August 2019 – Page 8 – PossibleThreat Articles

Cybersecurity Firm Imperva Discloses Breach

August 27, 2019 0 Comments Alissa Knight, Data Breaches, DisruptOPS, Heli Erickson, imperva, Incapsula, Rich Mogull, Web Application Firewall

Credit to Author: BrianKrebs| Date: Tue, 27 Aug 2019 16:52:58 +0000

Imperva, a leading provider of Internet firewall services that help Web sites block malicious cyberattacks, alerted customers on Tuesday that a recent data breach exposed email addresses, scrambled passwords, API keys and SSL certificates for a subset of its firewall users. Redwood Shores, Calif.-based Imperva sells firewall technology designed to detect and block various types of malicious Web traffic, from denial-of-service attacks to digital probes aimed at undermining the security of Web-based software applications.

Independent Krebs

Breach at Hy-Vee Supermarket Chain Tied to Sale of 5M+ Stolen Credit, Debit Cards

August 27, 2019 0 Comments Data Breaches, Hy-Vee breach, Joker's stash

Credit to Author: BrianKrebs| Date: Thu, 22 Aug 2019 21:38:47 +0000

On Tuesday of this week, one of the more popular underground stores peddling credit and debit card data stolen from hacked merchants announced a blockbuster new sale: More than 5.3 million new accounts belonging to cardholders from 35 U.S. states. Multiple sources now tell KrebsOnSecurity that the card data came from compromised gas pumps, coffee shops and restaurants operated by Hy-Vee, an Iowa-based company that operates a chain of more than 245 supermarkets throughout the Midwestern United States.

Independent Krebs

Forced Password Reset? Check Your Assumptions

August 27, 2019 0 Comments A Little Sunshine, Alex Weinert, Anthony Moisant, credential stuffing, Glassdoor, Microsoft

Credit to Author: BrianKrebs| Date: Wed, 21 Aug 2019 11:58:53 +0000

Almost weekly now I hear from an indignant reader who suspects a data breach at a Web site they frequent that has just asked the reader to reset their password. Further investigation almost invariably reveals that the password reset demand was not the result of a breach but rather the site’s efforts to identify customers who are reusing passwords from other sites that have already been hacked. But ironically, many companies taking these proactive steps soon discover that their explanation as to why they’re doing it can get misinterpreted as more evidence of lax security. This post attempts to unravel what’s going on here.

Independent Krebs

The Rise of “Bulletproof” Residential Networks

August 27, 2019 0 Comments 202-643-8533, 868-360-9983, A Little Sunshine, Akamai, Breadcrumbs, Hackforums, Hexproxy, Hyas, IAPS Security Services, Joshua Powder, joshua.powder@gmail.com, Laskh Cybersecurity and Defense LLC, Men Danil Valentinovich, Profitvolt, Residential Networking Solutions LLC, residential proxies, Resnet, resnetworking, Serversget, shoe bots, sneaker bots, The Coming Storm, Wireless Data Service Provider Corporation

Credit to Author: BrianKrebs| Date: Mon, 19 Aug 2019 13:03:32 +0000

Cybercrooks increasingly are anonymizing their malicious traffic by routing it through residential broadband and wireless data connections. Most often, those connections are hacked computers, mobile phones, or home routers. But this is the story of a sprawling “bulletproof residential VPN” service that appears to have been built by acquiring chunks of Internet addresses from some the largest ISPs and mobile data providers in the United States and abroad.

Independent Krebs

Meet Bluetana, the Scourge of Pump Skimmers

August 27, 2019 0 Comments A Little Sunshine, Aaron Schulman, All About Skimmers, Bluetana, Nishant Bhaskar, pump skimmers, U.S. Secret Service, University of California San Diego, University of Illinois Urbana-Champaign, USENIX

Credit to Author: BrianKrebs| Date: Wed, 14 Aug 2019 12:25:32 +0000

“Bluetana,” a new mobile app that looks for Bluetooth-based payment card skimmers hidden inside gas pumps, is helping police and state employees more rapidly and accurately locate compromised fuel stations across the nation, a study released this week suggests. Data collected in the course of the investigation also reveals some fascinating details that may help explain why these pump skimmers are so lucrative and ubiquitous.

