com Is a Gift to Phishers

April 15, 2024 admin DomainTools.com, Mastodon, matthew garrett, Other, phishing, sean mcnee, twitter.com, x.com

Credit to Author: BrianKrebs| Date: Wed, 10 Apr 2024 14:28:17 +0000

On April 9, Twitter/X began automatically modifying links that mention “twitter.com” to redirect to “x.com” instead. But over the past 48 hours, dozens of new domain names have been registered that demonstrate how this change could be used to craft convincing phishing links — such as fedetwitter[.]com, which is currently rendered as fedex.com in tweets.

Independent Krebs

April’s Patch Tuesday Brings Record Number of Fixes

April 15, 2024 admin .net framework, adobe after effects, Azure, azure ai, ben mccarthy, bitlocker, bridge, commerce, cve-2023-24932, cve-2024-20670, cve-2024-21412, cve-2024-26234, cve-2024-29063, cve-2024-29988, dns server, experience manager, illustrator, immersive labs, indesign, media encoder, office, Photoshop, Satnam Narang, SQL Server, Time to Patch, trend micro's zero day initiative, visual studio, Windows Defender, windows secure boot

Credit to Author: BrianKrebs| Date: Tue, 09 Apr 2024 20:28:17 +0000

If only Patch Tuesdays came around infrequently — like total solar eclipse rare — instead of just creeping up on us each month like The Man in the Moon. Although to be fair, it would be tough for Microsoft to eclipse the number of vulnerabilities fixed in this month’s patch batch — a record 147 flaws in Windows and related software.

Independent Krebs

Fake Lawsuit Threat Exposes Privnote Phishing Sites

April 15, 2024 admin A Little Sunshine, alexandr ermakov, andrey sokol, Breadcrumbs, fory66399, hkleaks, Latest Warnings, metamask, privnote, privnote.com, russia's war on ukraine, taylor monahan, tornote.io, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 04 Apr 2024 14:12:16 +0000

A cybercrook who has been setting up websites that mimic the self-destructing message service Privnote.com accidentally exposed the breadth of their operations recently when they threatened to sue a software company. The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers.

Independent Krebs

‘The Manipulaters’ Improve Phishing, Still Fail at Opsec

April 15, 2024 admin A Little Sunshine, bluebtcus@gmail.com, Breadcrumbs, DomainTools.com, fudco, fudpage, fudsender, fudtools, heartsender, Ne'er-Do-Well News, saim raza, the manipulaters, we code solutions, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Wed, 03 Apr 2024 13:16:25 +0000

Roughly nine years ago, KrebsOnSecurity profiled a Pakistan-based cybercrime group called “The Manipulaters,” a sprawling web hosting network of phishing and spam delivery platforms. In January 2024, The Manipulaters pleaded with this author to unpublish previous stories about their work, claiming the group had turned over a new leaf and gone legitimate. But new research suggests that while they have improved the quality of their products and services, these nitwits still fail spectacularly at hiding their illegal activities.

← Previous