Security Affairs

FEBRUARY 10, 2025

Active since at least 2013 , XE Group is a cybercriminal group focused on credit card skimming and password theft via supply chain attacks. CVE-2024-57968 allows remote authenticated users to upload files to unintended folders, while CVE-2025-25181 is an SQL injection flaw enabling remote SQL execution (no patch available).

Manufacturing 112

Manufacturing Cybercrime Authentication Passwords 112

Security Affairs

SEPTEMBER 16, 2023

Iran-linked Peach Sandstorm APT is behind password spray attacks against thousands of organizations globally between February and July 2023. Microsoft researchers observed a series of password spray attacks conducted by Iran nation-state actors as part of a campaign named Peach Sandstorm (aka Holmium , APT33 , Elfin , and Magic Hound ).

Passwords 139

Passwords Accountability Authentication Hacking 139

DoublePulsar

DECEMBER 22, 2023

I’ve discovered two organisations with ransomware incidents, where the entry point appears to have been Exchange Server 2013 with Outlook Web Access enabled, where all available security updates were applied. But since there were a range of post authentication Exchange Server vulnerabilities this year ( link ), I doubt it is a zero day.

Ransomware 96

Ransomware Internet Internet Software 96

Krebs on Security

JULY 10, 2022

In both cases the readers used password managers to select strong, unique passwords for their Experian accounts. Turner said he created the account at Experian in 2020 to place a security freeze on his credit file, and that he used a password manager to select and store a strong, unique password for his Experian account.

Accountability 338

Accountability Passwords Authentication Password Management 338

eSecurity Planet

JUNE 30, 2022

CISA noted that Basic authentication is simple and pretty convenient but unsecured by design. Basic Auth exposes servers and other endpoints to MITM (Man In The Middle) and password spraying attacks. Basic Auth exposes servers and other endpoints to MITM (Man In The Middle) and password spraying attacks. Click Save.

Authentication 113

Authentication Government Passwords Cybersecurity 113

Krebs on Security

NOVEMBER 11, 2023

Attempts to log in to my account directly at Experian.com also failed; the site said it didn’t recognize my username and/or password. ” Experian then asks for your full name, address, date of birth, Social Security number, email address and chosen password. So once again I sought to re-register as myself at Experian.

Accountability 340

Accountability Authentication Passwords Identity Theft 340

Krebs on Security

MARCH 15, 2023

The Outlook vulnerability ( CVE-2023-23397 ) affects all versions of Microsoft Outlook from 2013 to the newest. Known as an NTLM relay attack, it allows an attacker to get someone’s NTLM hash [Windows account password] and use it in an attack commonly referred to as “ Pass The Hash.”

Passwords 283

Passwords Cyber threats Authentication Internet 283

Krebs on Security

SEPTEMBER 5, 2023

In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. 15, 2022, LastPass said an investigation into the August breach determined the attacker did not access any customer data or password vaults.

Cryptocurrency 361

Cryptocurrency Passwords Encryption Accountability 361

Krebs on Security

MARCH 10, 2020

District Court for the Southern District of California allege Firsov was the administrator of deer.io, an online platform that hosted more than 24,000 shops for selling stolen and/or hacked usernames and passwords for a variety of top online destinations. An example seller’s panel at deer.io. Click image to enlarge.

Accountability 355

Accountability Advertising Hacking Cybercrime 355

Krebs on Security

AUGUST 6, 2020

In June, KrebsOnSecurity was contacted by a cybersecurity researcher who discovered that a group of scammers was sharing highly detailed personal and financial records on Americans via a free web-based email service that allows anyone who knows an account’s username to view all email sent to that account — without the need of a password.

Accountability 363

Accountability Identity Theft Hacking Insurance 363

Malwarebytes

MAY 5, 2022

World Password Day is today, reminding us of the value of solid passwords, and good password practices generally. You can’t go wrong shoring up a leaky password line of defence though, so without further ado: let’s get right to it. The problem with passwords. Shoring up your passwords.

Passwords 98

Passwords Password Management Authentication Accountability 98

Krebs on Security

AUGUST 23, 2024

The proliferation of new top-level domains (TLDs) has exacerbated a well-known security weakness: Many organizations set up their internal Microsoft authentication systems years ago using domain names in TLDs that didn’t exist at the time. ” Caturegli said setting up an email server record for memrtcc.ad

DNS 329

DNS Internet Internet Authentication 329

Troy Hunt

JULY 9, 2018

One of the most alarming trends I've seen in the world of data breaches since starting Have I Been Pwned (HIBP) back in 2013 is the rapid rise of credential stuffing attacks. Go and get a password manager (I use 1Password ), generate random strings for passwords, job done. (Of

Passwords 221

Passwords Password Management Data breaches Accountability 221

Krebs on Security

NOVEMBER 9, 2021

Unlike the four zero-days involved in the mass compromise of Exchange Server systems earlier this year, CVE-2021-42321 requires the attacker to be already authenticated to the target’s system. The flaws let an attacker view the RDP password for the vulnerable system.

