Krebs – Page 4 – PossibleThreat Articles

Six 0-Days Lead Microsoft’s August 2024 Patch Push

August 13, 2024 0 Comments cve-2024-38106, cve-2024-38107, cve-2024-38178, cve-2024-38189, cve-2024-38193, cve-2024-38213, kev breen, mark of the web, microsoft project, Time to Patch, windows edge, zero day initiative

Credit to Author: BrianKrebs| Date: Tue, 13 Aug 2024 21:43:05 +0000

Microsoft today released updates to fix at least 90 security vulnerabilities in Windows and related software, including a whopping six zero-day flaws that are already being actively exploited by attackers.

Independent Krebs Security

Cybercrime Rapper Sues Bank over Fraud Investigation

August 7, 2024 0 Comments 859-963-6243, A Little Sunshine, constella.ai, devon turner, domaintools.com, Ne'er-Do-Well News, punchmade dev

Credit to Author: BrianKrebs| Date: Wed, 07 Aug 2024 19:01:49 +0000

In January, KrebsOnSecurity wrote about rapper Punchmade Dev, whose music videos sing the praises of a cybercrime lifestyle. That story showed how Punchmade’s social media profiles promoted Punchmade-themed online stores selling bank account and payment card data. Now the Kentucky native is suing his financial institution after it blocked a $75,000 wire transfer and froze his account, citing an active law enforcement investigation.

Independent Krebs Security

Low-Drama ‘Dark Angels’ Reap Record Ransoms

August 5, 2024 0 Comments A Little Sunshine, amerisourcebergen corporation, bleeping computer, brett stone-gross, cencora, dark angels, Data Breaches, dunghill leak, Ransomware, sabre, sophos, sysco, threatlabz, zscaler

Credit to Author: BrianKrebs| Date: Mon, 05 Aug 2024 19:52:35 +0000

A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. Security experts say the Dark Angels have been around since 2021, but the group doesn’t get much press because they work alone and maintain a low profile, picking one target at a time and favoring mass data theft over disrupting the victim’s operations.

Independent Krebs Security

U.S. Trades Cybercriminals to Russia in Prisoner Swap

August 1, 2024 0 Comments alexander vinnik, alsu kurmasheva, BTC-e, evan gershkovich, german moyzhes, ivan ermakov, maxim marchenko, mt gox, Ne'er-Do-Well News, paul whelan, Ransomware, roman seleznev, russia's war on ukraine, trickbot, vadim krasikov, vladimir putin, vladislav klyushin

Credit to Author: BrianKrebs| Date: Fri, 02 Aug 2024 00:15:44 +0000

Twenty-four prisoners were freed today in an international prisoner swap between Russia and Western countries. Among the eight Russians repatriated were five convicted cybercriminals. In return, Russia has reportedly released 16 prisoners, including Wall Street Journal reporter Evan Gershkovich and ex-U.S. Marine Paul Whelan.

Independent Krebs Security

Don’t Let Your Domain Name Become a “Sitting Duck”

July 31, 2024 0 Comments A Little Sunshine, apwg, dave mitchell, digicert, digital ocean, dnsmadeeasy, eclypsium, Hostinger, infoblox, Latest Warnings, matthew bryant, sitting duck domains, steve job, Time to Patch, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Wed, 31 Jul 2024 12:06:45 +0000

More than a million domain names — including many registered by Fortune 100 firms and brand protection companies — are vulnerable to takeover by cybercriminals thanks to authentication weaknesses at a number of large web hosting providers and domain registrars, new research finds.

Independent Krebs Security

Crooks Bypassed Google’s Email Verification to Create Workspace Accounts, Access 3rd-Party Services

July 26, 2024 0 Comments A Little Sunshine, anu yamunan, dropbox, Google, google workspace, Latest Warnings, sign in with google, Slack, squarespace, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Fri, 26 Jul 2024 21:31:54 +0000

Google says it recently fixed an authentication weakness that allowed crooks to circumvent email verification needed to create a Google Workspace account, and leverage that to impersonate a domain holder to third-party services that allow logins through Google’s “Sign in with Google” feature.

Independent Krebs Security

Phish-Friendly Domain Registry “.top” Put on Notice

July 23, 2024 0 Comments .top, A Little Sunshine, Anti-Phishing Working Group, dave piscitello, interisle consulting group, internet corporation for assigned names and numbers, jiangsu bangning science & technology co. ltd, Latest Warnings, The Coming Storm

Credit to Author: BrianKrebs| Date: Tue, 23 Jul 2024 19:41:51 +0000

The Chinese company in charge of handing out domain names ending in “.top” has been given until mid-August 2024 to show that it has put in place systems for managing phishing reports and suspending abusive domains, or else forfeit its license to sell domains. The warning comes amid the release of new findings that .top was the most common suffix in phishing websites over the past year, second only to domains ending in “.com.”

Independent Krebs Security

Global Microsoft Meltdown Tied to Bad Crowdstrike Update

July 19, 2024 0 Comments A Little Sunshine, blue screen of death, CrowdStrike, george kurtz, Latest Warnings, Microsoft, Time to Patch

Credit to Author: BrianKrebs| Date: Fri, 19 Jul 2024 14:24:27 +0000

A faulty software update from cybersecurity vendor Crowdstrike crippled countless Microsoft Windows computers across the globe today, disrupting everything from airline travel and financial institutions to hospitals and businesses online. Crowdstrike said a fix has been deployed, but experts say the recovery from this outage could take some time, as Crowdstrike’s solution needs to be applied manually on a per-machine basis.

Independent Krebs Security

Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks

July 15, 2024 0 Comments A Little Sunshine, Data Breaches, google domains, Latest Warnings, metamask, paradigm, squarespace, taylor monahan, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Mon, 15 Jul 2024 15:24:46 +0000

At least a dozen organizations with domain names at domain registrar Squarespace saw their websites hijacked last week. Squarespace bought all assets of Google Domains a year ago, but many customers still haven’t set up their new accounts. Experts say malicious hackers learned they could commandeer any migrated Squarespace accounts that hadn’t yet been registered, merely by supplying an email address tied to an existing domain.

Independent Krebs Security

Crooks Steal Phone, SMS Records for Nearly All AT&T Customers

July 12, 2024 0 Comments A Little Sunshine, advance auto parts, allstate, anheuser-busch, at&t breach, Data Breaches, FBI, Latest Warnings, los angeles unified, mitsubishi, neiman marcus, progressive, pure storage, santander bank, snowflake hack, state farm, techcrunch, Ticketmaster, U.S. Securities and Exchange Commission, wired

Credit to Author: BrianKrebs| Date: Fri, 12 Jul 2024 18:12:20 +0000

AT&T Corp. disclosed today that a new data breach has exposed phone call and text message records for roughly 110 million people — nearly all of its customers. AT&T said it delayed disclosing the incident in response to “national security and public safety concerns,” noting that some of the records included data that could be used to determine where a call was made or text message sent. AT&T also acknowledged the customer records were exposed in a cloud database that was protected only by a username and password (no multi-factor authentication needed).