Krebs – Page 35 – PossibleThreat Articles

‘Wormable’ Flaw Leads January 2022 Patch Tuesday

February 2, 2022 0 Comments cve-2021-22947, cve-2021-36976, cve-2022-21846, cve-2022-21907, dustin childs, exchange server, http protocol stack, Latest Warnings, microsoft patch tuesday january 2022, National Security Agency, rapid7, satnam narang, tenable, The Coming Storm, Time to Patch, trend micro, zero day initiative

Credit to Author: BrianKrebs| Date: Tue, 11 Jan 2022 22:18:55 +0000

Microsoft today released updates to plug nearly 120 security holes in Windows and supported software. Six of the vulnerabilities were publicly detailed already, potentially giving attackers a head start in figuring out how to exploit them in unpatched systems. More concerning, Microsoft warns that one of the flaws fixed this month is “wormable,” meaning no human interaction would be required for an attack to spread from one vulnerable Windows box to another.

Independent Krebs Security

500M Avira Antivirus Users Introduced to Cryptomining

February 2, 2022 0 Comments A Little Sunshine, avast, avira crypto, Cryptomining, norton 360, norton crypto, nortonlifelock

Credit to Author: BrianKrebs| Date: Sat, 08 Jan 2022 18:05:14 +0000

Many readers were surprised to learn recently that the popular Norton 360 antivirus suite now ships with a program which lets customers make money mining virtual currency. But Norton 360 isn’t alone in this dubious endeavor: Avira antivirus — which has built a base of 500 million users worldwide largely by making the product free — was recently bought by the same company that owns Norton 360 and is introducing its customers to a service called Avira Crypto.

Independent Krebs Security

Norton 360 Now Comes With a Cryptominer

February 2, 2022 0 Comments A Little Sunshine, adi robertson, chris vickery, cory doctorow, eth, ethereum, ncrypt.exe, norton crypto, nortonlifelock, radioshack, symantec corp.

Credit to Author: BrianKrebs| Date: Thu, 06 Jan 2022 17:26:10 +0000

Norton 360, one of the most popular antivirus products on the market today, has installed a cryptocurrency mining program on its customers’ computers. Norton’s parent firm says the cloud-based service that activates the program and enables customers to profit from the scheme — in which the company keeps 15 percent of any currencies mined — is “opt-in,” meaning users have to agree to enable it. But many Norton users complain the mining program is difficult to remove, and reactions from longtime customers have ranged from unease and disbelief to, “Dude, where’s my crypto?”

Independent Krebs Security

Coronavirus Widens the Money Mule Pool

March 17, 2020 0 Comments A Little Sunshine, alex holden, bitcoin atm scam, coronavirus scam, globalgiving, Hold Security, holdsecurity.com, kevin conroy, Latest Warnings, vasty health care foundation, vastyhealthcarefoundation.com, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 17 Mar 2020 22:11:46 +0000

With many people being laid off or working from home thanks to the Coronavirus pandemic, cybercrooks are almost certain to have more than their usual share of recruitable “money mules” — people who get roped into money laundering schemes under the pretense of a work-at-home job offer. Here’s the story of one upstart mule factory that spoofs a major nonprofit and tells new employees they’ll be collecting and transmitting donations for an international “Coronavirus Relief Fund.”

Independent Krebs Security

The Web’s Bot Containment Unit Needs Your Help

March 17, 2020 0 Comments cisco systems, richard perlotto, shadowserver foundation, The Coming Storm

Credit to Author: BrianKrebs| Date: Mon, 16 Mar 2020 12:55:01 +0000

Anyone who’s seen the 1984 hit movie Ghostbusters likely recalls the pivotal scene where a government bureaucrat orders the shutdown of the ghost containment unit, effectively unleashing a pent-up phantom menace on New York City. Now, something similar is in danger of happening in cyberspace: Shadowserver.org, an all-volunteer nonprofit organization that works to help Internet service providers (ISPs) identify and quarantine malware infections and botnets, has lost its longtime primary source of funding.

Independent Krebs Security

Live Coronavirus Map Used to Spread Malware

March 17, 2020 0 Comments azorult, coronavirus malware, coronavirus map, covid-19 malware, johns hopkins university, Latest Warnings, The Coming Storm

Credit to Author: BrianKrebs| Date: Thu, 12 Mar 2020 15:53:26 +0000

Cybercriminals constantly latch on to news items that captivate the public’s attention, but usually they do so by sensationalizing the topic or spreading misinformation about it. Recently, however, cybercrooks have started disseminating real-time, accurate information about global infection rates tied to the Coronavirus/COVID-19 pandemic in a bid to infect computers with malicious software.

Independent Krebs Security

Crafty Web Skimming Domain Spoofs “https”

March 17, 2020 0 Comments .ps, A Little Sunshine, Akamai, cheney bros. inc., content security policy, denis sinegubko, grandwesternsteaks.com, jerome segura, malwarebytes, privacy.com, publicwww, ryan barnett, subresource integrity, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 12 Mar 2020 00:28:57 +0000

Earlier today, KrebsOnSecurity alerted the 10th largest food distributor in the United States that one of its Web sites had been hacked and retrofitted with code that steals credit card and login data. While such Web site card skimming attacks are not new, this intrusion leveraged a sneaky new domain that hides quite easily in a hacked site’s source code: “http[.]ps” (the actual malicious domain does not include the brackets, which are there to keep readers from being able to click on it).

Independent Krebs Security

Microsoft Patch Tuesday, March 2020 Edition

March 17, 2020 0 Comments animesh jain, application inspector, cve-2020-0688, cve-2020-0852, cve-2020-0872, Qualys, recorded future, Time to Patch

Credit to Author: BrianKrebs| Date: Tue, 10 Mar 2020 23:44:29 +0000

Microsoft Corp. today released updates to plug more than 100 security holes in its various Windows operating systems and associated software. If you (ab)use Windows, please take a moment to read this post, backup your system(s), and patch your PCs.

Independent Krebs Security

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

March 17, 2020 0 Comments antichat, Breadcrumbs, firsov arrest, firsov indictment, hm@mail.ru, isis, kirill firsov, Ne'er-Do-Well News, xeka

Credit to Author: BrianKrebs| Date: Tue, 10 Mar 2020 14:17:42 +0000

FBI officials last week arrested a Russian computer security researcher on suspicion of operating deer.io, a vast marketplace for buying and selling stolen account credentials for thousands of popular online services and stores. Kirill V. Firsov was arrested Mar. 7 after arriving at New York’s John F. Kennedy Airport, according to court documents unsealed Monday. Prosecutors with the U.S. District Court for the Southern District of California allege Firsov was the administrator of deer.io, an online platform that hosted more than 24,000 shops for selling stolen and/or hacked usernames and passwords for a variety of top online destinations.

Independent Krebs Security

U.S. Govt. Makes it Harder to Get .Gov Domains

March 17, 2020 0 Comments .gov, cybersecurity and infrastructure security agency, john levine, other, the internet for dummies, U.S. Department of Homeland Security, u.s. general services administration

Credit to Author: BrianKrebs| Date: Sat, 07 Mar 2020 15:01:21 +0000

The federal agency in charge of issuing .gov domain names is enacting new requirements for validating the identity of people requesting them. The additional measures come less than four months after KrebsOnSecurity published research suggesting it was relatively easy for just about anyone to get their very own .gov domain. In November’s piece It’s Way Too Easy to Get a .gov Domain Name, an anonymous source detailed how he obtained one by impersonating an official at a small town in Rhode Island that didn’t already have its own .gov.