[Krebs on Security] 911 Proxy Service Implodes After Disclosing Breach

Krebs on Security has posted a new item. 911[.]re, a proxy service that since 2015 has sold access to hundreds of thousands of Microsoft Windows computers daily, announced this week that it is shutting down in the wake of a data breach that destroyed key components of its business operations. The abrupt closure comes ten… Continue reading [Krebs on Security] 911 Proxy Service Implodes After Disclosing Breach

Published
Categorized as Security

[Krebs on Security] Breach Exposes Users of Microleaves Proxy Service

Krebs on Security has posted a new item. Microleaves, a ten-year-old proxy service that lets customers route their web traffic through millions of Microsoft Windows computers, exposed their entire user database and the location of tens of millions of PCs running the proxy software. Microleaves claims its proxy software is installed with user consent. But… Continue reading [Krebs on Security] Breach Exposes Users of Microleaves Proxy Service

Published
Categorized as Security

[Krebs on Security] A Retrospective on the 2015 Ashley Madison Breach

Krebs on Security has posted a new item. It’s been seven years since the online cheating site AshleyMadison.com was hacked and highly sensitive data about its users posted online. The leak led to the public shaming and extortion of many AshleyMadison users, and to at least two suicides. To date, little is publicly known about… Continue reading [Krebs on Security] A Retrospective on the 2015 Ashley Madison Breach

Published
Categorized as Security

[Krebs on Security] Massive Losses Define Epidemic of ‘Pig Butchering’

Krebs on Security has posted a new item. U.S. state and federal investigators are being inundated with reports from people who’ve lost hundreds of thousands or millions of dollars in connection with a complex investment scam known as “pig butchering,” wherein people are lured by flirtatious strangers online into investing in cryptocurrency trading platforms that… Continue reading [Krebs on Security] Massive Losses Define Epidemic of ‘Pig Butchering’

Published
Categorized as Security

[Krebs on Security] A Deep Dive Into the Residential Proxy Service ‘911’

Krebs on Security has posted a new item. For the past seven years, an online service known as 911 has sold access to hundreds of thousands of Microsoft Windows computers daily, allowing customers to route malicious traffic through PCs in virtually any country or city around the globe — but predominantly in the United States.… Continue reading [Krebs on Security] A Deep Dive Into the Residential Proxy Service ‘911’

Published
Categorized as Security

[Krebs on Security] Why 8kun Went Offline During the January 6 Hearings

Krebs on Security has posted a new item. The latest Jan. 6 committee hearing on Tuesday examined the role of conspiracy theory communities like 8kun[.]top and TheDonald[.]win in helping to organize and galvanize supporters who responded to former President Trump’s invitation to “be wild” in Washington, D.C. on that chaotic day. At the same time… Continue reading [Krebs on Security] Why 8kun Went Offline During the January 6 Hearings

Published
Categorized as Security

[Krebs on Security] Microsoft Patch Tuesday, July 2022 Edition

Krebs on Security has posted a new item. Microsoft today released updates to fix at least 86 security vulnerabilities in its Windows operating systems and other software, including a weakness in all supported versions of Windows that Microsoft warns is actively being exploited. The software giant also has made a controversial decision to put the… Continue reading [Krebs on Security] Microsoft Patch Tuesday, July 2022 Edition

Published
Categorized as Security

[Krebs on Security] Experian, You Have Some Explaining to Do

Krebs on Security has posted a new item. Twice in the past month KrebsOnSecurity has heard from readers who’ve had their accounts at big-three credit bureau Experian hacked and updated with a new email address that wasn’t theirs. In both cases the readers used password managers to select strong, unique passwords for their Experian accounts.… Continue reading [Krebs on Security] Experian, You Have Some Explaining to Do

Published
Categorized as Security

[Krebs on Security] The Link Between AWM Proxy & the Glupteba Botnet

Krebs on Security has posted a new item. On December 7, 2021, Google announced it had sued two Russian men allegedly responsible for operating the Glupteba botnet, a global malware menace that has infected millions of computers over the past decade. That same day, AWM Proxy — a 14-year-old anonymity service that rents hacked PCs… Continue reading [Krebs on Security] The Link Between AWM Proxy & the Glupteba Botnet

Published
Categorized as Security

[Krebs on Security] Meet the Administrators of the RSOCKS Proxy Botnet

Krebs on Security has posted a new item. Authorities in the United States, Germany, the Netherlands and the U.K. last week said they dismantled the “RSOCKS” botnet, a collection of millions of hacked devices that were sold as “proxies” to cybercriminals looking for ways to route their malicious traffic through someone else’s computer. While the… Continue reading [Krebs on Security] Meet the Administrators of the RSOCKS Proxy Botnet

