Krebs – Page 4 – Computer Security Articles

Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll Affiliates

February 28, 2024 admin artur sungatov, bassterlord, Europol, FBI, ivan gennadievich kondratyev, lockbit, lockbitsupp, mark stockley, mikhail matveev, mikhail vasiliev, NCA, Ne'er-Do-Well News, operation cronos, prodaft, ransomware, ruslan magomedovich astamirov, u.k. national crime agency

Credit to Author: BrianKrebs| Date: Tue, 20 Feb 2024 17:09:00 +0000

U.S. and U.K. authorities have seized the darknet websites run by LockBit, a prolific and destructive ransomware group that has claimed more than 2,000 victims worldwide and extorted over $120 million in payments. Instead of listing data stolen from ransomware victims who didn’t pay, LockBit’s victim shaming website now offers free recovery tools, as well as news about arrests and criminal charges involving LockBit affiliates.

Independent Krebs

U.S. Internet Leaked Years of Internal, Customer Emails

February 14, 2024 admin A Little Sunshine, alex holden, data breaches, Hold Security, Latest Warnings, securence, travis carter, u.s. internet corp.

Credit to Author: BrianKrebs| Date: Wed, 14 Feb 2024 16:45:46 +0000

The Minnesota-based Internet provider U.S. Internet Corp. has a business unit called Securence, which specializes in providing filtered, secure email services to businesses, educational institutions and government agencies worldwide. But until it was notified last week, U.S. Internet was publishing more than a decade’s worth of its internal email — and that of thousands of Securence clients — in plain text out on the Internet and just a click away for anyone with a Web browser.

Independent Krebs

Fat Patch Tuesday, February 2024 Edition

February 13, 2024 admin adam barnett, cve-2024-21351, cve-2024-21410, cve-2024-21412, cve-2024-21413, immersive labs, kevin breen, Latest Warnings, Microsoft Office, patch tuesday february 2024, Rapid7, Satnam Narang, Security Tools, Tenable, Time to Patch, Trend Micro, Windows SmartScreen

Credit to Author: BrianKrebs| Date: Tue, 13 Feb 2024 22:28:48 +0000

Microsoft Corp. today pushed software updates to plug more than 70 security holes in its Windows operating systems and related products, including two zero-day vulnerabilities that are already being exploited in active attacks.

Independent Krebs

Juniper Support Portal Exposed Customer Device Info

February 9, 2024 admin A Little Sunshine, juniper networks, Latest Warnings, logan george, Nicholas Weaver

Credit to Author: BrianKrebs| Date: Fri, 09 Feb 2024 15:34:21 +0000

Until earlier this week, the support website for networking equipment vendor Juniper Networks was exposing potentially sensitive information tied to customer products, including the exact devices each customer bought, as well as each device’s warranty status, service contracts and serial numbers. Juniper said it has since fixed the problem, and that the inadvertent data exposure stemmed from a recent upgrade to its support portal.

Independent Krebs

From Cybercrime Saul Goodman to the Russian GRU

February 7, 2024 admin A Little Sunshine, aleksei valerievich safronov, congressional research service, constella intelligence, djamix, DomainTools.com, gru, guardia civil, mark rasch, mazafaka, meduza, Ne'er-Do-Well News, russia's war on ukraine, stalker

Credit to Author: BrianKrebs| Date: Wed, 07 Feb 2024 17:10:18 +0000

In 2021, the exclusive Russian cybercrime forum Mazafaka was hacked. The leaked user database shows one of the forum’s founders was an attorney who advised Russia’s top hackers on the legal risks of their work, and what to do if they got caught. A review of this user’s hacker identities shows that during his time on the forums he served as an officer in the special forces of the GRU, the foreign military intelligence agency of the Russian Federation.

Independent Krebs

Arrests in $400M SIM-Swap Tied to Heist at FTX?

February 1, 2024 admin 0ktapus, A Little Sunshine, alphv ransomware, Ars Technica, blackcat ransomware, carter rohn, cisa, data breaches, elliptic, emily hernandez, FBI, ftx, kroll, Ne'er-Do-Well News, nick bax, powell sim swapping crew, r$, robert powell, scattered spider, SIM swapping, tom robinson, unciphered

Credit to Author: BrianKrebs| Date: Thu, 01 Feb 2024 18:41:37 +0000

Three Americans were charged this week with stealing more than $400 million in a November 2022 SIM-swapping attack. The U.S. government did not name the victim organization, but there is every indication that the money was stolen from the now-defunct cryptocurrency exchange FTX, which had just filed for bankruptcy on that same day.

Independent Krebs

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

January 30, 2024 admin 0ktapus, A Little Sunshine, Breadcrumbs, elijah, grails, Group-IB, king bob, lastpass, lastpass breach, mailchimp, Ne'er-Do-Well News, noah michael urban, Okta, plex, scattered spider, signal, SIM swapping, sosa, twilio, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 30 Jan 2024 19:07:18 +0000

On Jan. 9, 2024, U.S. authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. technology companies during the summer of 2022.

Independent Krebs

Who is Alleged Medibank Hacker Aleksandr Ermakov?

January 26, 2024 admin ae.ermak@yandex.ru, aleksandr ermakov, Breadcrumbs, gustavedore, jimjones, medibank breach, mikhail borisovich shefel, Ne'er-Do-Well News, Patrick Gray, rEvil, Risky Business podcast, shtazi

Credit to Author: BrianKrebs| Date: Fri, 26 Jan 2024 18:12:09 +0000

Authorities in Australia, the United Kingdom and the United States this week levied financial sanctions against a Russian man accused of stealing data on nearly 10 million customers of the Australian health insurance giant Medibank. 33-year-old Aleksandr Ermakov allegedly stole and leaked the Medibank data while working with one of Russia’s most destructive ransomware groups, but little more is shared about the accused. Here’s a closer look at the activities of Mr. Ermakov’s alleged hacker handles.