The Coming Storm – Computer Security Articles

Breached Data Indexer ‘Data Viper’ Hacked

July 13, 2020 admin 0 Comments A Little Sunshine, apollo breach, data viper breach, empire market, exabyte, five, Ne'er-Do-Well News, RaidForums, Soundcard, The Coming Storm, verifications.io breach, Vinny Troia

Credit to Author: BrianKrebs| Date: Mon, 13 Jul 2020 23:30:39 +0000

Data Viper, a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. The hackers also claim they are selling on the dark web roughly 2 billion records Data Viper collated from numerous breaches and data leaks, including data from several companies that likely either do not know they have been hacked or have not yet publicly disclosed an intrusion. The apparent breach at St. Louis, Mo. based Data Viper offers a cautionary and twisted tale of what can happen when security researchers seeking to gather intelligence about illegal activity online get too close to their prey or lose sight of their purported mission. The incident also highlights the often murky area between what’s legal and ethical in combating cybercrime.

Independent Krebs

COVID-19 ‘Breach Bubble’ Waiting to Pop?

June 30, 2020 admin andrew barratt, chicken express breach, coalfire, covid-19, data breaches, Gemini Advisory, ricky stuart, Stas Alforov, The Coming Storm

Credit to Author: BrianKrebs| Date: Tue, 30 Jun 2020 15:00:48 +0000

The COVID-19 pandemic has made it harder for banks to trace the source of payment card data stolen from smaller, hacked online merchants. On the plus side, months of quarantine have massively decreased demand for account information that thieves buy and use to create physical counterfeit credit cards. But fraud experts say recent developments suggest both trends are about to change — and likely for the worse.

Independent Krebs

‘BlueLeaks’ Exposes Files from Hundreds of Police Departments

June 21, 2020 admin blueleaks, data breaches, distributed denial of secrets, juneteeth, national fusion center association, netsential, stephen gatrell, steptoe & johnson, stewart baker, The Coming Storm

Credit to Author: BrianKrebs| Date: Mon, 22 Jun 2020 04:33:21 +0000

Hundreds of thousands of potentially sensitive files from police departments across the United States were leaked online last week. The collection, dubbed “BlueLeaks” and made searchable via a new website by the same name, stems from a security breach at a Texas web design and hosting company that maintains a number of state law enforcement data-sharing portals online.

Independent Krebs

U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs

May 15, 2020 admin Latest Warnings, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Sat, 16 May 2020 04:34:45 +0000

A well-organized Nigerian crime ring is exploiting the COVID-19 crisis by committing large-scale fraud against multiple state unemployment insurance programs, with potential losses in the hundreds of millions of dollars, according to a new alert issued by the U.S. Secret Service. A memo seen by KrebsOnSecurity that the Secret Service sent to field offices around the United States this week says the ring has been filing unemployment claims in different states using Social Security numbers and other personally identifiable information (PII) belonging to identity theft victims, and that “a substantial amount of the fraudulent benefits submitted have used PII from first responders, government personnel and school employees.”

Independent Krebs

When in Doubt: Hang Up, Look Up, & Call Back

April 23, 2020 admin A Little Sunshine, Latest Warnings, The Coming Storm

Credit to Author: BrianKrebs| Date: Thu, 23 Apr 2020 17:27:50 +0000

Many security-conscious people probably think they’d never fall for a phone-based phishing scam. But if your response to such a scam involves anything other than hanging up and calling back the entity that claims to be calling, you may be in for a rude awakening. Here’s how one security and tech-savvy reader got taken for more than $10,000 in an elaborate, weeks-long ruse.

Independent Krebs

Sipping from the Coronavirus Domain Firehose

April 16, 2020 admin cauce, centers for disease control, covid-19, Cyber Threat Alliance, cyber threat coalition, domaintools, Hold Security, john conwell, Latest Warnings, michael daniel, neil schwartzman, PhishLabs, rich harang, sen. cory booker, sen. maggie hassan, sen. mazie k. hirono, Sophos, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 16 Apr 2020 16:23:52 +0000

Security experts are poring over thousands of new Coronavirus-themed domain names registered each day, but this often manual effort struggles to keep pace with the flood of domains invoking the virus to promote malware and phishing sites, as well as non-existent healthcare products and charities. As a result, domain name registrars are under increasing pressure to do more to combat scams and misinformation during the COVID-19 pandemic.

Independent Krebs

COVID-19 Has United Cybersecurity Experts, But Will That Unity Survive the Pandemic?

April 15, 2020 admin covid-19 cyber threat coalition, Cyber Threat Alliance, joe menn, mark rogers, michael daniel, nick espinosa, The Coming Storm

Credit to Author: BrianKrebs| Date: Wed, 15 Apr 2020 15:28:36 +0000

The Coronavirus has prompted thousands of information security professionals to volunteer their skills in upstart collaborative efforts aimed at frustrating cybercriminals who are seeking to exploit the crisis for financial gain. Whether it’s helping hospitals avoid becoming the next ransomware victim or kneecapping new COVID-19-themed scam websites, these nascent partnerships may well end up saving lives. But can this unprecedented level of collaboration survive the pandemic?

Independent Krebs

New IRS Site Could Make it Easy for Thieves to Intercept Some Stimulus Payments

April 10, 2020 admin economic impact payment, Internal Revenue Service, intuit, irs, Latest Warnings, tax refund fraud, The Coming Storm

Credit to Author: BrianKrebs| Date: Fri, 10 Apr 2020 21:46:36 +0000

The U.S. federal government is now in the process of sending Economic Impact Payments by direct deposit to millions of Americans. Most who are eligible for payments can expect to have funds direct-deposited into the same bank accounts listed on previous years’ tax filings sometime next week. Today, the Internal Revenue Service (IRS) stood up a site to collect bank account information from the many Americans who don’t usually file a tax return. The question is, will those non-filers have a chance to claim their payments before fraudsters do?

← Previous