SiteLock

AUGUST 27, 2021

Seems like every few months another blogger or security maven laments the passing of the password, a security tool that has outlived its usefulness and should now be replaced with something more of the times, more effective, more secure. And while the password might be on life-support, it’s not quite gone. That’s right.

Passwords 75

Passwords Data breaches Banking Accountability 75

Malwarebytes

OCTOBER 3, 2022

I have an embarrassing confession to make: I reuse passwords. I am not a heavy re-user, nothing crazy, I use a password manager to handle most of my credentials but I still reuse the odd password from time to time. It seems obvious and important therefore to tell users not to reuse passwords.

Passwords 95

Passwords Password Management Accountability Internet 95

Krebs on Security

APRIL 18, 2023

According to cyber intelligence firm Flashpoint , MrMurza has been active in the Russian underground since at least September 2012. 2012, from an Internet address in Magnitogorsk, RU. The password chosen by this user was “ 1232.” relied on the passwords asus666 and 01091987h. also used the password 24587256.

Malware 221

Malware Passwords Accountability Advertising 221

Thales Cloud Protection & Licensing

NOVEMBER 14, 2017

The tsunami of passwords that exist across every aspect of our digital life means that there’s a thriving underground industry of cyber-criminals trying to get at them. This time passwords were lightly protected by the 1970s-era DES algorithm. Taking a password dump from a server isn’t, of course, the only route to compromise.

Passwords 99

Passwords Internet Internet Data breaches 99

Krebs on Security

FEBRUARY 24, 2023

BHProxies has authored 129 posts on Black Hat World since 2012, and their last post on the forum was in December 2022. BHProxies initially was fairly active on Black Hat World between May and November 2012, after which it suddenly ceased all activity. The website BHProxies[.]com

Accountability 216

Accountability Advertising Marketing Malware 216

Security Affairs

DECEMBER 29, 2023

On Christmas Eve, Resecurity’s HUNTER unit spotted the author of perspective password stealer Meduza has released a new version (2.2). Presently, Meduza password stealer supports Windows Server 2012/2016/2019/2022 and Windows 10/11.

Password Management 126

Password Management Cryptocurrency Passwords Authentication 126

Security Affairs

SEPTEMBER 30, 2020

Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison for hacking LinkedIn, Dropbox, and Formspring in 2012. The Russian national Yevgeniy Aleksandrovich Nikulin was sentenced to 88 months in prison in the United States for hacking LinkedIn, Dropbox, and Formspring in 2012. Source: US Defense Watch.com.

Identity Theft 104

Identity Theft Cybercrime Advertising Hacking 104

Krebs on Security

SEPTEMBER 17, 2020

One of the alleged hackers was first profiled here in 2012 as the owner of a Chinese antivirus firm. One of the men indicted as part of APT41 — now 35-year-old Tan DaiLin — was the subject of a 2012 KrebsOnSecurity story that sought to shed light on a Chinese antivirus product marketed as Anvisoft. Image: FBI.

Antivirus 352

Antivirus Hacking Government Software 352

Security Affairs

JULY 11, 2020

The Russian hacker Yevgeniy Nikulin found guilty for LinkedIn, Dropbox, and Formspring data breach back in 2012 and the sale of their users’ data. A jury found Russian hacker Yevgeniy Nikulin guilty for the hack of LinkedIn, Dropbox, and Formspring back in 2012 and for the sale of the stolen data on cybercrime black marketplaces.

Hacking 79

Hacking Cybercrime Data breaches Advertising 79

Krebs on Security

MARCH 21, 2019

Hundreds of millions of Facebook users had their account passwords stored in plain text and searchable by thousands of Facebook employees — in some cases going back to 2012, KrebsOnSecurity has learned. Renfro said the company planned to alert Facebook users today, but that no password resets would be required.

Passwords 56

Passwords Engineering Accountability Advertising 56

Security Boulevard

MARCH 9, 2023

A Croatian national has been arrested for allegedly operating NetWire, a Remote Access Trojan (RAT) marketed on cybercrime forums since 2012 as a stealthy way to spy on infected systems and siphon passwords. The arrest coincided with a seizure of the NetWire sales website by the U.S. Federal Bureau of Investigation (FBI).

Cybercrime 52

Cybercrime Marketing Passwords 52

CyberSecurity Insiders

DECEMBER 23, 2021

The announcement was made as the said guy was found guilty of stealing over 100 million password credentials belonging to users related to LinkedIn, Dropbox and Automatic. As per the latest court briefing, Nikulin gained fraudulent access to LinkedIn database to get the admin password of LinkedIn Engineer Nick Berry.

