2018, Accountability, Scams and Web Fraud

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. ” One of the crypto investment scam messages promoted in the spam campaigns on Mastodon this month. . A DIRECT QUOT The domain quot[.]pw

Scams

Scams DDOS Cryptocurrency Accountability

‘Land Lordz’ Service Powers Airbnb Scams

Krebs on Security

APRIL 14, 2019

Scammers who make a living swindling Airbnb.com customers have a powerful new tool at their disposal: A software-as-a-service offering called “ Land Lordz ,” which helps automate the creation and management of fake Airbnb Web sites and the sending of messages to advertise the fraudulent listings.

Scams

Scams Advertising Accountability Phishing

Beware of Hurricane Florence Relief Scams

Krebs on Security

SEPTEMBER 24, 2018

If you’re thinking of donating money to help victims of Hurricane Florence , please do your research on the charitable entity before giving: A slew of new domains apparently related to Hurricane Florence relief efforts are now accepting donations on behalf of victims without much accountability for how the money will be spent.

Scams

Scams Accountability Media Web Fraud

Who’s Behind the ‘Web Listings’ Mail Scam?

Krebs on Security

MARCH 23, 2020

In December 2018, KrebsOnSecurity looked at how dozens of U.S. political campaigns, cities and towns had paid a shady company called Web Listings Inc. The story concluded that this dubious service had been scamming people and companies for more than a decade, and promised a Part II to explore who was behind Web Listings.

Scams

Scams Marketing Internet Internet

When Low-Tech Hacks Cause High-Impact Breaches

Krebs on Security

FEBRUARY 26, 2023

The general manager of Escrow.com found himself on the phone with one of the GoDaddy hackers, after someone who claimed they worked at GoDaddy called and said they needed him to authorize some changes to the account. One multifactor option — physical security keys — appears to be immune to these advanced scams.

Hacking

Hacking Social Engineering Phishing Scams

US Harbors Prolific Malicious Link Shortening Service

Krebs on Security

OCTOBER 31, 2023

The top-level domain for the United States — US — is home to thousands of newly-registered domains tied to a malicious link shortening service that facilitates malware and phishing scams, new research suggests. As far back as 2018, Interisle found.US The findings come close on the heels of a report that identified.US

Phishing

Phishing Telecommunications Malware Scams

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

Krebs on Security

FEBRUARY 8, 2021

” The operation was carried out in coordination with the FBI and authorities in Australia, which was particularly hard hit by phishing scams perpetrated by U-Admin customers. The security flaw was briefly alluded to in a 2018 writeup on U-Admin by the SANS Internet Storm Center. The U-Admin phishing panel interface. Image: fr3d.hk/blog.

Phishing

Phishing Scams Banking Mobile

Why is.US Being Used to Phish So Many of Us?

Krebs on Security

SEPTEMBER 1, 2023

Domain names ending in “ US ” — the top-level domain for the United States — are among the most prevalent in phishing scams, new research shows. As far back as 2018, Interisle found.US This is noteworthy because.US is overseen by the U.S. Also,US domains are only supposed to be available to U.S.

Phishing

Phishing Telecommunications Government DNS

How 1-Time Passcodes Became a Corporate Liability

Krebs on Security

AUGUST 30, 2022

On July 20, the attackers turned their sights on internet infrastructure giant Cloudflare.com , and the intercepted credentials show at least five employees fell for the scam (although only two employees also provided the crucial one-time MFA code). That’s down from 53 percent that did so in 2018, Okta found. 2, and Aug.

Mobile

Mobile Phishing Authentication Accountability

Phishing Sites Targeting Scammers and Thieves

Krebs on Security

AUGUST 9, 2021

That was right after KrebsOnSecurity broke the news that someone had hacked BriansClub and siphoned information on 26 million stolen debit and credit accounts. com, and was wondering when the funds would be reflected in the balance of his account on the shop. Caveat Emptor!

Phishing

Phishing Cybercrime Accountability Advertising

A Deep Dive Into the Residential Proxy Service ‘911’

Krebs on Security

JULY 18, 2022

Namely, the ability to route one’s malicious traffic through a computer that is geographically close to the consumer whose credit card they’re about to charge at some website, or whose bank account they’re about to empty. Both of these identities were active on the crime forum fl.l33t[.]su su between 2016 and 2019.

VPN

VPN Computers and Electronics Antivirus Software

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

Krebs on Security

JANUARY 22, 2019

In July 2018, email users around the world began complaining of receiving spam which began with a password the recipient used at some point in the past and threatened to release embarrassing videos of the recipient unless a bitcoin ransom was paid. 13, 2018 bomb threat hoax. domaincontrol.com and ns18.domaincontrol.com).

DNS

DNS Internet Internet Computers and Electronics

This Service Helps Malware Authors Fix Flaws in their Code

Krebs on Security

MAY 18, 2020

. “Possible options include, for example, bot admin panels, code injection panels, shell control panels, payment card sniffers, traffic direction services, exchange services, spamming software, doorway generators, and scam pages, etc.” “Sodin” and “Sodinokibi”). .

Malware

Malware Cybercrime Ransomware Marketing

How Do You Fight a $12B Fraud Problem? One Scammer at a Time

Krebs on Security

OCTOBER 25, 2018

The fraudsters behind the often laughable Nigerian prince email scams have long since branched out into far more serious and lucrative forms of fraud, including account takeovers, phishing, dating scams, and malware deployment. The FBI says BEC scams netted thieves more than $12 billion between 2013 and 2018.

Scams

Scams Accountability Media Banking

Cyber Security Informer

Interview With a Crypto Scam Investment Spammer

‘Land Lordz’ Service Powers Airbnb Scams

Trending Sources

Beware of Hurricane Florence Relief Scams

Who’s Behind the ‘Web Listings’ Mail Scam?

When Low-Tech Hacks Cause High-Impact Breaches

US Harbors Prolific Malicious Link Shortening Service

Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

Why is.US Being Used to Phish So Many of Us?

How 1-Time Passcodes Became a Corporate Liability

Phishing Sites Targeting Scammers and Thieves

A Deep Dive Into the Residential Proxy Service ‘911’

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

This Service Helps Malware Authors Fix Flaws in their Code

How Do You Fight a $12B Fraud Problem? One Scammer at a Time

Stay Connected