Krebs on Security

OCTOBER 17, 2024

Image: FBI Active since at least January 2023, AnonSudan has been described in media reports as a “hacktivist” group motivated by ideological causes. companies, causing a multi-day outage for Microsoft’s cloud services in June 2023. 2023), and OpenAI (Nov. 7, 2023, a wave of rockets was launched into Israel.

DDOS 269

DDOS Government Internet Internet 269

Security Affairs

DECEMBER 8, 2024

On December 25, 2023, a ransomware attack hit the Anna Jaques Hospital. In 2023, upon discovering the cyber attack, the Anna Jaques Hospital took the impacted systems down and launched an investigation into the security breach. The hospital revealed that the security breach exposed sensitive health data for over 316,000 patients.

Data breaches 114

Data breaches Insurance Healthcare Ransomware 114

Schneier on Security

MARCH 22, 2024

The highest reward for a vulnerability report in 2023 was $113,337, while the total tally since the program’s launch in 2010 has reached $59 million. BleepingComputer has the details. It’s $2M less than in 2022, but it’s still a lot. million.

Mobile 330

Mobile Software 330

Schneier on Security

APRIL 9, 2024

US Cyber Safety Review Board released a report on the summer 2023 hack of Microsoft Exchange by China. It was a serious attack by the Chinese government that accessed the emails of senior U.S. government officials. From the executive summary: The Board finds that this intrusion was preventable and should never have occurred.

Hacking 335

Hacking Government Accountability Technology 335

Penetration Testing

OCTOBER 28, 2024

A significant security vulnerability, CVE-2023-32197, has been identified in RKE2, Rancher’s Kubernetes distribution geared toward high-security environments, including the U.S. Federal Government.

Government 92

Government Cybersecurity 92

Malwarebytes

MARCH 25, 2025

In 2023, not only did the company suffer a major data breach , it also placed some of the blame on the victims who, according to 23andMe, negligently recycled and failed to update their passwords. Discover whether your data was included in the 2023 breach. For some customers, thats exactly the problem.

Passwords 113

Passwords Accountability Data breaches Phishing 113

Krebs on Security

NOVEMBER 1, 2024

In November 2023, the security firm SecureWorks detailed how scammers targeted booking.com hospitality partners with data-stealing malware. SecureWorks said these attacks had been going on since at least March 2023. million phishing attempts in 2023.” A scan of social media networks showed this is not an uncommon scam.

Phishing 275

Phishing Accountability Artificial Intelligence Cybercrime 275

Schneier on Security

JANUARY 16, 2025

According to the FBI , at least 45,000 IP addresses in the US had back-and-forths with the command-and-control server since September 2023. .” Details : To retrieve information from and send commands to the hacked machines, the malware connects to a command-and-control server that is operated by the hacking group.

Malware 246

Malware Hacking Software 246

Krebs on Security

DECEMBER 19, 2024

Rumors of a cracked version of Acunetix being used by attackers surfaced in June 2023 on Twitter/X , when researchers first posited a connection between observed scanning activity and Araneida. According to an August 2023 report (PDF) from the U.S. co — first came online in February 2023. 2023 on the forum Cracked.

Hacking 248

Hacking Cybercrime Advertising Data breaches 248

Krebs on Security

NOVEMBER 21, 2024

technology companies between 2021 and 2023, including LastPass , MailChimp , Okta , T-Mobile and Twilio. According to several SIM-swapping channels on Telegram where Tylerb was known to frequent, rival SIM-swappers hired thugs to invade his home in February 2023. Image: Amitai Cohen twitter.com/amitaico.

Identity Theft 267

Identity Theft Phishing Cryptocurrency Accountability 267

Krebs on Security

DECEMBER 11, 2024

Sanders spent most of 2023 in Ukraine, traveling with Ukrainian soldiers while mapping the shifting landscape of Russian crypto exchanges that are laundering money for narcotics networks operating in the region. — shows an entity by that name incorporated at a mail drop in London in December 2023.

Cryptocurrency 287

Cryptocurrency Banking Cybercrime Advertising 287

Krebs on Security

MAY 15, 2025

In what experts are calling a novel legal outcome, the 22-year-old former administrator of the cybercrime community Breachforums will forfeit nearly $700,000 to settle a civil lawsuit from a health insurance company whose customer data was posted for sale on the forum in 2023. Conor Brian Fitzpatrick , a.k.a. Image: Ke-la.com.

Healthcare 216

Healthcare Insurance Data breaches Government 216

Krebs on Security

APRIL 30, 2025

“tylerb”) fled the United Kingdom in February 2023, after a rival cybercrime gang hired thugs to invade his home, assault his mother, and threaten to burn him with a blowtorch unless he gave up the keys to his cryptocurrency wallet. Tyler Buchanan, being escorted by Spanish police at the airport in Palma de Mallorca in June 2024.

Identity Theft 194

Identity Theft Phishing Cryptocurrency Cybercrime 194

Security Affairs

JANUARY 21, 2025

.” Below is the list of flaws discovered by the researchers: CVE-2024-37602 CVE-2024-37600 CVE-2024-37603 CVE-2024-37601 CVE-2023-34406 CVE-2023-34397 CVE-2023-34398 CVE-2023-34399 CVE-2023-34400 CVE-2023-34401 CVE-2023-34402 CVE-2023-34403 CVE-2023-34404 The details for each of the above flaws will be published here: [link].

