Krebs – Page 13 – PossibleThreat Articles

BlackCat Ransomware Raises Ante After FBI Disruption

January 13, 2024 0 Comments alphv ransomware, blackcat ransomware, deputy attorney general lisa o. monaco, FBI, lawrence abrams, other, u.s. department of justice

Credit to Author: BrianKrebs| Date: Tue, 19 Dec 2023 22:49:43 +0000

The U.S. Federal Bureau of Investigation (FBI) disclosed today that it infiltrated the world’s second most prolific ransomware gang, a Russia-based criminal group known as ALPHV and BlackCat. The FBI said it seized the gang’s darknet website, and released a decryption tool that hundreds of victim companies can use to recover systems. Meanwhile, BlackCat responded by briefly “unseizing” its darknet site with a message promising 90 percent commissions for affiliates who continue to work with the crime group, and open season on everything from hospitals to nuclear power plants.

Independent Krebs Security

Ten Years Later, New Clues in the Target Breach

December 14, 2023 0 Comments 74957809554, A Little Sunshine, bothunter, Breadcrumbs, chronopay, ika, jsc hot spot, lev tolstoy, megaplan, mikhail borisovich shefel, mikhail lenin, mikhail shefel, pavel vrublevsky, pustota, r-fac1, target breach, v.zhabukin@freefrog-co-ru, vasily borisovich zhabykin, vera vrublevsky, zaxvatmira@gmail.com

Credit to Author: BrianKrebs| Date: Thu, 14 Dec 2023 17:51:39 +0000

On Dec. 18, 2013, KrebsOnSecurity broke the news that U.S. retail giant Target was battling a wide-ranging computer intrusion that compromised more than 40 million customer payment cards over the previous month. The malware used in the Target breach included the text string “Rescator,” which also was the handle chosen by the cybercriminal who was selling all of the cards stolen from Target customers. Ten years later, KrebsOnSecurity has uncovered new clues about the real-life identity of Rescator.

Independent Krebs Security

Microsoft Patch Tuesday, December 2023 Edition

December 12, 2023 0 Comments cve-2023-35628, cve-2023-35636, cve-2023-35641, immersive labs, kevin breen, Latest Warnings, microsoft patch tuesday december 2023, satnam narang, tenable, The Coming Storm, Time to Patch

Credit to Author: BrianKrebs| Date: Tue, 12 Dec 2023 22:21:00 +0000

The final Patch Tuesday of 2023 is upon us, with Microsoft Corp. today releasing fixes for a relatively small number of security holes in its Windows operating systems and other software. Even more unusual, there are no known “zero-day” threats targeting any of the vulnerabilities in December’s patch batch. Still, four of the updates pushed out today address “critical” vulnerabilities that Microsoft says can be exploited by malware or malcontents to seize complete control over a vulnerable Windows device with little or no help from users.

Independent Krebs Security

ICANN Launches Service to Help With WHOIS Lookups

December 6, 2023 0 Comments catalin cimpanu, GDPR, icann, internet corporation for assigned names and numbers, rdrs, registration data request service, security tools

Credit to Author: BrianKrebs| Date: Wed, 06 Dec 2023 15:51:58 +0000

More than five years after domain name registrars started redacting personal data from all public domain registration records, the non-profit organization overseeing the domain industry has introduced a centralized online service designed to make it easier for researchers, law enforcement and others to request the information directly from registrars.

Independent Krebs Security

Okta: Breach Affected All Customer Support Users

November 29, 2023 0 Comments Data Breaches, Latest Warnings, okta breach, The Coming Storm

Credit to Author: BrianKrebs| Date: Wed, 29 Nov 2023 19:41:14 +0000

When KrebsOnSecurity broke the news on Oct. 20, 2023 that identity and authentication giant Okta had suffered a breach in its customer support department, Okta said the intrusion allowed hackers to steal sensitive data from fewer than one percent of its 18,000+ customers. But today, Okta revised that impact statement, saying the attackers also stole the name and email address for nearly all of its customer support users.

Independent Krebs Security

ID Theft Service Resold Access to USInfoSearch Data

November 28, 2023 0 Comments Data Breaches, experian, fake edr, hieu, jackiechan, kodex, martin data llc, matt donahue, scott hostettler, telegram, usinfosearch

Credit to Author: BrianKrebs| Date: Tue, 28 Nov 2023 15:57:38 +0000

One of the cybercrime underground’s more active sellers of Social Security numbers, background and credit reports has been pulling data from hacked accounts at the U.S. consumer data broker USinfoSearch, KrebsOnSecurity has learned.

Independent Krebs Security

Alleged Extortioner of Psychotherapy Patients Faces Trial

November 16, 2023 0 Comments A Little Sunshine, antti kurittu, julius kivimäki, mikko hypponen, Ne'er-Do-Well News, petteri järvinen, vastaamo psychotherapy center, withsecure

Credit to Author: BrianKrebs| Date: Thu, 16 Nov 2023 19:59:14 +0000

Prosecutors in Finland this week commenced their criminal trial against Julius Kivimäki, a 26-year-old Finnish man charged with extorting a once popular and now-bankrupt online psychotherapy practice and thousands of its patients. In a 2,200-page report, Finnish authorities laid out how they connected the extortion spree to Kivimäki, a notorious hacker who was convicted in 2015 of perpetrating tens of thousands of cybercrimes, including data breaches, payment fraud, operating a botnet and calling in bomb threats.

Independent Krebs Security

Microsoft Patch Tuesday, November 2023 Edition

November 14, 2023 0 Comments cve-2023-36025, cve-2023-36033, cve-2023-36036, cve-2023-36038, cve-2023-36050, cve-2023-36413, cve-2023-36439, microsoft patch tuesday november 2023, sans internet storm center, security tools, Time to Patch

Credit to Author: BrianKrebs| Date: Tue, 14 Nov 2023 23:00:59 +0000

Microsoft today released updates to fix more than five dozen security holes in its Windows operating systems and related software, including three “zero day” vulnerabilities that Microsoft warns are already being exploited in active attacks.

Independent Krebs Security

It’s Still Easy for Anyone to Become You at Experian

November 11, 2023 0 Comments A Little Sunshine, experian, identity theft, Latest Warnings, scott anderson

Credit to Author: BrianKrebs| Date: Sat, 11 Nov 2023 17:59:07 +0000

In the summer of 2022, KrebsOnSecurity documented the plight of several readers who had their accounts at big-three consumer credit reporting bureau Experian hijacked after identity thieves simply re-registered the accounts using a different email address. Sixteen months later, Experian clearly has not addressed this gaping lack of security. I know that because my account at Experian was recently hijacked, and the only way I could recover access was by recreating the account.

Independent Krebs Security

Who’s Behind the SWAT USA Reshipping Service?

November 6, 2023 0 Comments A Little Sunshine, apathyp, apathyr8@jabber.ccc.de, Breadcrumbs, constella intelligence, gezze@mail.ru, gezze@yandex.ru, intel 471, ivan sherban, mynetwatchman, Ne'er-Do-Well News, swat usa drop service, triploo@mail.ru, universalo, verified, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Mon, 06 Nov 2023 13:51:31 +0000

Last week, KrebsOnSecurity broke the news that one of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. In today’s Part II, we’ll examine clues about the real-life identity left behind by “Fearless,” the nickname chosen by the proprietor of the SWAT USA Drops service.