Independent Krebs

Patch Tuesday, August 2019 Edition

August 27, 2019 0 Comments August 2019 Edition, Latest Warnings, Microsoft Patch Tuesday, Time to Patch

Credit to Author: BrianKrebs| Date: Tue, 13 Aug 2019 21:57:13 +0000

Most Microsoft Windows (ab)users probably welcome the monthly ritual of applying security updates about as much as they look forward to going to the dentist: It always seems like you were there just yesterday, and you never quite know how it’s all going to turn out. Fortunately, this month’s patch batch from Redmond is mercifully light, at least compared to last month.

Independent Krebs

SEC Investigating Data Leak at First American Financial Corp.

August 27, 2019 0 Comments Ben Shoval, Data Breaches, First American Financial Corp., The Coming Storm, U.S. Securities and Exchange Commission

Credit to Author: BrianKrebs| Date: Mon, 12 Aug 2019 20:30:17 +0000

The U.S. Securities and Exchange Commission (SEC) is investigating a security failure on the Web site of real estate title insurance giant First American Financial Corp. that exposed more than 885 million personal and financial records tied to mortgage deals going back to 2003, KrebsOnSecurity has learned.

Independent Krebs

iNSYNQ Ransom Attack Began With Phishing Email

August 27, 2019 0 Comments A Little Sunshine, Accenture iDefense, alex holden, CrowdStrike, Elliot Luchansky, Hold Security, iNSYNQ, Megacortex ransomware

Credit to Author: BrianKrebs| Date: Fri, 09 Aug 2019 18:18:55 +0000

A ransomware outbreak that hit QuickBooks cloud hosting firm iNSYNQ in mid-July appears to have started with an email phishing attack that snared an employee working in sales for the company, KrebsOnSecurity has learned. It also looks like the intruders spent roughly ten days rooting around iNSYNQ’s internal network to properly stage things before unleashing the ransomware. iNSYNQ ultimately declined to pay the ransom demand, and it is still working to completely restore customer access to files.

Independent Krebs

Who Owns Your Wireless Service? Crooks Do.

August 27, 2019 0 Comments A Little Sunshine, Aaron Mackey, Andy Greenberg, AT&T, EFF, Electronic Frontier Foundation, Federal Communications Commission, Gigi Sohn, Google Voice, Nicholas Truglia, robocalls, SIM swapping, The Coming Storm, wired

Credit to Author: BrianKrebs| Date: Wed, 07 Aug 2019 22:43:58 +0000

Incessantly annoying and fraudulent robocalls. Corrupt wireless company employees taking hundreds of thousands of dollars in bribes to unlock and hijack mobile phone service. Wireless providers selling real-time customer location data, despite repeated promises to the contrary. A noticeable uptick in SIM-swapping attacks that lead to multi-million dollar cyberheists. If you are somehow under the impression that you — the customer — are in control over the security, privacy and integrity of your mobile phone service, think again. And you’d be forgiven if you assumed the major wireless carriers or federal regulators had their hands firmly on the wheel.

Independent Krebs

The Risk of Weak Online Banking Passwords

August 27, 2019 0 Comments 2fa, Aite Group, alex holden, Alissa Knight, Brian Costello, Financial Data Exchange, Hold Security, Latest Warnings, Mint, Paypal, Plaid, The Coming Storm, YNAB, Yodlee, Zelle

Credit to Author: BrianKrebs| Date: Mon, 05 Aug 2019 14:04:27 +0000

If you bank online and choose weak or re-used passwords, there’s a decent chance your account could be pilfered by cyberthieves — even if your bank offers multi-factor authentication as part of its login process. This story is about how crooks increasingly are abusing third-party financial aggregation services like Mint, Plaid, Yodlee, YNAB and others to surveil and drain consumer accounts online.