Krebs on Security

JANUARY 16, 2025

Those who fall for the scam are asked to provide payment card data, and eventually will be asked to supply a one-time password sent via SMS or a mobile authentication app. Reports of similar SMS phishing attacks against customers of other U.S. state-run toll facilities surfaced around the same time as the MassDOT alert.

Phishing 300

Phishing Scams Mobile Passwords 300

Schneier on Security

NOVEMBER 21, 2023

Google’s Threat Analysis Group announced a zero-day against the Zimbra Collaboration email server that has been used against governments around the world. TAG has observed four different groups exploiting the same bug to steal email data, user credentials, and authentication tokens.

Authentication 324

Authentication Government Software 324

Krebs on Security

NOVEMBER 21, 2024

The targeted SMS scams asked employees to click a link and log in at a website that mimicked their employer’s Okta authentication page. Some SMS phishing messages told employees their VPN credentials were expiring and needed to be changed; other phishing messages advised employees about changes to their upcoming work schedule.

Identity Theft 267

Identity Theft Phishing Cryptocurrency Accountability 267

Security Affairs

FEBRUARY 16, 2024

CISA revealed that threat actors breached an unnamed state government organization via an administrator account belonging to a former employee. The government experts conducted an incident response assessment of the state government organization after its documents were posted on the dark web.

Government 145

Government VPN Accountability Authentication 145

Security Affairs

OCTOBER 12, 2024

Since April 2021, Russian state-sponsored hackers have exploited vulnerabilities, including Zimbra’s CVE-2022-27924 for injecting commands to access credentials and emails, and JetBrains TeamCity’s CVE-2023-42793 for arbitrary code execution through an authentication bypass.

Data collection 138

Data collection Authentication Hacking Government 138

Krebs on Security

JANUARY 31, 2025

The government says transnational organized crime groups that purchased these services primarily used them to run business email compromise (BEC) schemes, wherein the cybercrime actors tricked victim companies into making payments to a third party. “Presumably, these buyers also include Dutch nationals.

Phishing 271

Phishing Cybercrime Advertising Malware 271

Schneier on Security

MARCH 29, 2023

How will the networks manage keys, authenticate users, and moderate content? Interoperability will vastly increase the attack surface at every level in the stack ­ from the cryptography up through usability to commercial incentives and the opportunities for government interference. This opens up a real Pandora’s box.

Authentication 294

Authentication Marketing Internet Internet 294

Schneier on Security

APRIL 3, 2025

The second is authentication—much more nuanced than the simple “Who are you?” ” authentication mechanisms of today—which ensures that data access is properly verified and authorized at every step. creates the trusted environment that AI systems require to operate reliably.

Artificial Intelligence 262

Artificial Intelligence Architecture Internet Internet 262

The Last Watchdog

SEPTEMBER 24, 2024

Governments can create a digital identity at birth to replace SSN in its current use. About the essayist: Ambuj Kumar is Co-founder and CEO of Simbian , AI Agents for cybersecurity The post GUEST ESSAY: Massive NPD breach tells us its high time to replace SSNs as an authenticator first appeared on The Last Watchdog.

Authentication 216

Authentication Identity Theft Banking Data breaches 216

Security Affairs

MARCH 18, 2025

Threat actors exploit a server-side request forgery (SSRF) flaw, tracked as CVE-2024-27564, in ChatGPT, to target US financial and government organizations. It should be noted that this vulnerability can be triggered without the need for authentication and is therefore more harmful.” ” reads the advisory. .

Government 130

Government Healthcare Authentication Hacking 130

Krebs on Security

OCTOBER 30, 2024

” But in June 2024 testimony to the Senate Finance Committee, it emerged that the intruders had stolen or purchased credentials for a Citrix portal used for remote access, and that no multi-factor authentication was required for that account. Last month, Sens. Mark Warner (D-Va.) and Ron Wyden (D-Ore.)

Healthcare 298

Healthcare Insurance Computers and Electronics Data breaches 298

SecureWorld News

FEBRUARY 13, 2025

Attackers now impersonate executives, government officials, and even family members to gain trust and manipulate victims. Misinformation and market manipulation : Deepfake videos of CEOs or government officials making false statements can manipulate stock prices or incite public panic.