Passwords 103

Passwords Engineering Malware Cybersecurity 103

Security Affairs

FEBRUARY 21, 2024

Mustang Panda has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. Past campaigns were focused on Asian countries, including Taiwan, Hong Kong, Mongolia, Tibet, and Myanmar.

Malware 114

Malware Phishing Government Passwords 114

CSO Magazine

MARCH 23, 2022

Further attempts at hardening login whilst balancing usability, have seen the advent of biometric authentication methods; all attempt to cope with the infinite “phishability” of the humble password. The FIDO Alliance has been working to crack this security/usability riddle since 2012.

Authentication 79

Authentication Mobile Passwords 79

Security Affairs

APRIL 1, 2020

In malspam attacks, attackers could encrypt the Excel file by setting up a password, then when the victims receive the email, hackers trick them into opening the attachment using a password included in the content of the message. Excel attempts to decrypt and open the file and run any macros it contains.

Malware 94

Malware Passwords Encryption Advertising 94

SiteLock

AUGUST 27, 2021

In each of these cases, the cybercriminals behind the breaches were after usernames and passwords. The most commonly used passwords today are, “password” and “123456,” and it only takes a hacker.29 Each stolen record contained an email address and password. In 2012, LinkedIn was hit with a breach and more than 6.5

Data breaches 52

Data breaches Media Passwords Accountability 52

Security Affairs

MAY 15, 2020

Data appears to come from past data breaches, the oldest one dates back as 2012 while the latest one dates April 2020. million April 2018 Netlog.com (Twoo.com) 57 million November 2012 Dubsmash.com Phone numbers 47.1 million September 2012 Bukalapak.com 13 million February 2018 Bookmate.com 8 million July 2018 ReverbNation.com 7.9

Data breaches 104

Data breaches Advertising Passwords Hacking 104

Krebs on Security

JUNE 1, 2023

.” Constella Intelligence , a company that tracks exposed databases, finds that 774748@gmail.com was used in connection with just a handful of passwords, but most frequently the password “ featar24 “ Pivoting off of that password reveals a handful of email addresses, including akafitis@gmail.com. ru in 2008.

Malware 228

Malware Cybercrime Software Antivirus 228

CyberSecurity Insiders

FEBRUARY 13, 2022

A report published by Sentinel One states that a hacking group named “Modified Elephant” was seen carrying out such criminal activities since 2012 and has started the game of planting criminal evidence on devices of innocent online users. Then how to keep such cyber crimes at bay?

Surveillance 94

Surveillance Passwords Malware Hacking 94

Krebs on Security

FEBRUARY 9, 2023

Initially a stealthy trojan horse program delivered via email and used to steal passwords, Trickbot evolved into “a highly modular malware suite that provides the Trickbot Group with the ability to conduct a variety of illegal cyber activities, including ransomware attacks,” the Treasury Department said.

Hacking 185

Hacking Cybercrime Ransomware Government 185

Security Affairs

NOVEMBER 22, 2019

The banking trojan is able to record keystrokes, to steal passwords stored on the PC, and take screenshots and videos from the victims’ machine. Lisov operated the infrastructure behind the NeverQuest malware between June 2012 and January 2015, the managed a network of servers containing lists of millions of stolen login credentials.

Banking 103

Banking Malware Advertising Passwords 103

Krebs on Security

DECEMBER 3, 2021

More commonly, that access is purchased from a cybercriminal broker who specializes in acquiring remote access credentials — such as usernames and passwords needed to remotely connect to the target’s network. All of these domains date back to between 2012 and 2013. com , and portalsagepay[.]com.

Ransomware 281

Ransomware Passwords Accountability Cybercrime 281

Security Affairs

JUNE 25, 2020

In 2012, Assange communicated directly with a leader of the hacking group LulzSec (who by then was cooperating with the FBI), and provided a list of targets for LulzSec to hack. “In 2010, Assange gained unauthorized access to a government computer system of a NATO country. Department of Defense computer.”

Hacking 97

Hacking Advertising Passwords Government 97

Security Affairs

JANUARY 4, 2021

The US authorities also accuse Assange of having conspired with Army intelligence analyst Chelsea Manning to crack a password hash for an Army computer to access classified documents that were later published on the WikiLeaks website.

