2022, Authentication and Web Fraud - Cyber Security Informer

A Day in the Life of a Prolific Voice Phishing Crew

Krebs on Security

JANUARY 7, 2025

Lookout researchers discovered multiple voice phishing groups were using a new phishing kit that closely mimicked the single sign-on pages for Okta and other authentication providers. Federal Communications Commission (FCC), as well as those working at the cryptocurrency exchanges Coinbase and Binance. “ Annie.”

Phishing

Phishing Cryptocurrency Accountability Social Engineering

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

Krebs on Security

JUNE 15, 2024

.” In a SIM-swapping attack, crooks transfer the target’s phone number to a device they control and intercept any text messages or phone calls sent to the victim — including one-time passcodes for authentication, or password reset links sent via SMS. That leaderboard currently lists Sosa as #24 (out of 100), and Tylerb at #65.

Hacking

Hacking Cybercrime Phishing Passwords

When Low-Tech Hacks Cause High-Impact Breaches

Krebs on Security

FEBRUARY 26, 2023

million customers, including website administrator passwords, sFTP credentials, and private SSL keys; -December 2022: Hackers gained access to and installed malware on GoDaddy’s cPanel hosting servers that “intermittently redirected random customer websites to malicious sites.”

Hacking

Hacking Social Engineering Phishing Scams

How 1-Time Passcodes Became a Corporate Liability

Krebs on Security

AUGUST 30, 2022

In mid-June 2022, a flood of SMS phishing messages began targeting employees at commercial staffing firms that provide customer support and outsourcing to thousands of companies. The missives asked users to click a link and log in at a phishing page that mimicked their employer’s Okta authentication page.

Mobile

Mobile Phishing Authentication Accountability

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

technology companies during the summer of 2022. stole at least $800,000 from at least five victims between August 2022 and March 2023. 2022 that an intrusion had exposed a “limited number” of Twilio customer accounts through a sophisticated social engineering attack designed to steal employee credentials.

Social Engineering

Social Engineering Mobile Cybercrime Passwords

Identity Thieves Bypassed Experian Security to View Credit Reports

Krebs on Security

JANUARY 9, 2023

But until the end of 2022, Experian’s website allowed anyone to bypass these questions and go straight to the consumer’s report. 27, 2022, Experian’s PR team acknowledged receipt of my Dec. It’s also worth mentioning that reports of hijacked Experian.com accounts persisted into late 2022. ” Sen.

Identity Theft

Identity Theft Accountability Authentication Web Fraud

Experian, You Have Some Explaining to Do

Krebs on Security

JULY 10, 2022

Turner said that in early June 2022 he received an email from Experian saying the email address on his account had been changed. “I was able to answer the credit report questions successfully, which authenticated me to their system,” Turner said. For now, Rishi has decided to pay Experian $25.99

Accountability

Accountability Passwords Authentication Password Management

LastPass: ‘Horse Gone Barn Bolted’ is Strong Password

Krebs on Security

SEPTEMBER 22, 2023

But critics say the move is little more than a public relations stunt that will do nothing to help countless early adopters whose password vaults were exposed in a 2022 breach at LastPass. Still, Palant and others impacted by the 2022 breach at LastPass say their account security settings were never forcibly upgraded. ”

Passwords

Passwords Encryption Password Management Cryptocurrency

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Krebs on Security

SEPTEMBER 5, 2023

In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. 15, 2022, LastPass said an investigation into the August breach determined the attacker did not access any customer data or password vaults.

Cryptocurrency

Cryptocurrency Passwords Encryption Accountability

Disneyland Malware Team: It’s a Puny World After All

Krebs on Security

NOVEMBER 16, 2022

The Disneyland Team’s Web interface, which allows them to interact with malware victims in real time to phish their login credentials using phony bank websites. For example, one domain the gang has used since March 2022 is ushank[.]com The Disneyland Team uses common misspellings for top bank brands in its domains.

Malware

Malware Banking Phishing DDOS

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

Krebs on Security

DECEMBER 13, 2022

10, 2022, the relatively new cybercrime forum Breached featured a bombshell new sales thread: The user database for InfraGard, including names and contact information for tens of thousands of InfraGard members. .” “If it was only the phone I will be in [a] bad situation,” USDoD said.