Backups 315

Backups Authentication Passwords Internet 315

Krebs on Security

OCTOBER 1, 2022

In customer guidance released Thursday, Microsoft said it is investigating two reported zero-day flaws affecting Microsoft Exchange Server 2013, 2016, and 2019. ” These web-based backdoors offer attackers an easy-to-use, password-protected hacking tool that can be accessed over the Internet from any browser.

Hacking 236

Hacking Passwords Internet Internet 236

Krebs on Security

JANUARY 8, 2024

From January 2005 to April 2013, there were two primary administrators of the cybercrime forum Spamdot (a.k.a Collectively in control over millions of spam-spewing zombies, those botmasters also continuously harvested passwords and other data from infected machines.

Cybercrime 283

Cybercrime Banking Computers and Electronics DDOS 283

Security Affairs

JULY 16, 2018

A security researcher discovered that the IoT search engine ZoomEye has cached login passwords for tens of thousands of Dahua DVRs. The IoT search engine ZoomEye has cached login passwords for tens of thousands of Dahua DVRs, the discovery was made by security researcher Ankit Anubhav, Principal Researcher at NewSky Security.

IoT 75

IoT Engineering Passwords Firmware 75

SecureWorld News

MARCH 24, 2022

Yahoo data breach (2013). Summary: Yahoo believes that "state-sponsored actors" compromised all of their users accounts between 2013 and 2014. Summary: This data breach was unique in the sense that there was not a breach in the company's servers, but an authentication error, meaning no authentication was required to view documents.

Data breaches 130

Data breaches Passwords Accountability Government 130

Security Affairs

DECEMBER 25, 2023

The APT33 group has been around since at least 2013, since mid-2016, the group targeted the aviation industry and energy companies with connections to petrochemical production. ” reads the report published by Microsoft. Most of the targets were in the Middle East, others were in the U.S., South Korea, and Europe.

Passwords 144

Passwords Accountability Authentication Malware 144

Thales Cloud Protection & Licensing

FEBRUARY 25, 2020

The Verizon 2019 Data Breach Investigations Report advises organizations to deploy multifactor authentication throughout all systems and discourage password reuse. The combination of prominent media-reported mega breaches and less famous identity thefts have promoted the industry to adopt passwordless authentication methods.

Digital transformation 108

Digital transformation Authentication Identity Theft Passwords 108

eSecurity Planet

SEPTEMBER 25, 2022

In 2013, for example, the FIDO Alliance was created to solve the world’s password problem by replacing login technology. Apple has also promised that passwords will be a thing of the past, and passkeys will become available for iOS 16. Dashlane last month integrated passkeys into its cross-platform password manager.

Passwords 125

Passwords Password Management Authentication Technology 125

Krebs on Security

SEPTEMBER 27, 2023

DomainTools says there are more than 1,300 current and former domain names registered to Mihail Kolesnikov between 2013 and July 2023. Either way, it’s clearly a pseudonym, but there are some other commonalities among these domains that may provide insight into how Snatch and other ransomware groups are sourcing their victims.

Ransomware 326

Ransomware Internet Internet Phishing 326

Security Affairs

JULY 15, 2021

SonicWall also provides recommendations to customers that can’t update their installs, the vendor suggests disconnecting devices immediately and reset their access passwords, and enable account multi-factor authentication, if supported. immediately Reset passwords Enable MFA. The affected end-of-life devices with 8.x

Firmware 120

Firmware Ransomware Passwords Mobile 120

Security Affairs

MARCH 10, 2020

platform since October 2013. Individuals can also buy computer files, financial information, PII, and usernames and passwords taken from computers infected with malicious software (malware) located both in the U.S. platform, offered data were authentic according to the feds. Firsov was arrested at the John F. storefront.”

Accountability 144

Accountability Advertising Passwords Hacking 144

Troy Hunt

MARCH 1, 2018

This is a little project I started whilst killing time in a hotel room in late 2013 after thinking "I wonder if people actually know where their data has been exposed?" I've regularly quoted the NCSC in particular, for example there's a bunch of their work in my recent blog post about authentication guidance for the modern era.

