2009, Phishing and Scams - Cyber Security Informer

Happy 14th Birthday, KrebsOnSecurity!

Krebs on Security

DECEMBER 29, 2023

As of this birthday, I’ve officially been an independent investigative journalist for longer than I was a reporter for The Washington Post (1995-2009). Being Used to Phish So Many of US? Few Fortune 100 Firms List Security Pros in Their Executive Ranks Who’s Behind the Domain Networks Snail Mail Scam?

Phishing

Phishing Scams Mobile Advertising

Personal info of 90k hikers leaked by French tourism company La Malle Postale

Security Affairs

MAY 13, 2023

Founded in 2009, the company provides luggage and passenger transportation services on many popular hiking routes, including the famous Santiago de Compostela pilgrimage trail. Leaked data might also lead to phishing scams. The services are well-reviewed by their clients, with an overall four-star rating on TripAdvisor.

Passwords

Passwords Identity Theft Scams Social Engineering

Spam Kingpin Peter Levashov Gets Time Served

Krebs on Security

JULY 20, 2021

Junk email campaigns touting employment or “money mule” scams cost $300 per million, and phishing emails could be blasted out through Severa’s botnet for the bargain price of $500 per million. One was Alan Ralsky , an American spammer who was convicted in 2009 of paying Severa and other spammers to promote pump-and-dump stock scams.

Antivirus

Antivirus Cybercrime Identity Theft Scams

Experts found 20 Million tax records for Russian citizens exposed online

Security Affairs

OCTOBER 1, 2019

The experts found an unprotected Elasticsearch cluster that was containing personally identifiable information on Russian citizens spanning from 2009 to 2016. “The first database contained more than 14 million personal and tax records from 2010 to 2016, and the second included over 6 million from 2009 to 2015.”

Identity Theft

Identity Theft Scams Advertising Risk

Financial cyberthreats in 2021

SecureList

FEBRUARY 23, 2022

SpyEye, developed in 2009 and described as a “bank Trojan with a form grabbing capability”, surged from the eighth most common banking malware tool with a 3.4% We look at phishing threats commonly encountered by users and companies as well as the prevalence of various Windows and Android-based financial malware.

Banking

Banking Phishing Cryptocurrency Malware

Lazarus group uses fake cryptocurrency apps to plant AppleJeus malware

Malwarebytes

DECEMBER 5, 2022

It's been active since 2009 and is responsible for many high profile attacks. In January of 2022 the Malwarebytes Intelligence Team uncovered a campaign where Lazarus conducted spear phishing attacks weaponized with malicious documents that used a familiar job opportunities theme. Be careful. bloxholder[.]com. rebelthumb[.]net.

Cryptocurrency

Cryptocurrency Malware Scams Cybercrime

Cyber Security Roundup for May 2021

Security Boulevard

MAY 3, 2021

Millions in the UK Targeted by Malware via a DHL Scam Text Message. Millions of UK citizens received a scam text message (aka smashing) which impersonated DHL in April. NCSC advice FluBot: Guidance for ‘package delivery’ text message scam . The Problem with Website Passwords (from Blog Post from 2009).

Ransomware

Ransomware Passwords Scams Government

Endpoint security for Mac: 3 best practices

Malwarebytes

JULY 14, 2022

Phishing attacks, vulnerability exploits, DDoS attacks, and much more threaten your company’s Macs at any time — and if any of them are successful, it could cost your business millions in lost productivity and information theft. And it’s not just malware you have to worry about with your Mac endpoints. OK, that sounds annoying.

DNS

DNS Adware Malware Antivirus

Cybersecurity Awareness Month Focuses on People

SecureWorld News

SEPTEMBER 29, 2022

Criminals leverage all of it, exposing people to scams," he said. For Charlet, the 2009 Operation Aurora cyberattack on Google was a watershed moment for the company. For example, how do we discern when an email may be phishing; how do you know what to do and what not to do?". Recognizing and reporting phishing.

Cybersecurity

Cybersecurity Education Security Awareness Password Management

Billions of FBS Records Exposed in Online Trading Broker Data Leak

Security Affairs

MARCH 24, 2021

Founded in 2009, FBS is an international online forex broker with more than 400,000 partners and 16 million traders spanning over 190 countries. Scams, Phishing and Malware. Leaked contact information may be used to launch scam, phishing and malware attacks against FBS users. Who is FBS.

Passwords

Passwords Accountability Media Identity Theft

Telehealth: A New Frontier in Medicine—and Security

SecureList

FEBRUARY 1, 2022

Number of data leaks from medical organizations, 2009–2020. Since the start of the pandemic, many companies working in the information security sphere, including Kaspersky, have discussed the fact that medicine has become a more common bait in cybercriminal scams. The HIPAA Journal , which is focused on leaks in the U.S.

Phishing

Phishing Healthcare IoT Authentication

Inside ‘Evil Corp,’ a $100M Cybercrime Menace

Krebs on Security

DECEMBER 16, 2019

From 2009 to the present, Aqua’s primary role in the conspiracy was recruiting and managing a continuous supply of unwitting or complicit accomplices to help Evil Corp. Some tips from Europol on how to spot money mule recruitment scams dressed up as legitimate job offers. indep: Yeah. indep: Greetings. tank: [link].

Cybercrime

Cybercrime Banking Small Business Accountability

Thread Hijacking: Phishes That Prey on Your Curiosity

Krebs on Security

MARCH 28, 2024

Here’s the story of a recent thread hijacking attack in which a journalist was copied on a phishing email from the unwilling subject of a recent scoop. Instead, he forwarded the messages to LancasterOneline’s IT team, which quickly flagged them as phishing attempts. “We were just perplexed,” Murse said.

Phishing

Phishing Scams Accountability Passwords

Potential cybersecurity impacts of Russia’s invasion of Ukraine

Malwarebytes

FEBRUARY 25, 2022

In the past, the country has been credibly blamed or proven responsible for several cyberattacks against Ukraine and its surrounding neighbors, including DDoS attacks in Estonia in 2007, Georgia in 2008, and Kyrgyzstan in 2009. The risk of scams. The full thread on support can be found here.

Cybersecurity

Cybersecurity Ransomware Malware Government

The Year Targeted Phishing Went Mainstream

Krebs on Security

AUGUST 2, 2018

A story published here on July 12 about a new sextortion-based phishing scheme that invokes a real password used by each recipient has become the most-read piece on KrebsOnSecurity since this site launched in 2009. There are several interesting takeaways from this phishing campaign.

Phishing

Phishing Scams Passwords Password Management

Cyber Security Informer

Happy 14th Birthday, KrebsOnSecurity!

Personal info of 90k hikers leaked by French tourism company La Malle Postale

Trending Sources

Spam Kingpin Peter Levashov Gets Time Served

Experts found 20 Million tax records for Russian citizens exposed online

Financial cyberthreats in 2021

Lazarus group uses fake cryptocurrency apps to plant AppleJeus malware

Cyber Security Roundup for May 2021

Endpoint security for Mac: 3 best practices

Cybersecurity Awareness Month Focuses on People

Billions of FBS Records Exposed in Online Trading Broker Data Leak

Telehealth: A New Frontier in Medicine—and Security

Inside ‘Evil Corp,’ a $100M Cybercrime Menace

Thread Hijacking: Phishes That Prey on Your Curiosity

Potential cybersecurity impacts of Russia’s invasion of Ukraine

The Year Targeted Phishing Went Mainstream

Stay Connected