Krebs on Security

OCTOBER 8, 2019

Included in this month’s roundup is something Microsoft actually first started shipping in the third week of September, when it released an emergency update to fix a critical Internet Explorer zero-day flaw ( CVE-2019-1367 ) that was being exploited in the wild.

Backups 41

Backups Malware Software Internet 41

Krebs on Security

DECEMBER 19, 2024

Cyber threat analysts at Silent Push said they recently received reports from a partner organization that identified an aggressive scanning effort against their website using an Internet address previously associated with a campaign by FIN7 , a notorious Russia-based hacking group. ” Orn advertising Araneida Scanner in Feb.

Hacking 248

Hacking Cybercrime Advertising Data breaches 248

Krebs on Security

MARCH 11, 2025

Rapid7’s lead software engineer Adam Barnett said Windows 11 and Server 2019 onwards are not listed as receiving patches, so are presumably not vulnerable. The SANS Internet Storm Center has a useful list of all the Microsoft patches released today, indexed by severity.

System Administration 238

System Administration Engineering Internet Internet 238

Krebs on Security

FEBRUARY 4, 2025

An investigation into the history of these communities shows their apparent co-founders quite openly operate an Internet service provider and a pair of e-commerce platforms catering to buyers and sellers on both forums. Constella found that a user named Shoppy registered on Cracked in 2019 using the email address finn@shoppy[.]gg.

eCommerce 216

eCommerce Cybercrime Accountability Passwords 216

Krebs on Security

OCTOBER 17, 2023

Golestan’s sentencing comes nearly two years after he pleaded guilty to using an elaborate network of phony companies to secure more than 735,000 Internet Protocol (IP) addresses from the American Registry for Internet Numbers (ARIN), the nonprofit which oversees IP addresses assigned to entities in the U.S.,

Internet 344

Internet Internet VPN Marketing 344

Krebs on Security

MARCH 27, 2025

Tamoian, a native Russian who left the country in 2019, is the founder of the cyber investigation platform malfors.com. He recently discovered two other sites impersonating the Ukrainian paramilitary groups — legionliberty[.]world world and rusvolcorps[.]ru ru — and reported both to Cloudflare.

Phishing 225

Phishing Government Engineering Internet 225

Krebs on Security

JULY 31, 2024

Your Web browser knows how to find a site like example.com thanks to the global Domain Name System (DNS), which serves as a kind of phone book for the Internet by translating human-friendly website names (example.com) into numeric Internet addresses. If this threat sounds familiar, that’s because it is hardly new.

DNS 322

DNS Internet Internet Phishing 322

Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. billion in 2019. In August 2019, the company said a third-party investigation into the exposure identified just 32 consumers whose non-public personal information likely was accessed without authorization. .

Insurance 353

Insurance Financial Services Penetration Testing Scams 353

Krebs on Security

DECEMBER 19, 2018

Microsoft today released an emergency software patch to plug a critical security hole in its Internet Explorer (IE) Web browser that attackers are already using to break into Windows computers.

Internet 265

Internet Internet Software Engineering 265

Adam Shostack

JANUARY 2, 2025

The Internet of Garbage by Sarah Jeong. As a summary of the problems and challenges of the internet, it's aged sadly well since 2015. Shows how guerrilla marketing works in the age of Twitter, and outlines techniques now being used to screw up elections and people's lives. The Tangled Tree: A Radical New History of Life.

Marketing 130

Marketing Internet Internet Software 130

Krebs on Security

SEPTEMBER 8, 2020

The majority of the most dangerous or “critical” bugs deal with issues in Microsoft’s various Windows operating systems and its web browsers, Internet Explorer and Edge. An attacker could leverage the Exchange bug to run code of his choosing just by sending a booby-trapped email to a vulnerable Exchange server.

Software 322

Software Backups Authentication Internet 322

Krebs on Security

MAY 23, 2024

Two weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in Ukraine and Europe. The homepage of Stark Industries Solutions.

DDOS 332

DDOS Internet Internet Government 332

The Last Watchdog

MARCH 28, 2019

The author of Mirai used a sledgehammer to kill a fly: the DDoS bombardment was so large that it also wiped out Dyn , a UK-based internet performance vendor. I had the chance at RSA 2019 to discuss the wider implications with Don Shin, A10 Networks’ senior product marketing manager. Here are the key takeaways: Reflective attacks.