Published
Categorized as Security

[Krebs on Security] Why Paper Receipts are Money at the Drive-Thru

Krebs on Security has posted a new item. Check out the handmade sign posted to the front door of a shuttered Jimmy John’s sandwich chain shop in Missouri last week. See if you can tell from the store owner’s message what happened. krebsonsecurity.com/2022/06/why-paper-receipts-are-money-at-the-drive-thru/ Please use the link above to continue reading this posting. * *… Continue reading [Krebs on Security] Why Paper Receipts are Money at the Drive-Thru

Published
Categorized as Security

[Krebs on Security] Microsoft Patch Tuesday, June 2022 Edition

Krebs on Security has posted a new item. Microsoft on Tuesday released software updates to fix 60 security vulnerabilities in its Windows operating systems and other software, including a zero-day flaw in all supported Microsoft Office versions on all flavors of Windows that’s seen active exploitation for at least two months now. On a lighter… Continue reading [Krebs on Security] Microsoft Patch Tuesday, June 2022 Edition

Published
Categorized as Security

[Krebs on Security] Ransomware Group Debuts Searchable Victim Data

Krebs on Security has posted a new item. Cybercrime groups that specialize in stealing corporate data and demanding a ransom not to publish it have tried countless approaches to shaming their victims into paying. The latest innovation in ratcheting up the heat comes from the ALPHV/BlackCat ransomware group, which has traditionally published any stolen victim… Continue reading [Krebs on Security] Ransomware Group Debuts Searchable Victim Data

Published
Categorized as Security

[Krebs on Security] "Downthem" DDoS-for-Hire Boss Gets 2 Years in Prison

Krebs on Security has posted a new item. A 33-year-old Illinois man was sentenced to two years in prison today following his conviction last year for operating services that allowed paying customers to launch powerful distributed denial-of-service (DDoS) attacks against hundreds of thousands of Internet users and websites. krebsonsecurity.com/2022/06/downthem-ddos-for-hire-boss-gets-2-years-in-prison/ Please use the link above to… Continue reading [Krebs on Security] "Downthem" DDoS-for-Hire Boss Gets 2 Years in Prison

Published
Categorized as Security

[Krebs on Security] Adconion Execs Plead Guilty in Federal Anti-Spam Case

Krebs on Security has posted a new item. On the eve of their federal criminal trial for allegedly stealing vast swaths of Internet addresses for use in large-scale email spam campaigns, three current or former executives at online advertising firm Adconion Direct have agreed to plead guilty to lesser misdemeanor charges of fraud and misrepresentation… Continue reading [Krebs on Security] Adconion Execs Plead Guilty in Federal Anti-Spam Case

Published
Categorized as Security

[Krebs on Security] KrebsOnSecurity in New Netflix Series on Cybercrime

Krebs on Security has posted a new item. Netflix has a new documentary series airing next week — “Web of Make Believe: Death, Lies & the Internet” — in which Yours Truly apparently has a decent amount of screen time. The debut episode explores the far-too-common harassment tactic of “swatting” — wherein fake bomb threats… Continue reading [Krebs on Security] KrebsOnSecurity in New Netflix Series on Cybercrime

Published
Categorized as Security

[Krebs on Security] What Counts as "Good Faith Security Research?"

Krebs on Security has posted a new item. The U.S. Department of Justice (DOJ) recently revised its policy on charging violations of the Computer Fraud and Abuse Act (CFAA), a 1986 law that remains the primary statute by which federal prosecutors pursue cybercrime cases. The new guidelines state that prosecutors should avoid charging security researchers… Continue reading [Krebs on Security] What Counts as "Good Faith Security Research?"

Published
Categorized as Security

[Krebs on Security] Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade Sanctions

Krebs on Security has posted a new item. Costa Rica’s national health service was hacked sometime earlier this morning by a Russian ransomware group known as Hive. The intrusion comes just weeks after Costa Rican President Rodrigo Chaves declared a state of emergency in response to a data ransom attack from a different Russian ransomware… Continue reading [Krebs on Security] Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade Sanctions

Published
Categorized as Security

[Krebs on Security] Senators Urge FTC to Probe ID.me Over Selfie Data

Krebs on Security has posted a new item. Some of more tech-savvy Democrats in the U.S. Senate are asking the Federal Trade Commission (FTC) to investigate identity-proofing company ID.me for “deceptive statements” the company and its founder allegedly made over how they handle facial recognition data collected on behalf of the Internal Revenue Service, which… Continue reading [Krebs on Security] Senators Urge FTC to Probe ID.me Over Selfie Data

Published
Categorized as Security

[Krebs on Security] When Your Smart ID Card Reader Comes With Malware

Krebs on Security has posted a new item. Millions of U.S. government employees and contractors have been issued a secure smart ID card that enables physical access to buildings and controlled spaces, and provides access to government computer networks and systems at the cardholder’s appropriate security level. But many government employees aren’t issued an approved… Continue reading [Krebs on Security] When Your Smart ID Card Reader Comes With Malware

Published
Categorized as Security