Krebs on Security

JUNE 25, 2021

Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affected device.

Internet 334

Internet Internet Backups Small Business 334

Schneier on Security

OCTOBER 14, 2024

Perfectl in an impressive piece of malware: The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the Internet potential targets, researchers from Aqua Security said.

Malware 259

Malware Cryptocurrency Internet Internet 259

Krebs on Security

DECEMBER 19, 2024

Cyber threat analysts at Silent Push said they recently received reports from a partner organization that identified an aggressive scanning effort against their website using an Internet address previously associated with a campaign by FIN7 , a notorious Russia-based hacking group. LinkedIn finds this same altugsara[.]com

Hacking 252

Hacking Cybercrime Advertising Data breaches 252

The Last Watchdog

JANUARY 18, 2022

After a gloomy start with its first three breach intensive quarters, 2021 has finally ended, and on a positive note. Related: Cybersecurity experts reflect on 2021. Our analysis looked into data breaches that occurred from October to December 2021 (Q4) and compared them with the numbers from July through August 2021 (Q3).

Data breaches 279

Data breaches VPN Internet Internet 279

Schneier on Security

JUNE 14, 2021

This is a current list of where and when I am scheduled to speak: I’ll be part of a European Internet Forum virtual debate on June 17, 2021. The topic is “Decrypting the encryption debate: How to ensure public safety with a privacy-preserving and secure Internet?” Details to come.

Internet 320

Internet Internet Encryption Technology 320

Krebs on Security

DECEMBER 4, 2024

“Don’t s**t where you live, travel local, and don’t go abroad,” Wazawaka wrote in January 2021 on the Russian-language cybercrime forum Exploit. Earlier this year, Russian authorities arrested at least two men for allegedly operating the short-lived Sugarlocker ransomware program in 2021.

Cybercrime 254

Cybercrime Ransomware Cryptocurrency Government 254

The Last Watchdog

NOVEMBER 3, 2021

We’ve been named one of the Top 10 cybersecurity webzines in 2021. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. The recognition comes from Cyber Security Hub, a website sponsored by IQPC Digital. But there’s a lot more to get done.

Cybersecurity 278

Cybersecurity Data breaches Mobile Internet 278

Schneier on Security

JULY 14, 2021

This is a current list of where and when I am scheduled to speak: I’m speaking at Norbert Wiener in the 21st Century , a virtual conference hosted by The IEEE Society on Social Implications of Technology (SSIT), July 23-25, 2021. I’m speaking at DEFCON 29 , August 5-8, 2021. I’ll be speaking at an Informa event on September 14, 2021.

Internet 332

Internet Internet Technology 332

Schneier on Security

AUGUST 14, 2021

This is a current list of where and when I am scheduled to speak: I’m speaking (via Internet) at SHIFT Business Festival in Finland, August 25-26, 2021. I’ll be speaking at an Informa event on September 14, 2021. I’m keynoting CIISec Live —an all-online event—September 15-16, 2021. Details to come.

Data privacy 328

Data privacy Internet Internet Cybersecurity 328

Krebs on Security

MAY 28, 2025

The main clientele for HeartSender were organized crime groups that tried to trick victim companies into making payments to a third party, and its alleged proprietors were publicly identified by KrebsOnSecurity in 2021 after they inadvertently infected their computers with malware.

Malware 198

Malware Cybercrime Antivirus Scams 198

The Last Watchdog

MAY 25, 2021

Resilience was the theme of RSA Conference 2021 which took place virtually last week. For a lively debrief of RSA Conference 2021, please give the accompanying podcast a listen. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be.

Internet 214

Internet Internet Cybersecurity Software 214

Krebs on Security

MARCH 2, 2021

Adair said while the exploits used by the group may have taken great skills to develop, they require little technical know-how to use and can give an attacker easy access to all of an organization’s email if their vulnerable Exchange Servers are directly exposed to the Internet.

Internet 349

Internet Internet Software Education 349

Krebs on Security

JUNE 8, 2021

Among the zero-days are: – CVE-2021-33742 , a remote code execution bug in a Windows HTML component. – CVE-2021-31955 , an information disclosure bug in the Windows Kernel. – CVE-2021-31956 , an elevation of privilege flaw in Windows NTFS.

