Authentication, Cryptocurrency and Wireless

Who Owns Your Wireless Service? Crooks Do.

Krebs on Security

AUGUST 7, 2019

Corrupt wireless company employees taking hundreds of thousands of dollars in bribes to unlock and hijack mobile phone service. Wireless providers selling real-time customer location data, despite repeated promises to the contrary. Incessantly annoying and fraudulent robocalls. AT&T in particular has had a rough month.

Wireless

Wireless Mobile Banking Authentication

Convicted SIM Swapper Gets 3 Years in Jail

Krebs on Security

NOVEMBER 20, 2020

A 21-year-old Irishman who pleaded guilty to charges of helping to steal millions of dollars in cryptocurrencies from victims has been sentenced to just under three years in prison. Conor Freeman of Dublin took part in the theft of more than two million dollars worth of cryptocurrency from different victims throughout 2018.

Cryptocurrency

Cryptocurrency Mobile Authentication Accountability

NY Man Pleads Guilty in $20 Million SIM Swap Theft

Krebs on Security

DECEMBER 16, 2021

A 24-year-old New York man who bragged about helping to steal more than $20 million worth of cryptocurrency from a technology executive has pleaded guilty to conspiracy to commit wire fraud. Following the theft, Terpin filed a civil lawsuit against Truglia with the Los Angeles Superior court.

Cryptocurrency

Cryptocurrency Mobile Accountability Scams

How 1-Time Passcodes Became a Corporate Liability

Krebs on Security

AUGUST 30, 2022

The missives asked users to click a link and log in at a phishing page that mimicked their employer’s Okta authentication page. Those who submitted credentials were then prompted to provide the one-time password needed for multi-factor authentication. ” On July 28 and again on Aug. According to an Aug. In an Aug.

Mobile

Mobile Phishing Authentication Accountability

U.K. Cyber Thug “PlugwalkJoe” Gets 5 Years in Prison

Krebs on Security

JUNE 27, 2023

But O’Connor also pleaded guilty in a separate investigation involving a years-long spree of cyberstalking and cryptocurrency theft enabled by “ SIM swapping ,” a crime wherein fraudsters trick a mobile provider into diverting a customer’s phone calls and text messages to a device they control.

Cryptocurrency

Cryptocurrency Accountability Mobile Hacking

Kroll Employee SIM-Swapped for Crypto Investor Data

Krebs on Security

AUGUST 25, 2023

Security consulting giant Kroll disclosed today that a SIM-swapping attack against one of its employees led to the theft of user information for multiple cryptocurrency platforms that are relying on Kroll services in their ongoing bankruptcy proceedings. ” T-Mobile has not yet responded to requests for comment.

Mobile

Mobile Cyber Risk Data breaches Cryptocurrency

Attackers Use Bots to Circumvent Some Two-Factor Authentication Systems

eSecurity Planet

SEPTEMBER 30, 2021

Underground services are cropping up that are designed to enable bad actors to intercept one-time passwords (OTPs), which are widely used in two-factor authentication programs whose purpose is to better protect customers’ online accounts. By using the services, cybercriminals can gain access to victims’ accounts to steal money.

Authentication

Authentication Social Engineering Phishing Banking

The Life Cycle of a Breached Database

Krebs on Security

JULY 29, 2021

Our continued reliance on passwords for authentication has contributed to one toxic data spill or hack after another. 22, 2020, when cryptocurrency wallet company Ledger acknowledged that someone had released the names, mailing addresses and phone numbers for 272,000 customers.

Passwords

Passwords Password Management Phishing Scams

AT&T paid a $370,000 ransom to prevent stolen data from being leaked

Security Affairs

JULY 15, 2024

Current analysis indicates that the data includes, for these periods of time, records of calls and texts of nearly all of AT&T’s wireless customers and customers of mobile virtual network operators (“MVNO”) using AT&T’s wireless network. Wired first reported that AT&T paid a ransom of 5.7 ” reported Wired.

Data breaches

Data breaches Wireless Hacking Mobile

Top Open Source Security Tools

eSecurity Planet

OCTOBER 18, 2021

Aircrack-ng is the go-to tool for analysis and cracking of wireless networks. network traffic captures (Windows network authentication, WiFi WPA-PSK, etc.); encrypted private keys (SSH, GnuPG, cryptocurrency wallets, etc.), All the various tools within it use a command line interface and are set up for scripting.