Government 225

Government Data breaches Passwords Authentication 225

Thales Cloud Protection & Licensing

SEPTEMBER 2, 2024

Breaking Free from Passwords: Passkeys and the Future of Digital Services josh.pearson@t… Mon, 09/02/2024 - 15:14 As passkeys offer a more secure and convenient way to authenticate users, it is no surprise that industry experts agree that they will become the standard authentication method used worldwide.

Passwords 62

Passwords Authentication Social Engineering Phishing 62

Security Affairs

DECEMBER 13, 2020

The PGminer botnet targets Postgress that have default user “ postgres ”, and performs a brute-force attack iterating over a built-in list of popular passwords such as “ 112233 “ and “ 1q2w3e4r “ to bypass authentication. It is interesting to note that threat actors have started to weaponize disputed CVEs, not only confirmed ones.

Hacking 145

Hacking Cryptocurrency Authentication Passwords 145

CyberSecurity Insiders

FEBRUARY 23, 2022

Keeping devices updated with the latest software, using multi-factor authentication, segregating management interfaces of network devices from the internet and changing passwords once or twice in a month is being advised by NCSC to safeguard their IT assets from being attacked by Cyclops Blink malware. billion malware attacks.

Firewall 132

Firewall Malware IoT Software 132

SecureWorld News

DECEMBER 29, 2020

Yahoo data breach (2013). Summary: Yahoo believes that 'state-sponsored actors' compromised all of their users accounts between 2013 and 2014. Summary: This data breach was unique in the sense that there was not a breach in the company's servers, but an authentication error, meaning no authentication was required to view documents.

Data breaches 98

Data breaches Passwords Accountability Government 98

Security Affairs

MARCH 26, 2020

platform since October 2013. store used by hackers to offer for sale thousands of compromised accounts, including gamer accounts and PII files containing user names, passwords, U.S. platform, offered data were authentic according to the feds. Once crooks purchased shop access through the DEER.IO

Cybercrime 144

Cybercrime Advertising Hacking Accountability 144

Security Affairs

OCTOBER 2, 2019

Zendesk discloses a data breach that took place in 2016 when a hacker accessed data of 10,000 users, including passwords, emails, names, and phone numbers. In 2016, customer service software company Zendesk suffered a security breach that exposed data of 10,000 users, including passwords, emails, names, and phone numbers.

Data breaches 97

Data breaches Passwords Accountability Authentication 97

Malwarebytes

MAY 19, 2021

What these names have in common is that they have all experienced at least one breach in 2013—the year when threat actors started targeting organizations across industries to either steal data for profit or leak them to “teach companies a lesson about cybersecurity.” For starters, change your password. Make it longer.

Passwords 134

Passwords Data breaches Government Accountability 134

Security Affairs

JANUARY 25, 2019

“Recently I came across a blog from the ZDI, in which they detail a way to let Exchange authenticate to attackers using NTLM over HTTP. Mollema demonstrated that it’s possible to transfer automatic Windows authentication by connecting a machine on the network to a machine under the control of the attacker.

Authentication 112

Authentication Advertising Passwords Hacking 112

SecureWorld News

AUGUST 15, 2024

The scale of this breach, if confirmed, would rival or exceed other notorious data breaches in history, such as the 2013 Yahoo breach that affected an estimated 3 billion accounts. Use complex, unique passwords for all accounts and consider using a password manager. Enable multi-factor authentication (MFA) wherever possible.

Data breaches 109

Data breaches Identity Theft Password Management Data collection 109

Security Affairs

OCTOBER 21, 2021

These emails persuade employees to reveal passwords for important applications or download malicious files to their devices. Using stolen passwords is an easy way to masquerade as a genuine user and access sensitive information or infiltrate deeper into your network. IoT Devices. Conclusion. He currently also works with Bora.

IoT 140

IoT Phishing Passwords Scams 140

Adam Shostack

DECEMBER 15, 2016

Yesterday, Yahoo disclosed that attackers broke into Yahoo in 2013 and stole details on a billion accounts. Yahoo says users should change their passwords and security questions and answers for any other accounts on which they used the same or similar information used for their Yahoo account. But: authentication is hard.

Password Management 100

Password Management Passwords Encryption Accountability 100

CyberSecurity Insiders

APRIL 7, 2023

Forget SMS 2FA authentication – Twitter and others are making it less attractive by either charging for it or phasing it out altogether. Dunn Mention Twitter and two factor authentication (2FA) in the same breath right now and security watchers will immediately think about a puzzling announcement the company made less than two months ago.

Authentication 108

Authentication Passwords Social Engineering Backups 108