Accountability, Cybercrime, Data breaches and Web Fraud

When Efforts to Contain a Data Breach Backfire

Krebs on Security

AUGUST 16, 2022

Earlier this month, the administrator of the cybercrime forum Breached received a cease-and-desist letter from a cybersecurity firm. The missive alleged that an auction on the site for data stolen from 10 million customers of Mexico’s second-largest bank was fake news and harming the bank’s reputation.

Data breaches

Data breaches Banking Cybercrime Marketing

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum. USDoD’s InfraGard sales thread on Breached. Department of Defense.

Hacking

Hacking Energy and Utilities Cybercrime Accountability

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

In each attack, the victims saw their email and financial accounts compromised after suffering an unauthorized SIM-swap, wherein attackers transferred each victim’s mobile phone number to a new device that they controlled. As it happens, Plex announced its own data breach one day before LastPass disclosed its initial August intrusion.

Social Engineering

Social Engineering Mobile Cybercrime Passwords

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

911 Proxy Service Implodes After Disclosing Breach

Krebs on Security

JULY 29, 2022

re, a proxy service that since 2015 has sold access to hundreds of thousands of Microsoft Windows computers daily, announced this week that it is shutting down in the wake of a data breach that destroyed key components of its business operations. The 911 service as it existed until July 28, 2022.

Cybercrime

Cybercrime Software VPN Backups

The Life Cycle of a Breached Database

Krebs on Security

JULY 29, 2021

Every time there is another data breach, we are asked to change our password at the breached entity. Here’s a closer look at what typically transpires in the weeks or months before an organization notifies its users about a breached database. started receiving emails with a “cash back” offer.

Passwords

Passwords Password Management Phishing Scams

Two U.S. Men Charged in 2022 Hacking of DEA Portal

Krebs on Security

MARCH 14, 2023

Both are alleged to be part of a larger criminal organization that specializes in using fake emergency data requests from compromised police and government email accounts to publicly threaten and extort their victims. Drug Enforcement Agency (DEA) online portal that taps into 16 different federal law enforcement databases.

Hacking

Hacking Government Media Accountability

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

Krebs on Security

FEBRUARY 28, 2023

In each case, the goal of the attackers was the same: Phish T-Mobile employees for access to internal company tools, and then convert that access into a cybercrime service that could be hired to divert any T-Mobile user’s text messages and phone calls to another device.

Mobile

Mobile Phishing Authentication Advertising

Google Suspends Chinese E-Commerce App Pinduoduo Over Malware

Krebs on Security

MARCH 22, 2023

” On March 3, 2023, a denizen of the now-defunct cybercrime community BreachForums posted a thread which noted that a unique component of the malicious app code highlighted by DarkNavy also was found in the ecommerce application whose name was apparently redacted from the DarkNavy analysis: Pinduoduo.

Malware

Malware eCommerce Mobile Media

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Security Boulevard

DECEMBER 13, 2022

Federal Bureau of Investigation (FBI) to build cyber and physical threat information sharing partnerships with the private sector, this week saw its database of contact information on more than 80,000 members go up for sale on an English-language cybercrime forum.

Hacking

Hacking Cybercrime Accountability Web Fraud

“BriansClub” Hack Rescues 26M Stolen Cards

Krebs on Security

OCTOBER 15, 2019

.” Multiple people who reviewed the database shared by my source confirmed that the same credit card records also could be found in a more redacted form simply by searching the BriansClub Web site with a valid, properly-funded account. The leaked data shows that in 2015, BriansClub added just 1.7 HACKING BACK?

Hacking

Hacking Cybercrime Marketing Banking

How $100M in Jobless Claims Went to Inmates

Krebs on Security

FEBRUARY 25, 2021

Much of this fraud exploits weak authentication methods used by states that have long sought to verify applicants using static, widely available information such as Social Security numbers and birthdays. Many states also lacked the ability to tell when multiple payments were going to the same bank accounts. protections.

Scams

Scams Insurance DDOS Authentication

Cyber Security Informer

When Efforts to Contain a Data Breach Backfire

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Webinars

Trending Sources

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Webinars

911 Proxy Service Implodes After Disclosing Breach

The Life Cycle of a Breached Database

Two U.S. Men Charged in 2022 Hacking of DEA Portal

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

Google Suspends Chinese E-Commerce App Pinduoduo Over Malware

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

“BriansClub” Hack Rescues 26M Stolen Cards

How $100M in Jobless Claims Went to Inmates

Stay Connected