Backups 341

Backups Ransomware Cyber threats Phishing 341

Schneier on Security

JANUARY 6, 2022

The privacy-oriented search engine netted more than 35 billion search queries in 2021 , a 46.4% DuckDuckGo has had a banner year : And yet, DuckDuckGo. jump over 2020 (23.6 That’s big.

Engineering 357

Engineering Internet Internet 357

Daniel Miessler

DECEMBER 18, 2021

From the Apache advisory: It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 Just to point out to those panicking about this right now: this is a very uncommon situation to be vulnerable from this cve in a “readily exploitable from the internet” way. And the internet moves fast. The bypasses of 2.15

Internet 363

Internet Internet Information Security 363

Krebs on Security

MAY 20, 2025

The brief attack appears to have been a test run for a massive new Internet of Things (IoT) botnet capable of launching crippling digital assaults that few web destinations can withstand. KrebsOnSecurity last week was hit by a near record distributed denial-of-service (DDoS) attack that clocked in at more than 6.3

DDOS 296

DDOS IoT Internet Internet 296

Krebs on Security

OCTOBER 17, 2023

Golestan’s sentencing comes nearly two years after he pleaded guilty to using an elaborate network of phony companies to secure more than 735,000 Internet Protocol (IP) addresses from the American Registry for Internet Numbers (ARIN), the nonprofit which oversees IP addresses assigned to entities in the U.S.,

Internet 346

Internet Internet VPN Marketing 346

Daniel Miessler

MARCH 24, 2021

This post is an attempt to create an easy-to-use security model for the average internet user. Mar 24, 2021 — Thanks to Andrew R. Mar 24, 2021 — Someone mentioned that there are higher ranks of authentication out there, which I agree with, but this is specifically for everyday users. How to use this model.

Authentication 363

Authentication Passwords Internet Internet 363

Krebs on Security

MARCH 31, 2023

Authorities in Germany this week seized Internet servers that powered FlyHosting , a dark web offering that catered to cybercriminals operating DDoS-for-hire services, KrebsOnSecurity has learned. The German authorities did not name the suspects or the Internet service in question.

DDOS 320

DDOS Internet Internet Cybercrime 320

Krebs on Security

SEPTEMBER 8, 2021

According to a security advisory from Redmond, the security hole CVE-2021-40444 affects the “MSHTML” component of Internet Explorer (IE) on Windows 10 and many Windows Server versions. Virtually every month in 2021 so far, Microsoft has been forced to respond to zero-day threats targeting huge swaths of its user base.

Software 355

Software Engineering Internet Internet 355

Security Affairs

DECEMBER 17, 2024

The FBI warned of a fresh wave of HiatusRAT malware attacks targeting internet-facing Chinese-branded web cameras and DVRs. In March 2024, threat actors behind this campaign started targeting Internet of Things (IoT) devices in the US, Australia, Canada, New Zealand, and the United Kingdom. ” reads the PIN report.

Architecture 111

Architecture Internet Internet Malware 111

Krebs on Security

JANUARY 31, 2025

The core Manipulaters product is Heartsender , a spam delivery service whose homepage openly advertised phishing kits targeting users of various Internet companies, including Microsoft 365 , Yahoo , AOL , Intuit , iCloud and ID.me , to name a few.

Phishing 276

Phishing Cybercrime Advertising Malware 276

Security Affairs

DECEMBER 2, 2024

“We are calling on the Tor community and the Internet freedom community to help us scale up WebTunnel bridges. Russia first blocked Tor in 2021, but at the time the censorship was bypassed via bridges. If you’ve ever thought about running a Tor bridge, now is the time.

Government 132

Government Internet Internet Hacking 132

Schneier on Security

SEPTEMBER 19, 2024

The FBI has shut down a botnet run by Chinese hackers: The botnet malware infected a number of different types of internet-connected devices around the world, including home routers, cameras, digital video recorders, and NAS drives.

Telecommunications 294

Telecommunications Media Malware Internet 294

Schneier on Security

DECEMBER 20, 2021

According to Citzen Lab: We conducted Internet scanning for Predator spyware servers and found likely Predator customers in Armenia, Egypt, Greece, Indonesia, Madagascar, Oman, Saudi Arabia, and Serbia. By the way, this vulnerability was patched on 13 Sep 2021 in iOS 14.8.

