Krebs – Page 35 – PossibleThreat Articles

Live Coronavirus Map Used to Spread Malware

March 17, 2020 0 Comments azorult, coronavirus malware, coronavirus map, covid-19 malware, johns hopkins university, Latest Warnings, The Coming Storm

Credit to Author: BrianKrebs| Date: Thu, 12 Mar 2020 15:53:26 +0000

Cybercriminals constantly latch on to news items that captivate the public’s attention, but usually they do so by sensationalizing the topic or spreading misinformation about it. Recently, however, cybercrooks have started disseminating real-time, accurate information about global infection rates tied to the Coronavirus/COVID-19 pandemic in a bid to infect computers with malicious software.

Independent Krebs Security

Crafty Web Skimming Domain Spoofs “https”

March 17, 2020 0 Comments .ps, A Little Sunshine, Akamai, cheney bros. inc., content security policy, denis sinegubko, grandwesternsteaks.com, jerome segura, malwarebytes, privacy.com, publicwww, ryan barnett, subresource integrity, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 12 Mar 2020 00:28:57 +0000

Earlier today, KrebsOnSecurity alerted the 10th largest food distributor in the United States that one of its Web sites had been hacked and retrofitted with code that steals credit card and login data. While such Web site card skimming attacks are not new, this intrusion leveraged a sneaky new domain that hides quite easily in a hacked site’s source code: “http[.]ps” (the actual malicious domain does not include the brackets, which are there to keep readers from being able to click on it).

Independent Krebs Security

Microsoft Patch Tuesday, March 2020 Edition

March 17, 2020 0 Comments animesh jain, application inspector, cve-2020-0688, cve-2020-0852, cve-2020-0872, Qualys, recorded future, Time to Patch

Credit to Author: BrianKrebs| Date: Tue, 10 Mar 2020 23:44:29 +0000

Microsoft Corp. today released updates to plug more than 100 security holes in its various Windows operating systems and associated software. If you (ab)use Windows, please take a moment to read this post, backup your system(s), and patch your PCs.

Independent Krebs Security

FBI Arrests Alleged Owner of Deer.io, a Top Broker of Stolen Accounts

March 17, 2020 0 Comments antichat, Breadcrumbs, firsov arrest, firsov indictment, hm@mail.ru, isis, kirill firsov, Ne'er-Do-Well News, xeka

Credit to Author: BrianKrebs| Date: Tue, 10 Mar 2020 14:17:42 +0000

FBI officials last week arrested a Russian computer security researcher on suspicion of operating deer.io, a vast marketplace for buying and selling stolen account credentials for thousands of popular online services and stores. Kirill V. Firsov was arrested Mar. 7 after arriving at New York’s John F. Kennedy Airport, according to court documents unsealed Monday. Prosecutors with the U.S. District Court for the Southern District of California allege Firsov was the administrator of deer.io, an online platform that hosted more than 24,000 shops for selling stolen and/or hacked usernames and passwords for a variety of top online destinations.

Independent Krebs Security

U.S. Govt. Makes it Harder to Get .Gov Domains

March 17, 2020 0 Comments .gov, cybersecurity and infrastructure security agency, john levine, other, the internet for dummies, U.S. Department of Homeland Security, u.s. general services administration

Credit to Author: BrianKrebs| Date: Sat, 07 Mar 2020 15:01:21 +0000

The federal agency in charge of issuing .gov domain names is enacting new requirements for validating the identity of people requesting them. The additional measures come less than four months after KrebsOnSecurity published research suggesting it was relatively easy for just about anyone to get their very own .gov domain. In November’s piece It’s Way Too Easy to Get a .gov Domain Name, an anonymous source detailed how he obtained one by impersonating an official at a small town in Rhode Island that didn’t already have its own .gov.

