Due Diligence That Money Can’t Buy

Credit to Author: BrianKrebs| Date: Mon, 14 Sep 2020 19:47:01 +0000

Most of us automatically put our guard up when someone we don’t know promises something too good to be true. But when the too-good-to-be-true thing starts as our idea, sometimes that instinct fails to kick in. Here’s the story of how companies searching for investors to believe in their ideas can run into trouble.

Read more

Sendgrid Under Siege from Hacked Accounts

Credit to Author: BrianKrebs| Date: Fri, 28 Aug 2020 13:59:23 +0000

Email service provider Sendgrid is grappling with an unusually large number of customer accounts whose passwords have been cracked, sold to spammers, and abused for sending phishing and email malware attacks. Sendgrid’s parent company Twilio says it is working on a plan to require multi-factor authentication for all of its customers, but that solution may not come fast enough for organizations having trouble dealing with the fallout in the meantime.

Read more

Confessions of an ID Theft Kingpin, Part II

Credit to Author: BrianKrebs| Date: Thu, 27 Aug 2020 16:37:13 +0000

Yesterday’s piece told the tale of Hieu Minh Ngo, a hacker the U.S. Secret Service described as someone who caused more material financial harm to more Americans than any other convicted cybercriminal. Ngo was recently deported back to his home country after serving more than seven years in prison for running multiple identity theft services. He now says he wants to use his experience to convince other cybercriminals to use their skills for good. Here’s a look at what happened after he got busted.

Read more

Confessions of an ID Theft Kingpin, Part I

Credit to Author: BrianKrebs| Date: Wed, 26 Aug 2020 18:39:53 +0000

At the height of his cybercriminal career, the hacker known as “Hieupc” was earning $125,000 a month running a bustling identity theft service that siphoned consumer dossiers from some of the world’s top data brokers. That is, until his greed and ambition played straight into an elaborate snare set by the U.S. Secret Service. Now, after more than seven years in prison Hieupc is back in his home country and hoping to convince other would-be cybercrooks to use their computer skills for good.

Read more

Microsoft Put Off Fixing Zero Day for 2 Years

Credit to Author: BrianKrebs| Date: Mon, 17 Aug 2020 04:05:20 +0000

A security flaw in the way Microsoft Windows guards users against malicious files was actively exploited in malware attacks for two years before last week, when Microsoft finally issued a software update to correct the problem.

Read more

Porn Clip Disrupts Virtual Court Hearing for Alleged Twitter Hacker

Credit to Author: BrianKrebs| Date: Wed, 05 Aug 2020 20:18:39 +0000

Perhaps fittingly, a Web-streamed court hearing for the 17-year-old alleged mastermind of the July 15 mass hack against Twitter was cut short this morning after mischief makers injected a pornographic video clip into the proceeding.

Read more

Robocall Legal Advocate Leaks Customer Data

Credit to Author: BrianKrebs| Date: Mon, 03 Aug 2020 22:18:02 +0000

A California company that helps telemarketing firms avoid getting sued for violating a federal law that seeks to curb robocalls has leaked the phone numbers, email addresses and passwords of all its customers, as well as the mobile phone numbers and other data on people who have hired lawyers to go after telemarketers.

Read more

Here’s Why Credit Card Fraud is Still a Thing

Credit to Author: BrianKrebs| Date: Wed, 29 Jul 2020 19:46:03 +0000

Most of the civilized world years ago shifted to requiring computer chips in payment cards that make it far more expensive and difficult for thieves to clone and use them for fraud. One notable exception is the United States, which is still lurching toward this goal. Here’s a look at the havoc that lag has wrought, as seen through the purchasing patterns at one of the underground’s biggest stolen card shops that was hacked last year.

Read more