Social Engineering 86

Social Engineering Authentication Identity Theft Education 86

Schneier on Security

JANUARY 19, 2023

As one example, we present a cross-protocol attack which breaks authentication in Threema and which exploits the lack of proper key separation between different sub-protocols. We provide an extensive cryptographic analysis of Threema, a Swiss-based encrypted messaging application with more than 10 million users and 7000 corporate customers.

Encryption 343

Encryption Authentication Advertising Government 343

eSecurity Planet

NOVEMBER 6, 2024

This attack underscores a critical lesson for businesses: even the most vital institutions, such as a city government, are vulnerable to cyberthreats. With cyberthreats getting more advanced , businesses and local governments alike must work together to share resources, insights, and best practices to improve cybersecurity across the board.

Ransomware 115

Ransomware Authentication Identity Theft Penetration Testing 115

Malwarebytes

FEBRUARY 11, 2025

Of those malicious apps, 5,200 could subvert one of the strongest security practices available today, called multifactor authentication, by prying into basic text messages sent to a device. With multifactor authentication, a username and password are no longer enough to sign into an account.

Phishing 129

Phishing Passwords Mobile Authentication 129

Security Affairs

APRIL 7, 2025

In a nutshell, some criminal groups are exploiting compromised accounts belonging to law enforcement and other government agencies to illicitly forward Emergency Data Requests (EDRs) to major online platforms.

Cybercrime 140

Cybercrime Social Engineering Accountability Government 140

Krebs on Security

JANUARY 19, 2021

military and government employees and giving it to an Islamic State hacker group in 2015 has been charged once again with fraud and identity theft. based e-commerce company, stealing personal and financial data on 1,300 government employees, and providing the data to an Islamic State hacking group.

Identity Theft 347

Identity Theft Government Social Engineering Accountability 347

Malwarebytes

DECEMBER 5, 2024

The infrastructure that the US government relies to communicate on is made up of the same private sector systems that everybody else uses. Among the culprits are four major APT groups: Volt Typhoon, Salt Typhoon, Flax Typhoon, and Velvet Ant.

Encryption 142

Encryption Identity Theft Media Telecommunications 142

SecureWorld News

OCTOBER 28, 2024

From a governance standpoint, Agnidipta Sarkar, Vice President of CISO Advisory at ColorTokens, emphasizes the critical role of regulatory frameworks. In his view, prolonged breach response times often indicate inadequate data governance and limited internal controls. The good thing is that the affected parties have been notified.

Healthcare 109

Healthcare Insurance Government Data breaches 109

The Last Watchdog

APRIL 24, 2025

It underpins everything from e-commerce transactions to secure app logins and device authentication. Sinha emphasized that DigiCerts approach combines the operational maturity of public PKI with the governance flexibility of private systems. For decades, browser-based PKI has served as the bedrock of digital trust online.

Banking 147

Banking Internet Internet IoT 147

Krebs on Security

SEPTEMBER 13, 2023

Credentials stolen by info-stealers often end up for sale on cybercrime shops that peddle purloined passwords and authentication cookies (these logs also often show up in the malware scanning service VirusTotal ). government inboxes. Microsoft Corp.

Cybercrime 343

Cybercrime Passwords Authentication Malware 343

SecureList

JULY 8, 2024

In May 2024, we discovered a new advanced persistent threat (APT) targeting Russian government entities that we dubbed CloudSorcerer. The malware leverages cloud resources as its command and control (C2) servers, accessing them through APIs using authentication tokens. Victims Government organizations in the Russian Federation.

Government 144

Government Malware Data collection DNS 144

The Last Watchdog

DECEMBER 18, 2024

Enterprises must secure AI agents, adopt proactive data governance, and deploy AI-based security platforms. Our research reveals 69% of breaches are rooted in inadequate authentication and 78% of organizations have been targeted by identity-based attacks. Real-time defense and a robust security mindset are crucial to staying resilient.

Risk 173

Risk Threat Detection Technology Phishing 173

Security Affairs

FEBRUARY 7, 2025

Trimble Cityworks is a GIS-centric asset management and permitting software designed for local governments, utilities, and public works organizations. “Successful exploitation of this vulnerability could allow an authenticated user to perform a remote code execution.” The vulnerability CVE-2025-0994 (CVSS v4 score of 8.6)

Authentication 94

Authentication Internet Internet Hacking 94

Tech Republic Security

SEPTEMBER 2, 2024

Australian banks and government are not rushing to adopt passkey authentication methods, despite the added security benefits. Learn why they lag in embracing this crucial technology.