Independent Krebs Security

The Case for Limiting Your Browser Extensions

March 3, 2020 0 Comments 212b3d4039ab5319ec.js, blue shield of california, Breadcrumbs, cndpps, domaintools.com, frankomedison1020@gmail.com, icontent, linkojager, metrext, monetizus, page ruler extension, peter newnham, thisadsfor

Credit to Author: BrianKrebs| Date: Tue, 03 Mar 2020 15:39:53 +0000

Last week, KrebsOnSecurity reported to health insurance provider Blue Shield of California that its Web site was flagged by multiple security products as serving malicious content. Blue Shield quickly removed the unauthorized code. An investigation determined it was injected by a browser extension installed on the computer of a Blue Shield employee who’d edited the Web site in the past month. The incident is a reminder that browser extensions — however useful or fun they may seem when you install them — typically have a great deal of power and can effectively read and/or write all data in your browsing sessions. And as we’ll see, it’s not uncommon for extension makers to sell or lease their user base to shady advertising firms, or in some cases abandon them to outright cybercriminals.

Independent Krebs Security

French Firms Rocked by Kasbah Hacker?

March 2, 2020 0 Comments +212611604438, 4iq.com, Breadcrumbs, domaintools.com, fatal.001, fatalw01, Hyas, hyas.com, ing.equipepro@gmail.com, njRAT, sasha angus, talainine.com, yamosoft, yassine algangaf, yassine majidi

Credit to Author: BrianKrebs| Date: Mon, 02 Mar 2020 18:07:16 +0000

A large number of French critical infrastructure firms were hacked as part of an extended malware campaign that appears to have been orchestrated by at least one attacker based in Morocco, KrebsOnSecurity has learned. The individual thought to be involved has earned accolades from the likes of Apple, Dell, and Microsoft for helping to find and fix security vulnerabilities in their products.

Independent Krebs Security

FCC Proposes to Fine Wireless Carriers $200M for Selling Customer Location Data

February 28, 2020 0 Comments FCC, Federal Communications Commission, georgetown law institute for technology law and policy, Gigi Sohn, joseph cox, new york times, securus technologies, sen. ron wyden, The Coming Storm, vice.com, wall street journal

Credit to Author: BrianKrebs| Date: Fri, 28 Feb 2020 22:12:10 +0000

The U.S. Federal Communications Commission (FCC) today proposed fines of more than $200 million against the nation’s four largest wireless carriers for selling access to their customers’ location information without taking adequate precautions to prevent unauthorized access to that data. While the fines would be among the largest the FCC has ever levied, critics say the penalties don’t go far enough to deter wireless carriers from continuing to sell customer location data.

Independent Krebs Security

Zyxel 0day Affects its Firewall Products, Too

February 26, 2020 0 Comments 0day, alex holden, Latest Warnings, Time to Patch, zero day, zyxel

Credit to Author: BrianKrebs| Date: Wed, 26 Feb 2020 14:43:31 +0000

On Monday, networking hardware maker Zyxel released security updates to plug a critical security hole in its network attached storage (NAS) devices that is being actively exploited by crooks who specialize in deploying ransomware. Today, Zyxel acknowledged the same flaw is present in many of its firewall products.

Independent Krebs Security

Zyxel Fixes 0day in Network Storage Devices

February 24, 2020 0 Comments 0day, 500mhz, alex holden, cert coordination center, cert/cc, cve-2020-9054, dhs, emotet, Hold Security, Latest Warnings, Ransomware, The Coming Storm, Time to Patch, zero day, zyxel communications corp.

Credit to Author: BrianKrebs| Date: Mon, 24 Feb 2020 17:13:11 +0000

Networking hardware vendor Zyxel today released an update to fix a critical flaw in many of its network attached storage (NAS) devices that can be used to remotely commandeer them. The patch comes 12 days after KrebsOnSecurity alerted the company that precise instructions for exploiting the vulnerability were being sold for $20,000 in the cybercrime underground. Based in Taiwan, Zyxel Communications Corp. (a.k.a “ZyXEL”) is a maker of networking devices, including Wi-Fi routers, NAS products and hardware firewalls. The company has roughly 1,500 employees and boasts some 100 million devices deployed worldwide. While in many respects the class of vulnerability addressed in this story is depressingly common among Internet of Things (IoT) devices, the flaw is notable because it has attracted the interest of groups specializing in deploying ransomware at scale.