reports – Computer Security Articles

Cybercriminals’ friend VPNLab.net shut down by law enforcement

January 19, 2022 admin 0 Comments double vpn, doublevpn, empact, openvpn, reports, vpnlab.net

Credit to Author: Pieter Arntz| Date: Wed, 19 Jan 2022 10:57:52 +0000

VPN provider VPNLab.net’s infrastructure has been taken down by international law enforcement authorities after it was found to be servicing cybercriminals.

Categories: Reports

Tags: double VPN doublevpn empact openvpn vpnlab.net

MalwareBytes Security

Hackers take over 1.1 million accounts by trying reused passwords

January 6, 2022 admin brute force, compromised accounts, credential stuffing, dictionary attack, haveibeenpwnd, Identity Theft, mfa, password manager, password-less, reports, WAF

Credit to Author: Pieter Arntz| Date: Thu, 06 Jan 2022 14:54:19 +0000

Credential stuffing has once again proven to be an effective method to gain access to accounts. What can users and organizations do?

Categories: Reports

Tags: brute force compromised accounts credential stuffing dictionary attack haveibeenpwnd identity theft mfa password manager password-less waf

MalwareBytes Security

Intercepting 2FA: Over 1200 man-in-the-middle phishing toolkits detected

January 6, 2022 admin 2fa, catching transparent phish, evilginx, Man In The Middle, man-in-the-middle attack, MITM, modlishka, muraena, Palo Alto Networks, pan, phoca, reports, reverse proxy phishing, stony brook university, two-factor authentication

Credit to Author: Jovi Umawing| Date: Thu, 06 Jan 2022 13:27:09 +0000

Evolved phishing toolkits that can intercept 2FA codes are called man-in-the-middle (MiTM) phishing kits. And they’re growing in popularity.

Categories: Reports

Tags: 2fa Catching Transparent Phish evilginx Man in the Middle Man in the MIddle attack mitm modlishka Muraena Palo Alto Networks PAN PHOCA reverse proxy phishing Stony Brook University two-factor authentication

MalwareBytes Security

Logistics giant warns of scams following ransomware attack

December 23, 2021 admin bec, hellmann, ransomexx, reports, stolen data, worldwide logistics

Credit to Author: Pieter Arntz| Date: Thu, 23 Dec 2021 10:12:45 +0000

Sadly, the dangers from ransomware don’t end when the attack is stopped or the victim has recovered.

Categories: Reports

Tags: bec hellmann ransomexx stolen data worldwide logistics

MalwareBytes Security

Police forces pipe 225 million pwned passwords into ‘Have I Been Pwned?’

December 21, 2021 admin 2fa, database, FBI, Have I been pwned, NCA, password manager, passwords, Pipeline, reports, Troy Hunt

Credit to Author: Pieter Arntz| Date: Tue, 21 Dec 2021 15:16:52 +0000

Law enforcement agencies like the FBI and NCA have injected hundreds of millions of unique passwords into Have I Been Pwned.

Categories: Reports

Tags: 2fa database fbi have i been pwned NCA password manager passwords pipeline Troy Hunt

MalwareBytes Security

Click “OK” to defeat MFA

December 10, 2021 admin 2fa, cryptbot, foggyweb, goldmax, mfa, nobelium, push notifications, reports, solarwinds, spear phishing, sunburst, teradrop

Credit to Author: Pieter Arntz| Date: Fri, 10 Dec 2021 16:08:50 +0000

A sophisticated threat actor has been using a very unsophisticated method to defeat multi-factor authentication.

Categories: Reports

Tags: 2fa cryptbot FoggyWeb GoldMax mfa nobelium push notifications solarwinds spear phishing sunburst teradrop

(Read more…)

The post Click “OK” to defeat MFA appeared first on Malwarebytes Labs.

MalwareBytes Security

Was threat actor KAX17 de-anonymizing the Tor network?

December 8, 2021 admin deanonymize, exit node, kax17, nodes, nusenu, Relay, reports, sybil attack, Tor

Credit to Author: Pieter Arntz| Date: Wed, 08 Dec 2021 13:34:25 +0000

A threat actor was found to be running a high percentage of the Tor Network’s servers. What were they up to? De-anonymizing users?

Categories: Reports

Tags: deanonymize exit node KAX17 nodes Nusenu relay Sybil attack tor

← Previous