Book, Hacking and Web Fraud - Cyber Security Informer

Booking.com Phishers May Leave You With Reservations

Krebs on Security

NOVEMBER 1, 2024

KrebsOnSecurity last week heard from a reader whose close friend received a targeted phishing message within the Booking mobile app just minutes after making a reservation at a California. One post last month on the Russian-language hacking forum BHF offered up to $5,000 for each hotel account.

Phishing

Phishing Accountability Artificial Intelligence Cybercrime

The Fake Browser Update Scam Gets a Makeover

Krebs on Security

OCTOBER 18, 2023

One of the oldest malware tricks in the book — hacked websites claiming visitors need to update their Web browser before they can view any content — has roared back to life in the past few months.

Scams

Scams Malware Cryptocurrency Hacking

Calendar Meeting Links Used to Spread Mac Malware

Krebs on Security

FEBRUARY 28, 2024

Sure, Doug said, here’s my Calendly profile, book a time and we’ll do it then. ” SlowMist said the malware downloaded by the malicious link in their case comes from a North Korean hacking group dubbed “ BlueNoroff , which Kaspersky Labs says is a subgroup of the Lazarus hacking group.

Malware

Malware Cryptocurrency Software Phishing

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

Krebs on Security

JANUARY 30, 2024

authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S.

Social Engineering

Social Engineering Mobile Cybercrime Passwords

LastPass: ‘Horse Gone Barn Bolted’ is Strong Password

Krebs on Security

SEPTEMBER 22, 2023

“LastPass in my book is one step above snake-oil. . “And now this is blaming the users — ‘you should have used a longer passphrase’ — not them for having weak defaults that were never upgraded for existing users,” Weaver said. ”

Passwords

Passwords Encryption Password Management Cryptocurrency

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

Krebs on Security

MARCH 22, 2022

Pavel Vrublevsky , founder of the Russian payment technology firm ChronoPay and the antagonist in my 2014 book “ Spam Nation ,” was arrested in Moscow this month and charged with fraud. A Google-translated snippet of the hacked ChronoPay Confluence installation. Click to enlarge. Some pay, some don’t.

Banking

Banking Marketing DDOS Risk

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

Krebs on Security

JANUARY 22, 2019

Large-scale spam campaigns often are conducted using newly-registered or hacked email addresses, and/or throwaway domains. Guilmette told KrebsOnSecurity he initially considered the possibility that GoDaddy had been hacked, or that thousands of the registrar’s customers perhaps had their GoDaddy usernames and passwords stolen.

DNS

DNS Internet Internet Computers and Electronics

Why Malware Crypting Services Deserve More Scrutiny

Krebs on Security

JUNE 21, 2023

has been associated with the user Kerens on the Russian hacking forum Exploit from 2011 to the present day. Intel 471 found that Kerens used the email address pepyak@gmail.com , which also was used to register Kerens accounts on the Russian language hacking forums Verified and Damagelab. antivirusxp09[.]com). was thelib[.]ru

Malware

Malware Antivirus Cybercrime Hacking

Russian Reshipping Service ‘SWAT USA Drop’ Exposed

Krebs on Security

NOVEMBER 2, 2023

One of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. The login page for the criminal reshipping service SWAT USA Drop.

Cybercrime

Cybercrime Marketing Scams Retail

Double-Your-Crypto Scams Share Crypto Scam Host

Krebs on Security

APRIL 11, 2022

An ad posted to the Russian-language hacking forum BHF last month touted Cryptohost as a “bulletproof hosting provider for all your projects,” i.e., it can be relied upon to ignore abuse complaints about its customers. Cryptohost also controls several other address ranges, including 194.31.98.X, “Why choose us?

Scams

Scams Cryptocurrency Media Hacking

Meet the World’s Biggest ‘Bulletproof’ Hoster

Krebs on Security

JULY 16, 2019

In 2010, this author received a massive data dump from a source that had hacked into or otherwise absconded with more than four years of email records from ChronoPay — at the time a major Russian online payment provider whose CEO and co-founders were the chief subjects of my 2014 book, Spam Nation: The Inside Story of Organized Cybercrime.

Cybercrime

Cybercrime Phishing Banking Malware

Cyber Security Informer

Booking.com Phishers May Leave You With Reservations

The Fake Browser Update Scam Gets a Makeover

Trending Sources

Calendar Meeting Links Used to Spread Mac Malware

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

LastPass: ‘Horse Gone Barn Bolted’ is Strong Password

‘Spam Nation’ Villain Vrublevsky Charged With Fraud

Bomb Threat, Sextortion Spammers Abused Weakness at GoDaddy.com

Why Malware Crypting Services Deserve More Scrutiny

Russian Reshipping Service ‘SWAT USA Drop’ Exposed

Double-Your-Crypto Scams Share Crypto Scam Host

Meet the World’s Biggest ‘Bulletproof’ Hoster

Stay Connected