A Little Sunshine – PossibleThreat Articles

An Interview With the Target & Home Depot Hacker

November 14, 2024 0 Comments A Little Sunshine, aleksandr ermakov, chronopay, Data Breaches, dmitri golubov, helkern, home depot breach, hydra market, mikemike, mikhail lenin, mikhail shefel, Ne'er-Do-Well News, pavel vrublevsky, peter vrublevsky, pharma wars, sprut, sugar ransomware, target breach

Credit to Author: BrianKrebs| Date: Fri, 15 Nov 2024 04:45:32 +0000

In December 2023, KrebsOnSecurity revealed the real-life identity of Rescator, the nickname used by a Russian cybercriminal who sold more than 100 million payment cards stolen from Target and Home Depot between 2013 and 2014. Moscow resident Mikhail Shefel, who confirmed using the Rescator identity in a recent interview, also admitted reaching out because he is broke and seeking publicity for several new money making schemes.

Independent Krebs Security

FBI: Spike in Hacked Police Emails, Fake Subpoenas

November 9, 2024 0 Comments A Little Sunshine, emergency data request, fake edr, FBI, kodex, Latest Warnings, matt donahue, pwnstar, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Sat, 09 Nov 2024 19:20:26 +0000

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based technology companies.

Independent Krebs Security

Canadian Man Arrested in Snowflake Data Extortions

November 5, 2024 0 Comments A Little Sunshine, advance auto parts, alexander antonin moucka, at&t breach, atomwaffen division, bharat sanchar nigam ltd, Breadcrumbs, connor riley moucka, court, intelsecrets, irdev, john erin binns, judische, kiberphant0m, leak society, lending tree, mandiant, Ne'er-Do-Well News, rapelash, Satori, SIM swapping, snowflake, Ticketmaster, unc5537, verizon, waifu

Credit to Author: BrianKrebs| Date: Tue, 05 Nov 2024 17:10:04 +0000

A 26-year-old man in Ontario, Canada has been arrested for allegedly stealing data from and extorting more than 160 companies that used the cloud data service Snowflake. On October 30, Canadian authorities arrested Alexander Moucka, a.k.a. Connor Riley Moucka of Kitchener, Ontario, on a provisional arrest warrant from the United States. Bloomberg first reported Moucka’s alleged ties to the Snowflake hacks on Monday. At the end of 2023, malicious hackers learned that many large companies had uploaded huge volumes of sensitive customer data to Snowflake accounts that were protected with little more than a username and password (no multi-factor authentication required). After scouring darknet markets for stolen Snowflake account credentials, the hackers began raiding the data storage repositories used by some of the world’s largest corporations.

Independent Krebs Security

Booking.com Phishers May Leave You With Reservations

November 1, 2024 0 Comments A Little Sunshine, booking.com, Latest Warnings, phishing, secureworks, spear phishing, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Fri, 01 Nov 2024 21:12:38 +0000

A number of cybercriminal innovations are making it easier for scammers to cash in on your upcoming travel plans. This story examines a recent spear-phishing campaign that ensued when a California hotel had its booking.com credentials stolen. We’ll also explore an array of cybercrime services aimed at phishers who target hotels that rely on the world’s most visited travel website.

Independent Krebs Security

The Global Surveillance Free-for-All in Mobile Ad Data

October 23, 2024 0 Comments A Little Sunshine, accuweather, adx, android advertising id, app tracking transparency, Apple, associated press, bid request, br24, daniel's law, Electronic Frontier Foundation, eva galperin, fog reveal, gasbuddy, Google, grindr, identifier for advertisers, judge andrew f. wilkinson judicial security act, justin sherman, justyna maloney, Latest Warnings, macy's, maid, mobile advertising id, myfitnesspal, netzpolitik.org, scott maloney, sen. ron wyden, silentpush, tangles, The Coming Storm, troutman pepper, U.S. Securities and Exchange Commission, webloc, zach edwards

Credit to Author: BrianKrebs| Date: Wed, 23 Oct 2024 11:30:18 +0000

Not long ago, the ability to remotely track someone’s daily movements just by knowing their home address, employer, or place of worship was considered a powerful surveillance tool that should only be in the purview of nation states. But a new lawsuit in a likely constitutional battle over a New Jersey privacy law shows that anyone can now access this capability, thanks to a proliferation of commercial services that hoover up the digital exhaust emitted by widely-used mobile apps and websites.

