Krebs – Page 44 – PossibleThreat Articles

Credit to Author: BrianKrebs| Date: Mon, 12 Aug 2019 20:30:17 +0000

The U.S. Securities and Exchange Commission (SEC) is investigating a security failure on the Web site of real estate title insurance giant First American Financial Corp. that exposed more than 885 million personal and financial records tied to mortgage deals going back to 2003, KrebsOnSecurity has learned.

Independent Krebs

Who Owns Your Wireless Service? Crooks Do.

August 27, 2019 0 Comments A Little Sunshine, Aaron Mackey, Andy Greenberg, AT&T, EFF, Electronic Frontier Foundation, Federal Communications Commission, Gigi Sohn, Google Voice, Nicholas Truglia, robocalls, SIM swapping, The Coming Storm, wired

Credit to Author: BrianKrebs| Date: Wed, 07 Aug 2019 22:43:58 +0000

Incessantly annoying and fraudulent robocalls. Corrupt wireless company employees taking hundreds of thousands of dollars in bribes to unlock and hijack mobile phone service. Wireless providers selling real-time customer location data, despite repeated promises to the contrary. A noticeable uptick in SIM-swapping attacks that lead to multi-million dollar cyberheists. If you are somehow under the impression that you — the customer — are in control over the security, privacy and integrity of your mobile phone service, think again. And you’d be forgiven if you assumed the major wireless carriers or federal regulators had their hands firmly on the wheel.

Independent Krebs

iNSYNQ Ransom Attack Began With Phishing Email

August 27, 2019 0 Comments A Little Sunshine, Accenture iDefense, alex holden, CrowdStrike, Elliot Luchansky, Hold Security, iNSYNQ, Megacortex ransomware

Credit to Author: BrianKrebs| Date: Fri, 09 Aug 2019 18:18:55 +0000

A ransomware outbreak that hit QuickBooks cloud hosting firm iNSYNQ in mid-July appears to have started with an email phishing attack that snared an employee working in sales for the company, KrebsOnSecurity has learned. It also looks like the intruders spent roughly ten days rooting around iNSYNQ’s internal network to properly stage things before unleashing the ransomware. iNSYNQ ultimately declined to pay the ransom demand, and it is still working to completely restore customer access to files.

Independent Krebs

The Risk of Weak Online Banking Passwords

August 27, 2019 0 Comments 2fa, Aite Group, alex holden, Alissa Knight, Brian Costello, Financial Data Exchange, Hold Security, Latest Warnings, Mint, Paypal, Plaid, The Coming Storm, YNAB, Yodlee, Zelle

Credit to Author: BrianKrebs| Date: Mon, 05 Aug 2019 14:04:27 +0000

If you bank online and choose weak or re-used passwords, there’s a decent chance your account could be pilfered by cyberthieves — even if your bank offers multi-factor authentication as part of its login process. This story is about how crooks increasingly are abusing third-party financial aggregation services like Mint, Plaid, Yodlee, YNAB and others to surveil and drain consumer accounts online.