Manufacturing 358

Manufacturing Spyware Hacking Internet 358

Security Affairs

JANUARY 21, 2025

The research combined hardware interfaces and software to communicate with the vehicle via Diagnostic Over Internet Protocol (DoIP). The experts used a diagnostic software to analyze the vehicle architecture, scan the Electronic Control Unit (ECU), identify its version, and test diagnostic functions.

Software 136

Software Architecture Media Engineering 136

Krebs on Security

SEPTEMBER 10, 2021

The assault came from “ Meris ,” the same new “Internet of Things” (IoT) botnet behind record-shattering attacks against Russian search giant Yandex this week and internet infrastructure firm Cloudflare earlier this summer. Cloudflare recently wrote about its attack , which clocked in at 17.2 Image: Qrator.

IoT 354

IoT DDOS Internet Internet 354

Schneier on Security

JANUARY 14, 2021

This is a current list of where and when I am scheduled to speak: I’m speaking (online) as part of Western Washington University’s Internet Studies Lecture Series on January 20, 2021. I’m speaking at ITY Denmark on February 2, 2021. I’ll be speaking at an Informa event on February 28, 2021.

Internet 235

Internet Internet Technology 235

SecureWorld News

FEBRUARY 20, 2025

Prioritize fixing vulnerabilities exploited by Ghost, such as ProxyShell (CVE-2021-34473, CVE-2021-34523, CVE-2021-31207). Report ransomware incidents to the FBI Internet Crime Complaint Center (IC3) , CISA, or MS-ISAC. Strengthening identity security Enforce phishing-resistant MFA for all privileged accounts.

Ransomware 113

Ransomware IoT Encryption Social Engineering 113

Krebs on Security

JANUARY 8, 2022

In January 2021, Avira was acquired by Tempe, Ariz.-based NortonLifeLock announced Avira Crypto in late October 2021 , but multiple other antivirus products have flagged Avira’s installer as malicious or unsafe for including a cryptominer as far back as Sept. Founded in 2006, Avira Operations GmbH & Co. Avira Free Antivirus).

Antivirus 362

Antivirus Cryptocurrency Identity Theft Software 362

Daniel Miessler

MAY 19, 2021

Even the median random organization with an internet presence has 17 internet-facing assets. Even the median random organization with an internet presence has 17 internet-facing assets. But it turns out, most of that data is from lost phones, so it doesn’t appear major afterall.

Data breaches 192

Data breaches Social Engineering Ransomware Phishing 192

Security Affairs

FEBRUARY 13, 2025

Microsoft now spotted the subgroup compromising multiple Internet-facing infrastructures to enable Seashell Blizzard APT group to maintain persistence in the networks of high-value targets and support tailored network operations. ” reads the report published by Microsoft.

Telecommunications 109

Telecommunications DNS Passwords Hacking 109

Krebs on Security

NOVEMBER 14, 2024

Golubov later earned immunity from prosecution by becoming an elected politician and founding the Internet Party of Ukraine , which called for free internet for all, the creation of country-wide “hacker schools” and the “computerization of the entire economy.” 15, 2024.

Retail 277

Retail Advertising Cryptocurrency Cybercrime 277

The Last Watchdog

DECEMBER 9, 2021

In 2021 we witnessed the continuation of the seismic shift in how people work, a change that started at the beginning of the global pandemic. The acceleration of cloud, mobility, and security initiatives proved to be critical for organizations looking to weather the new threats and disruptions.

Mobile 177

Mobile IoT Cybersecurity Digital transformation 177

Krebs on Security

NOVEMBER 21, 2024

technology companies between 2021 and 2023, including LastPass , MailChimp , Okta , T-Mobile and Twilio. Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. Image: Amitai Cohen twitter.com/amitaico.

Identity Theft 271

Identity Theft Phishing Cryptocurrency Accountability 271

Security Affairs

NOVEMBER 18, 2024

internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.” China has long targeted global internet service providers and recent attacks are aligned with past operations linked to Beijing. In February 2021, hundreds of users were hit with SIM swapping attacks.

Mobile 117

Mobile Telecommunications Data breaches Hacking 117

Security Affairs

SEPTEMBER 26, 2024

internet service providers (ISPs) as part of a cyber espionage campaign code-named Salt Typhoon. internet service providers in recent months as part of a cyber espionage campaign code-named Salt Typhoon. internet-service providers in recent months in pursuit of sensitive information, according to people familiar with the matter.”

Internet 133

Internet Internet DNS Telecommunications 133