DDOS 263

DDOS IoT DNS Internet 263

Krebs on Security

FEBRUARY 18, 2019

This post seeks to document the extent of those attacks, and traces the origins of this overwhelmingly successful cyber espionage campaign back to a cascading series of breaches at key Internet infrastructure providers. federal civilian agencies to secure the login credentials for their Internet domain records. That changed on Jan.

DNS 279

DNS Internet Internet Government 279

The Hacker News

APRIL 29, 2024

A previously undocumented cyber threat dubbed Muddling Meerkat has been observed undertaking sophisticated domain name system (DNS) activities in a likely effort to evade security measures and conduct reconnaissance of networks across the world since October 2019.

DNS 145

DNS Internet Internet Cyber threats 145

Krebs on Security

APRIL 10, 2020

Most people who who filed a tax return in 2018 and/or 2019 and provided their bank account information for a debit or credit should soon see an Economic Impact Payment direct-deposited into their bank accounts. Likewise, people drawing Social Security payments from the government will receive stimulus payments the same way.

Computers and Electronics 360

Computers and Electronics Banking Accountability Scams 360

Krebs on Security

NOVEMBER 14, 2023

It affects Microsoft Windows 10 and later, as well as Microsoft Windows Server 2019 and subsequent versions. “This vulnerability can be exploited locally, with low complexity and without needing high-level privileges or user interaction,” said Mike Walters , president and co-founder of the security firm Action1.

Social Engineering 326

Social Engineering Internet Internet Phishing 326

Krebs on Security

AUGUST 10, 2021

The software giant warned that attackers already are pouncing on one of the flaws, which ironically enough involves an easy-to-exploit bug in the software component responsible for patching Windows 10 PCs and Windows Server 2019 machines. “In the case of ransomware attacks, they have also been used to ensure maximum damage.”

Software 322

Software Internet Internet Backups 322

Adam Levin

JULY 10, 2020

For comparison, that’s a 273% increase over the first two quarters of 2019 combined. While the number of publicly reported breaches in Q1 2020 decreased by 58% compared to 2019, the coronavirus pandemic gave cybercriminals new ways to thrive,” wrote Bitdefender researcher and blogger Alina Bizga.

Data breaches 252

Data breaches Social Engineering Antivirus Scams 252

Krebs on Security

NOVEMBER 17, 2021

The CEO of a South Carolina technology firm has pleaded guilty to 20 counts of wire fraud in connection with an elaborate network of phony companies set up to obtain more than 735,000 Internet Protocol (IP) addresses from the nonprofit organization that leases the digital real estate to entities in North America. ”

Internet 358

Internet Internet VPN Marketing 358

Krebs on Security

MARCH 9, 2021

Top of the heap this month (apart from the ongoing, global Exchange Server mass-compromise ) is a patch for an Internet Explorer bug that is seeing active exploitation. “We strongly encourage all organizations that rely on Internet Explorer and Microsoft Edge (EdgeHTML-Based) to apply these patches as soon as possible.”

DNS 351

DNS Internet Internet Software 351

Krebs on Security

FEBRUARY 11, 2020

Microsoft today released updates to plug nearly 100 security holes in various versions of its Windows operating system and related software, including a zero-day vulnerability in Internet Explorer (IE) that is actively being exploited. Another flaw fixed this month in Microsoft Exchange 2010 through 2019 may merit special attention.

Backups 68

Backups Malware Internet Internet 68

Krebs on Security

JUNE 10, 2022

At the outset of their federal criminal trial for hijacking vast swaths of Internet addresses for use in large-scale email spam campaigns, three current or former executives at online advertising firm Adconion Direct (now Amobee ) have pleaded guilty to lesser misdemeanor charges of fraud and misrepresentation via email.

Government 331

Government Marketing Internet Internet 331

Krebs on Security

JANUARY 29, 2020

leaked internal customer support data to the Internet, mobile provider Sprint has addressed a mix-up in which posts to a private customer support community were exposed to the Web. Fresh on the heels of a disclosure that Microsoft Corp.

Social Engineering 325

Social Engineering Telecommunications Data privacy Engineering 325

Security Affairs

SEPTEMBER 26, 2024

internet service providers (ISPs) as part of a cyber espionage campaign code-named Salt Typhoon. internet service providers in recent months as part of a cyber espionage campaign code-named Salt Typhoon. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.”