Penetration Testing

Penetration Testing Encryption Software Passwords

Trending CVEs for the Week of March 4th, 2019

NopSec

MARCH 6, 2019

Description CVE-2019-1663 is a vulnerability in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and Cisco RV215W Wireless-N VPN Router that could allow unauthenticated remote attackers to execute arbitrary code on an affected device.

Wireless

Wireless VPN Small Business Firewall

What Is Encryption? Definition, How it Works, & Examples

eSecurity Planet

DECEMBER 7, 2023

ECC is used for email encryption, cryptocurrency digital signatures, and internet communication protocols. Encryption protocols can also verify the authenticity of sources and prevent a sender from denying they were the origin of a transmission.

Encryption

Encryption Passwords IoT Firewall

Hanging Up on Mobile in the Name of Security

Krebs on Security

AUGUST 16, 2018

An entrepreneur and virtual currency investor is suing AT&T for $224 million, claiming the wireless provider was negligent when it failed to prevent thieves from hijacking his mobile account and stealing millions of dollars in cryptocurrencies. A copy of his complaint is here (PDF). ” AN ‘IDENTITY CRISIS’?

Mobile

Mobile Cryptocurrency Accountability Authentication

More Alleged SIM Swappers Face Justice

Krebs on Security

FEBRUARY 5, 2019

resident Ahmad Wagaafe Hared and Matthew Gene Ditman of Las Vegas were part of a group that specialized in tricking or bribing representatives at the major wireless providers into giving them control over phone numbers belonging to people they later targeted for extortion and theft. According to indictments unsealed this week, Tucson, Ariz.

Cryptocurrency

Cryptocurrency Identity Theft Mobile Accountability

“Stole $24 Million But Still Can’t Keep a Friend”

Krebs on Security

JANUARY 15, 2019

Unsettling new claims have emerged about Nicholas Truglia , a 21-year-old Manhattan resident accused of hijacking cell phone accounts to steal tens of millions of dollars in cryptocurrencies from victims. Truglia allegedly struck up a conversation about booking private jets with his cryptocurrency. “Gradually, I got to know Nick.

Cryptocurrency

Cryptocurrency Mobile Accountability Passwords

The Hacker Mind Podcast: Hacking Ransomware

ForAllSecure

MAY 18, 2021

He also talks about his infosec journey hacking cryptocurrencies, joining the Digital Defense Service and CISA, and helping secure the 2020 presidential election… all before the age of 22. Cable: This was then when I was in high school as a sophomore, was working on building an integration for a cryptocurrency website.

Hacking

Hacking Ransomware Cryptocurrency Engineering

The Hacker Mind Podcast: Hacking Ransomware

ForAllSecure

MAY 18, 2021

He also talks about his infosec journey hacking cryptocurrencies, joining the Digital Defense Service and CISA, and helping secure the 2020 presidential election… all before the age of 22. Cable: This was then when I was in high school as a sophomore, was working on building an integration for a cryptocurrency website.

Hacking

Hacking Ransomware Cryptocurrency Engineering

Operation Moonlander dismantled the botnet behind Anyproxy and 5socks cybercriminals services

Security Affairs

MAY 10, 2025

“The Indictment alleges that a botnet was created by infecting older-model wireless internet routers worldwide, including in the United States, using malware without their owners knowledge.” The botnet operators allowed cryptocurrency payments, the bot targets IOT and SOHO devices. followed by Canada and Ecuador.

Malware

Malware DDOS Internet Internet

Cyber Security Informer

Who Owns Your Wireless Service? Crooks Do.

Convicted SIM Swapper Gets 3 Years in Jail

Trending Sources

NY Man Pleads Guilty in $20 Million SIM Swap Theft

How 1-Time Passcodes Became a Corporate Liability

U.K. Cyber Thug “PlugwalkJoe” Gets 5 Years in Prison

Kroll Employee SIM-Swapped for Crypto Investor Data

Attackers Use Bots to Circumvent Some Two-Factor Authentication Systems

The Life Cycle of a Breached Database

AT&T paid a $370,000 ransom to prevent stolen data from being leaked

Top Open Source Security Tools

Trending CVEs for the Week of March 4th, 2019

What Is Encryption? Definition, How it Works, & Examples

Hanging Up on Mobile in the Name of Security

More Alleged SIM Swappers Face Justice

“Stole $24 Million But Still Can’t Keep a Friend”

The Hacker Mind Podcast: Hacking Ransomware

The Hacker Mind Podcast: Hacking Ransomware

Operation Moonlander dismantled the botnet behind Anyproxy and 5socks cybercriminals services

Stay Connected