Banking 178

Banking Authentication Government Technology 178

Schneier on Security

JULY 21, 2022

BitSight found the device in use in 169 countries, with customers including governments, militaries, law enforcement agencies, and aerospace, shipping, and manufacturing companies. The China-based manufacturer says 1.5 million of its tracking devices are deployed across 420,000 customers.

Manufacturing 336

Manufacturing Surveillance Mobile Authentication 336

Adam Levin

SEPTEMBER 1, 2020

Cybersecurity researchers have determined the records are authentic and current as of March 2020. State and federal government officials have denied that the data was acquired via hacking and have maintained that the data was available through the Freedom of Information Act (FOIA).

Hacking 281

Hacking Cyber Attacks Authentication Government 281

The Last Watchdog

DECEMBER 18, 2024

state privacy laws, the EUs governance of ethical AI deployment, and updated regulations in India and Japan. The SEC Cybersecurity Disclosure Rule highlights transparency in governance. Seara Jose Seara , CEO, DeNexus Recent regulatory updates highlight a shift toward robust cyber risk governance, requiring organizations to adapt.

Cybersecurity 130

Cybersecurity CISO Risk Government 130

Schneier on Security

FEBRUARY 1, 2023

In all, the auditors cracked 18,174—or 21 percent—­of the 85,944 cryptographic hashes they tested; 288 of the affected accounts had elevated privileges, and 362 of them belonged to senior government employees. In the first 90 minutes of testing, auditors cracked the hashes for 16 percent of the department’s user accounts.

Passwords 291

Passwords Accountability Authentication Government 291

Schneier on Security

FEBRUARY 3, 2021

Once the attackers had that initial foothold, they used a variety of complex privilege escalation and authentication attacks to exploit flaws in Microsoft’s cloud services. On attribution: Earlier this month, the US government has stated the attack is “likely Russian in origin.”

Computers and Electronics 363

Computers and Electronics Malware Software Government 363

Schneier on Security

AUGUST 7, 2023

A bunch of networks, including US Government networks , have been hacked by the Chinese. The hackers used forged authentication tokens to access user email, using a stolen Microsoft Azure account consumer signing key. Congress wants answers. Master signing keys are not supposed to be left around, waiting to be stolen.

Authentication 246

Authentication Government Hacking Accountability 246

Schneier on Security

JANUARY 5, 2021

Initial estimates were that Russia sent its probes only into a few dozen of the 18,000 government and private networks they gained access to when they inserted code into network management software made by a Texas company named SolarWinds. intelligence service revealed these points: The breach is far broader than first believed.

Hacking 360

Hacking System Administration Software Surveillance 360

Krebs on Security

DECEMBER 18, 2020

government cybersecurity agencies warned this week that the attackers behind the widespread hacking spree stemming from the compromise at network software firm SolarWinds used weaknesses in other, non-SolarWinds products to attack high-value targets. 3, and said it learned about the flaw from the NSA. ” Indeed, the NSA’s Dec.

Software 363

Software Authentication Hacking Government 363

Malwarebytes

JANUARY 27, 2025

Health insurance information: Details about primary, secondary, or other health plans/policies, insurance companies, member/group ID numbers, and Medicaid-Medicare-government payor ID numbers. Enable two-factor authentication (2FA). Some forms of two-factor authentication (2FA) can be phished just as easily as a password.

Data breaches 126

Data breaches Healthcare Passwords Insurance 126

Krebs on Security

JULY 12, 2024

AT&T also acknowledged the customer records were exposed in a cloud database that was protected only by a username and password (no multi-factor authentication needed). For its part, Snowflake says it now requires all new customers to use multi-factor authentication. In a regulatory filing with the U.S.

Data breaches 346

Data breaches Passwords Authentication Accountability 346

The Last Watchdog

SEPTEMBER 10, 2024

Instead of traditional methods that rely on storing and matching biometrics, SenseCrypt eID utilizes acts of encryption and decryption for registration and authentication, with no public/private keys stored anywhere. The company’s stakeholders include government organizations and bodies from both Singapore and Australia.

Computers and Electronics 278

Computers and Electronics Encryption Government Authentication 278

The Last Watchdog

MARCH 11, 2025

Treasury Department breach as a warning: “A single leaked API key from BeyondTrust allowed attackers to infiltrate government systems. “This requires a comprehensive approach that includes automated discovery, detection, remediation, and stronger secrets governance across all enterprise platforms.”

Government 130

Government Passwords Authentication CISO 130