Government 129

Government Risk Passwords Hacking 129

Security Affairs

MARCH 22, 2020

The expert Bob Diachenko has discovered an unsecured Elasticsearch install belonging to a UK security firm that contained 5 billion records of data leaked in previous incidents that took place between 2012 and 2019. ” wrote Security Discovery’s researcher Bob Diachenko.

Data breaches 99

Data breaches DNS Advertising Engineering 99

Security Affairs

APRIL 6, 2023

Google experts are tracking ARCHIPELAGO since 2012 and have observed the group targeting individuals with expertise in North Korea policy issues. The fake browser window displays a URL and a login prompt designed to trick recipients into providing their password to a legitimate login page.

Phishing 84

Phishing Media Passwords Malware 84

Security Affairs

MARCH 27, 2023

Earth Preta, also known as “RedDelta” or “Bronze President,” has been active since at least 2012, it targeted American and European entities such as government organizations, think tanks, NGOs , and even Catholic organizations at the Vatican. The link points to a password-protected archive, the document also includes the password.

Malware 87

Malware Phishing Passwords Government 87

Dark Reading

MARCH 30, 2018

Russian national indicted for the 2012 LinkedIn hack that led to the theft of 117 million passwords has been extradited from the Czech Republic to the US.

Passwords 44

Passwords Hacking 44

Krebs on Security

JANUARY 8, 2024

Collectively in control over millions of spam-spewing zombies, those botmasters also continuously harvested passwords and other data from infected machines. As we’ll see in a moment, Salomon is now behind bars, in part because he helped to rob dozens of small businesses in the United States using some of those same harvested passwords.

Cybercrime 198

Cybercrime Banking Computers and Electronics DDOS 198

Krebs on Security

JUNE 25, 2019

com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-12-09 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., com 2012-11-26 ALIBABA CLOUD COMPUTING (BEIJING) CO., 2333youxi[.]com blazefire[.]com blazefire[.]net

Mobile 239

Mobile Technology Manufacturing Malware 239

Malwarebytes

JANUARY 16, 2024

In 2012, as a senior soon to graduate with a physics degree, he worked on a project with faculty member Robert W. While at CWRU, he was accused of “cracking passwords” on a CWRU network. In college at CWRU, he participated in a philosophy club, where he was “interested in the philosophy behind mathematics.”

Malware 89

Malware Passwords Identity Theft Data collection 89

Security Affairs

DECEMBER 25, 2018

Threat actors are attempting to exploit a flaw in Orange LiveBox ADSL modems to retrieve their SSID and WiFi password in plaintext. The flaw tracked as CVE-2018-20377 is known at least since 2012 when Rick Murray described it in a blog post. . . Mursch also reported that many exposed devices use default credentials (i.e.

Passwords 86

Passwords Wireless Firmware Advertising 86

SiteLock

AUGUST 27, 2021

In a report published at the end of 2012 on the growing hacking threat to websites, research firm Frost and Sullivan found that of all cyber security vulnerabilities, more than 98% were discovered by third-party researchers , while less than 2% were discovered by the people who made the applications that contained the vulnerabilities.

Cybersecurity 52

Cybersecurity Social Engineering Passwords Hacking 52

CyberSecurity Insiders

AUGUST 24, 2022

And studies have revealed that the newly developed file-encrypting malware is using an Open-source password management library for encryption and is having capabilities of remaining anonymous, ex-filtrate data, and having abilities to give control to remote servers. The third is something astonishing to read!

Ransomware 107

Ransomware Digital transformation Encryption Social Engineering 107

Security Affairs

MARCH 22, 2020

The expert Bob Diachenko has discovered an unsecured Elasticsearch install belonging to the security firm Keepnet Labs that contained 5 billion records of data leaked in previous incidents that took place between 2012 and 2019. ” wrote Security Discovery’s researcher Bob Diachenko.

Data breaches 62

Data breaches DNS Advertising Engineering 62

Daniel Miessler

FEBRUARY 1, 2020

As far as they’re concerned, if you don’t say the name of your password manager 7 times before bed the Dark Web will haunt your closet. and in 2012 the New York Times said they had the largest commercial database on customers. People talk about it like it’s the Internet Demogorgon.

Advertising 103

Advertising InfoSec Password Management Education 103

Security Affairs

JUNE 11, 2021

The marketplace had been active since 2012, it was allowing sellers to offer stolen login credentials, including usernames and passwords for bank accounts, online payment accounts, mobile phone accounts, retailer accounts, and other online accounts.

Cybercrime 110

Cybercrime Accountability Retail Cyber threats 110