Independent Krebs Security

Brazil Arrests ‘USDoD,’ Hacker in FBI Infragard Breach

October 18, 2024 0 Comments A Little Sunshine, CrowdStrike, Data Breaches, equation corp, FBI, hackread, infragard, intel 471, national public data, Ne'er-Do-Well News, netsec, RaidForums, tecmundo, tv globo, usdod

Credit to Author: BrianKrebs| Date: Fri, 18 Oct 2024 12:33:51 +0000

Brazilian authorities reportedly have arrested a 33-year-old man on suspicion of being “USDoD,” a prolific cybercriminal who rose to infamy in 2022 after infiltrating the FBI’s InfraGard program and leaking contact information for 80,000 members. More recently, USDoD was behind a breach at the consumer data broker National Public Data that led to the leak of Social Security numbers and other personal information for a significant portion of the U.S. population.

Independent Krebs Security

Sudanese Brothers Arrested in ‘AnonSudan’ Takedown

October 17, 2024 0 Comments A Little Sunshine, ahmed salah yousif omer, alaa salah yusuuf omer, amazon, anonsudan, anonymous sudan, DDoS-for-hire, FBI, godzilla botnet, infrashutdown, Ne'er-Do-Well News, skynet, u.s. department of justice, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 17 Oct 2024 14:17:07 +0000

The U.S. government on Wednesday announced the arrest and charging of two Sudanese brothers accused of running Anonymous Sudan (a.k.a. AnonSudan), a cybercrime business known for launching powerful distributed denial-of-service (DDoS) attacks against a range of targets, including dozens of hospitals, news websites and cloud providers. One of the brothers is facing life in prison for allegedly seeking to kill people with his attacks.

Independent Krebs Security

Lamborghini Carjackers Lured by $243M Cyberheist

October 9, 2024 0 Comments A Little Sunshine, angel "chi chi" borrero, anydesk, Breadcrumbs, gemini, jeandiel "box" serrano, malone "greavys" lam, Ne'er-Do-Well News, pantic, reynaldo "rey" diaz, SIM swapping, swag, the com, veer chetal, Web Fraud 2.0, wiz, zachxbt

Credit to Author: BrianKrebs| Date: Wed, 09 Oct 2024 17:36:27 +0000

The parents of a 19-year-old Connecticut honors student accused of taking part in a $243 million cryptocurrency heist in August were carjacked a week later, while out house-hunting in a brand new Lamborghini. Prosecutors say the couple was beaten and briefly kidnapped by six young men who traveled from Florida as part of a botched plan to hold the parents for ransom.

Independent Krebs Security

A Single Cloud Compromise Can Feed an Army of AI Sex Bots

October 3, 2024 0 Comments A Little Sunshine, anthropic, AWS, bedrock, chub ai, github, ian ahl, lore, nsfl, permiso security, sysdig, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 03 Oct 2024 13:05:52 +0000

Organizations that get relieved of credentials to their cloud environments can quickly find themselves part of a disturbing new trend: Cybercriminals using stolen cloud credentials to operate and resell sexualized AI-powered chat services. Researchers say these illicit chat bots, which use custom jailbreaks to bypass content filtering, often veer into darker role-playing scenarios, including child sexual exploitation and rape.

Independent Krebs Security

Crooked Cops, Stolen Laptops & the Ghost of UGNazi

September 30, 2024 0 Comments A Little Sunshine, assad faiq, cosmothegod, dream agency, enzo zellocchi, eric taylor, facebook, FBI, iris au, kenneth childs, ledger breach, mir islam, Ne'er-Do-Well News, rise agency, shopify, SIM swapping, tassilo heinrich, the godfather, tomi masters, troy woody jr., vurg, Web Fraud 2.0, zort

Credit to Author: BrianKrebs| Date: Mon, 30 Sep 2024 21:33:10 +0000

A California man accused of failing to pay taxes on tens of millions of dollars allegedly earned from cybercrime also paid local police officers hundreds of thousands of dollars to help him extort, intimidate and silence rivals and former business partners, a new indictment charges. KrebsOnSecurity has learned that many of the man’s alleged targets were members of UGNazi, a hacker group behind multiple high-profile breaches and cyberattacks back in 2012.

← Previous