Latest Warnings – Computer Security Articles

Legal Threats Make Powerful Phishing Lures

May 22, 2019 admin Latest Warnings, Target: Small Businesses, The Coming Storm

Credit to Author: BrianKrebs| Date: Wed, 22 May 2019 19:26:04 +0000

Some of the most convincing email phishing and malware attacks come disguised as nastygrams from a law firm. Such scams typically notify the recipient that he/she is being sued, and instruct them to review the attached file and respond within a few days — or else. Here’s a look at a recent spam campaign that peppered more than 100,000 business email addresses with fake legal threats harboring malware.

Independent Krebs

P2P Weakness Exposes Millions of IoT Devices

April 26, 2019 admin HiChip, iLnkP2P, Latest Warnings, P2P, Paul Marrapese, Shenzhen Yunni Technology, The Coming Storm, UDP hole punching, UPnP

Credit to Author: BrianKrebs| Date: Fri, 26 Apr 2019 13:17:14 +0000

A peer-to-peer (P2P) communications technology built into millions of security cameras and other consumer electronics includes several critical security flaws that expose the devices to eavesdropping, credential theft and remote compromise, new research has found.

Independent Krebs

A Year Later, Cybercrime Groups Still Rampant on Facebook

April 8, 2019 admin A Little Sunshine, Cisco Talos, cybercrime groups, Facebook, Latest Warnings, Ne'er-Do-Well News, privacy, Security, UpGuard

Credit to Author: BrianKrebs| Date: Mon, 08 Apr 2019 19:39:41 +0000

Almost exactly one year ago, KrebsOnSecurity reported that a mere two hours of searching turned up more than 100 Facebook groups with some 300,000 members openly advertising services to support all types of cybercrime, including spam, credit card fraud and identity theft. Facebook responded by deleting those groups. Last week, a similar analysis found some 74 cybercrime groups operating openly on Facebook with more than 385,000 members.

Independent Krebs

MyEquifax.com Bypasses Credit Freeze PIN

March 8, 2019 admin A Little Sunshine, credit freeze PIN, Experian, freeze PIN bypass, KBA, Latest Warnings, myEquifax.com, Nancy Bistritz-Balkan, Security Tools, The Coming Storm, Trans Union

Credit to Author: BrianKrebs| Date: Fri, 08 Mar 2019 16:12:38 +0000

Most people who have frozen their credit files with Equifax have been issued a numeric Personal Identification Number (PIN) which is supposed to be required before a freeze can be lifted or thawed. Unfortunately, if you don’t already have an account at the credit bureau’s new myEquifax portal, it may be simple for identity thieves to lift an existing credit freeze at Equifax and bypass the PIN armed with little more than your, name, Social Security number and birthday.

Independent Krebs

Hackers Sell Access to Bait-and-Switch Empire

March 4, 2019 admin A Little Sunshine, arrestrecords.us.org, autohistorychecks.com, backgroundchecks.us.org, Breadcrumbs, carhistory.us.org, carhistoryindex.com, carinfo2.com, carrecordusa.com, census.us.org, courtrecords.us.org, criminalrecords.us.org, data breaches, deathcertificates.us.org, deathrecord.com, deathrecords.us.org, dmv.us.org, dmvinfocheck.com, dmvrecords.co, DomainTools.com, homevalue.us.org, intel471.com, jailinmates.us.org, Jason Oster, Jesse Willms, Latest Warnings, memberreportaccess.com, Mike Stef, mugshots.us.org, myfeeplan.com, myinfobill.com, Ne'er-Do-Well News, Penguin Marketing, Peter Graver, phonelookup.us.org, police.us.org, prison.us.org, propertyrecord.com, propertysearch.us.org, publicrecords.us.org, reversephonelookup.us.org, Taylor Clark, Terra Marketing Group, The Atlantic, The Coming Storm, The Dark Overlord, trafficticket.us.org, vehiclehistoryreports.us.org, vehiclereportusa.com, vinsearchusa.org, warrantcheck.com

Credit to Author: BrianKrebs| Date: Mon, 04 Mar 2019 22:11:33 +0000

Cybercriminals are auctioning off access to customer information stolen from an online data broker behind a dizzying array of bait-and-switch Web sites that sell access to a vast range of data on U.S. consumers, including DMV and arrest records, genealogy reports, phone number lookups and people searches. In an ironic twist, the marketing empire that owns the hacked online properties appears to be run by a Canadian man who’s been sued for fraud by the U.S. Federal Trade Commission, Microsoft and Oprah Winfrey, to name a few.