Software 130

Software Architecture Media Engineering 130

Schneier on Security

OCTOBER 14, 2024

It can also exploit CVE-2023-33246, a vulnerability with a severity rating of 10 out of 10 that was patched last year in Apache RocketMQ, a messaging and streaming platform that’s found on many Linux machines.

Malware 267

Malware Cryptocurrency Internet Internet 267

Security Affairs

MAY 3, 2025

The Rhysida ransomware group has been active since May 2023. In December 2023, FBI and CISA published a joint Cybersecurity Advisory (CSA) to warn of Rhysida ransomware attacks. The report includes IOCs and TTPs identified through investigations as recently as September 2023. The victims of the group are targets of opportunity.

Government 122

Government Ransomware Hacking Manufacturing 122

Krebs on Security

NOVEMBER 14, 2024

In December 2023, KrebsOnSecurity revealed the real-life identity of Rescator , the nickname used by a Russian cybercriminal who sold more than 100 million payment cards stolen from Target and Home Depot between 2013 and 2014. Mr. Shefel did not respond to requests for comment in advance of that December 2023 profile.

Retail 273

Retail Advertising Cryptocurrency Cybercrime 273

Schneier on Security

JANUARY 4, 2024

This attachment exploits the remote code execution vulnerability CVE-2023-41990 in the undocumented, Apple-only ADJUST TrueType font instruction. This was mitigated as CVE-2023-38606. The Safari exploit uses CVE-2023-32435 to execute a shellcode. It uses the same vulnerabilities: CVE-2023-32434 and CVE-2023-38606.

Spyware 363

Spyware Authentication 363

Krebs on Security

DECEMBER 3, 2024

A study on phishing data released by Interisle Consulting finds that new gTLDs introduced in the last few years command just 11 percent of the market for new domains, but accounted for roughly 37 percent of cybercrime domains reported between September 2023 and August 2024.

Cybercrime 298

Cybercrime Phishing Accountability Internet 298

Schneier on Security

MARCH 29, 2024

You might think that libraries are kind of boring, but this self-analysis of a 2023 ransomware and extortion attack against the British Library is anything but.

Ransomware 339

Ransomware 339

The Hacker News

MAY 23, 2025

The threat actor has been observed exploiting a critical security flaw impacting Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers (CVE-2023-20118) to corral them into

Small Business 105

Small Business Cybersecurity 105

Penetration Testing

APRIL 6, 2025

This flaw, identified as CVE-2023-6931, carries a CVSS score of 7.8, A security researcher has recently disclosed technical details and proof-of-concept (PoC) exploit code for a vulnerability in the Linux kernel’s Performance Events system component. indicating a high severity risk.

Risk 109

Risk Cybersecurity 109

Security Affairs

JANUARY 25, 2025

In February 2023, Cisco fixed a critical flaw, tracked as CVE-2023-20032(CVSS score: 9.8), in ClamAV product. Tracked as CVE-2023-20032 (CVSS score: 9.8), the issue relates to a case of remote code execution residing in the HFS+ file parser. Google OSS-Fuzz reported this vulnerability.

Antivirus 130

Antivirus Software Engineering Malware 130

Schneier on Security

AUGUST 19, 2024

So far, in 2024, comparing the first half of 2023 to the first half of 2024, we see an even further increase of 4.3%. The higher level of activity observed in 2023 was no fluke. In February, we reported a 49% increase year-over-year in alleged victims posted on ransomware leak sites.

Ransomware 315

Ransomware Accountability 315

The Hacker News

MAY 15, 2025

The activity, which commenced in 2023, has been codenamed Operation RoundPress by the Slovak cybersecurity company.

Government 107

Government Hacking Cybersecurity 107

Troy Hunt

JANUARY 22, 2025

That's a local Aussie bookseller (so it would have a lot of Aussie-looking email addresses in it, just like JB Hi-Fi would), and their breach dated back to mid-2023. Must be legit, unless. what if I compared it to the actual full breach of Dymocks ? What are the chances?! He's going to be so interested when he hears about this!

Data breaches 348

Data breaches Scams Retail 348

Security Affairs

OCTOBER 16, 2024

. “Finnish customs has closed the web servers of the Sipulitie marketplace, which has been operating on the Tor network since 2023, in cooperation with the Swedish police, and confiscated their contents. The darknet market has been active since February 2023, it was used by criminals to sell narcotics anonymously.

Marketing 118

Marketing Cybercrime Scams Hacking 118

Security Affairs

MARCH 10, 2025

In 2023, Loretto Hospital experienced another data security incident. On January 19, 2023, a former employee misappropriated security camera footage of a limited number of patients and posted it on Facebook. The footage was removed after the incident was discovered. The footage was removed after the incident was discovered.

Hacking 114

Hacking Healthcare Backups Ransomware 114

The Hacker News

MAY 3, 2025

The activity, which lasted from at least May 2023 to February 2025, entailed "extensive espionage operations and suspected network prepositioning a tactic often used to maintain persistent access for future

VPN 111

VPN Malware 111

Krebs on Security

MAY 7, 2025

In 2023, prosecutors in Pakistan charged Mirza, Mansoor and 14 other Digitonics employees with fraud, impersonating government officials, phishing, cheating and extortion. Moiz told KrebsOnSecurity he stopped working for 360 Digital Marketing in the summer of 2023.

Scams 268

Scams Marketing Advertising Technology 268