Internet 130

Internet Internet DNS Telecommunications 130

Krebs on Security

NOVEMBER 17, 2020

These so-called “push notifications” rely on an Internet standard designed to work similarly across different operating systems and web browsers. The company’s site currently is ranked by Alexa.com as among the top 2,000 sites in terms of Internet traffic globally.

Antivirus 358

Antivirus Advertising Internet Internet 358

Krebs on Security

MARCH 7, 2020

While what my source did was technically wire fraud (obtaining something of value via the Internet through false pretenses), cybercriminals bent on using fake.gov domains to hoodwink Americans likely would not be deterred by such concerns. Then you either mail or fax it in. After that, they send account creation links to all the contacts.”.

Internet 317

Internet Internet Cybercrime Government 317

Security Affairs

NOVEMBER 18, 2024

Salt Typhoon is a China-linked APT group active since at least 2019. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.” China has long targeted global internet service providers and recent attacks are aligned with past operations linked to Beijing.

Mobile 114

Mobile Telecommunications Data breaches Hacking 114

Krebs on Security

MARCH 2, 2021

The patches released today fix security problems in Microsoft Exchange Server 2013 , 2016 and 2019. “HAFNIUM has previously compromised victims by exploiting vulnerabilities in internet-facing servers. . “HAFNIUM has previously compromised victims by exploiting vulnerabilities in internet-facing servers.

Internet 347

Internet Internet Software Education 347

Krebs on Security

JANUARY 27, 2021

. “Chainalysis has traced more than $46 million worth of funds in NetWalker ransoms since it first came on the scene in August 2019,” the company said in a blog post detailing its assistance with the investigation. “It picked up steam in mid-2020, growing the average ransom to $65,000 last year, up from $18,800 in 2019.”

Ransomware 349

Ransomware Cybercrime Antivirus Encryption 349

Krebs on Security

MARCH 5, 2021

On March 2, Microsoft released emergency security updates to plug four security holes in Exchange Server versions 2013 through 2019 that hackers were actively using to siphon email communications from Internet-facing systems running Exchange. Speaking on condition of anonymity, two cybersecurity experts who’ve briefed U.S.

Hacking 364

Hacking Software Government Internet 364

Krebs on Security

DECEMBER 1, 2020

As KrebsOnSecurity noted in 2019 , Vaughn’s identity was revealed by following the trail of clues from a gaming website he used that later got hacked. That is, until early January 2019, when news broke that hackers had broken into the servers of computer game maker BlankMediaGames and made off with account details of some 7.6

DDOS 294

DDOS Hacking Mobile Encryption 294

Krebs on Security

JANUARY 24, 2020

On December 23, 2019, unknown attackers began contacting customer support people at OpenProvider , a popular domain name registrar based in The Netherlands. 23, 2019, the e-hawk.net domain was transferred to a reseller account within OpenProvider. Use access control lists for applications, Internet traffic and monitoring.

DNS 334

DNS Social Engineering Engineering Accountability 334

Krebs on Security

FEBRUARY 8, 2021

“According to the analysis of foreign law enforcement agencies, more than 50% of all phishing attacks in 2019 in Australia were carried out thanks to the development of the Ternopil hacker,” the attorney general’s office said, noting that investigators had identified hundreds of U-Admin customers. ” U-Admin, a.k.a.

Phishing 340

Phishing Scams Banking Mobile 340

Security Affairs

DECEMBER 3, 2024

In 2021, the University of Toronto-based Citizen Lab Internet reported that a Polish opposition duo was hacked with NSO spyware. According to the Gazeta Wyborcza daily, the spyware was used to spy on the phone of Jacek Karnowski, mayor of the city of Sopot, in 2018-2019.

Spyware 119

Spyware Government Surveillance Hacking 119

Krebs on Security

SEPTEMBER 8, 2021

According to a security advisory from Redmond, the security hole CVE-2021-40444 affects the “MSHTML” component of Internet Explorer (IE) on Windows 10 and many Windows Server versions. There is currently no official patch for the flaw, but Microsoft has released recommendations for mitigating the threat.

Software 354

Software Engineering Internet Internet 354

Schneier on Security

FEBRUARY 13, 2021

I wrote this in 2019: The other solution is to build a secure system, even though any of its parts can be subverted. It sounds ridiculous on its face, but the Internet itself was a solution to a similar problem: a reliable network built out of unreliable parts. We need some fundamental security research here.

Surveillance 363

Surveillance Internet Internet Government 363