Independent Krebs

Phishers Target Anti-Money Laundering Officers at U.S. Credit Unions

February 8, 2019 admin Bank Secrecy Act, BSA, Credit Union National Association, Financial Crimes Enforcement Network, FinCEN, Latest Warnings, National Credit Union Administration, NCUA

Credit to Author: BrianKrebs| Date: Fri, 08 Feb 2019 12:58:45 +0000

A highly targeted, malware-laced phishing campaign landed in the inboxes of multiple credit unions last week. The missives are raising eyebrows because they were sent only to specific anti-money laundering contacts at the credit unions, and many credit union sources say they suspect the non-public data may have been somehow obtained from the National Credit Union Administration (NCUA), an independent federal agency that insures deposits at federally insured credit unions.

Independent Krebs

Crooks Continue to Exploit GoDaddy Hole

February 4, 2019 admin A Little Sunshine, A.S. Mechanical, Charlene Price, Dan Race, DNS, Gand Crab ransomware, GoDaddy, Latest Warnings, Martijn Grooten, MyOnlineSecurity, nomoreransom.org, Ron Guilmette, Spammy Bear, The Coming Storm, Virus Bulletin

Credit to Author: BrianKrebs| Date: Mon, 04 Feb 2019 19:12:25 +0000

Godaddy.com, the world’s largest domain name registrar, recently addressed an authentication weakness that cybercriminals were using to blast out spam through legitimate, dormant domains. But several more recent malware spam campaigns suggest GoDaddy’s fix hasn’t gone far enough, and that scammers likely still have a sizable arsenal of hijacked GoDaddy domains at their disposal.

Independent Krebs

Secret Service: Theft Rings Turn to Fuze Cards

January 10, 2019 admin A Little Sunshine, Fuze Card, Fuze Card fraud, Latest Warnings, U.S. Secret Service

Credit to Author: BrianKrebs| Date: Thu, 10 Jan 2019 16:27:54 +0000

Street thieves who specialize in cashing out stolen credit and debit cards increasingly are hedging their chances of getting caught carrying multiple counterfeit cards by relying on Fuze Cards, a smartcard technology that allows users to store dozens of cards on a single device, the U.S. Secret Service warns.

Independent Krebs

Dirt-Cheap, Legit, Windows Software: Pick Two

January 8, 2019 admin A Little Sunshine, eBay, Latest Warnings, Microsoft Office 2016 Professional Plus, Newhotsale68, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 08 Jan 2019 15:00:33 +0000

Buying heavily discounted, popular software from second-hand sources online has always been something of an iffy security proposition. But purchasing steeply discounted licenses for cloud-based subscription products like recent versions of Microsoft Office can be an extremely risky transaction, mainly because you may not have full control over who has access to your data.

Independent Krebs

Apple Phone Phishing Scams Getting Better

January 3, 2019 admin 866-277-7794, A Little Sunshine, apple phone phishing, Global Cyber Risk LLC, Jody Westby, Latest Warnings, The Coming Storm

Credit to Author: BrianKrebs| Date: Thu, 03 Jan 2019 19:21:40 +0000

A new phone-based phishing scam that spoofs Apple Inc. is likely to fool quite a few people. It starts with an automated call that display’s Apple’s logo, address and real phone number, warning about a data breach at the company. The scary part is that if the recipient is an iPhone user who then requests a call back from Apple’s legitimate customer support Web page, the fake call gets indexed in the iPhone’s “recent calls” list as a previous call from the legitimate Apple Support line.

Independent Krebs

Spammed Bomb Threat Hoax Demands Bitcoin

December 17, 2018 admin A Little Sunshine, email bomb threat scam, I advise you not to call the police, Jason McNew, Latest Warnings, Stronghold Cyber Security

Credit to Author: BrianKrebs| Date: Thu, 13 Dec 2018 20:24:32 +0000

A new email extortion scam is making the rounds, threatening that someone has planted bombs within the recipient’s building that will be detonated unless a hefty bitcoin ransom is paid by the end of the business day.

← Previous