Hacking

Hacking Cybercrime Energy and Utilities Accountability

New Ransom Payment Schemes Target Executives, Telemedicine

Krebs on Security

DECEMBER 8, 2022

First spotted in mid-August 2022 , Venus is known for hacking into victims’ publicly-exposed Remote Desktop services to encrypt Windows devices. Using hard-to-crack unique passwords to protect sensitive data and accounts, as well as enabling multi-factor authentication. Last month, the U.S. healthcare organizations.

Healthcare

Healthcare Backups Ransomware Insurance

Karma Catches Up to Global Phishing Service 16Shop

Krebs on Security

AUGUST 17, 2023

A search in Constella on 16Shop’s domain name shows that in mid-2022, a key administrator of the phishing service infected their Microsoft Windows desktop computer with the Redline information stealer trojan — apparently by downloading a cracked (and secretly backdoored) copy of Adobe Photoshop.

Phishing

Phishing Passwords Hacking Internet

Service Rents Email Addresses for Account Signups

Krebs on Security

JUNE 6, 2023

com, a website that mimics the legitimate Scamdoc.com site for measuring the trustworthiness and authenticity of various sites. According to the FBI , financial losses from cryptocurrency investment scams dwarfed losses for all other types of cybercrime in 2022 , rising from $907 million in 2021 to $2.57 Image: Trend Micro.

Accountability

Accountability Scams Cryptocurrency Advertising

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

Krebs on Security

FEBRUARY 28, 2023

Image: Shutterstock.com Three different cybercriminal groups claimed access to internal networks at communications giant T-Mobile in more than 100 separate incidents throughout 2022, new data suggests. Countless websites and online services use SMS text messages for both password resets and multi-factor authentication. ” TMO UP!

Mobile

Mobile Phishing Authentication Advertising

Lamborghini Carjackers Lured by $243M Cyberheist

Krebs on Security

OCTOBER 9, 2024

” A November 2022 story at patch.com quoted Veer Chetal (class of 2024) crediting the Harvard program with his decision to pursue a career in law. The Corvette that Diaz was sitting in when he was shot in 2022. In 2022, Borrero was arrested in Miami for aggravated assault with a deadly weapon. Image: NBC 6, South Florida.

Cryptocurrency

Cryptocurrency Social Engineering Accountability Mobile

The Dark Nexus Between Harm Groups and ‘The Com’

Krebs on Security

SEPTEMBER 13, 2024

Throughout 2022, LAPSUS$ would hack and social engineer their way into some of the world’s biggest technology companies , including EA Games, Microsoft , NVIDIA , Okta , Samsung , and T-Mobile. .’s West Midlands Police as part of a joint investigation with the FBI into the MGM hack.

Cybercrime

Cybercrime Accountability Mobile Hacking

Scary Fraud Ensues When ID Theft & Usury Collide

Krebs on Security

JANUARY 25, 2022

Although he didn’t technically have an account with MSF, their authentication system is based on email addresses, so Jim requested that a password reset link be sent to his email address. 14, 2022 breach notification letter from tribal lender Mountain Summit Financial. A portion of the Jan.

Financial Services

Financial Services Banking Accountability Identity Theft

Cyber Security Informer

A Day in the Life of a Prolific Voice Phishing Crew

Alleged Boss of ‘Scattered Spider’ Hacking Group Arrested

Trending Sources

When Low-Tech Hacks Cause High-Impact Breaches

How 1-Time Passcodes Became a Corporate Liability

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Identity Thieves Bypassed Experian Security to View Credit Reports

Experian, You Have Some Explaining to Do

LastPass: ‘Horse Gone Barn Bolted’ is Strong Password

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Disneyland Malware Team: It’s a Puny World After All

FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked

New Ransom Payment Schemes Target Executives, Telemedicine

Karma Catches Up to Global Phishing Service 16Shop

Service Rents Email Addresses for Account Signups

Hackers Claim They Breached T-Mobile More Than 100 Times in 2022

Lamborghini Carjackers Lured by $243M Cyberheist

The Dark Nexus Between Harm Groups and ‘The Com’

Scary Fraud Ensues When ID Theft & Usury Collide

Stay Connected