A Little Sunshine – Page 9 – PossibleThreat Articles

Russian Reshipping Service ‘SWAT USA Drop’ Exposed

November 5, 2023 0 Comments A Little Sunshine, drops, drops for stuff, fearlless, Ne'er-Do-Well News, reshipping mules, stuffers, swat usa drop service, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Thu, 02 Nov 2023 19:55:34 +0000

One of the largest cybercrime services for laundering stolen merchandise was hacked recently, exposing its internal operations, finances and organizational structure. Here’s a closer look at the Russia-based SWAT USA Drop Service, which currently employs more than 1,200 people across the United States who are knowingly or unwittingly involved in reshipping expensive consumer goods purchased with stolen credit cards.

Independent Krebs Security

.US Harbors Prolific Malicious Link Shortening Service

October 31, 2023 0 Comments A Little Sunshine, black pumas, blackpumaoct33@ukr.net, godaddy, infoblox, josef bakhovsky, kristaps ronka, leila puma, malicious link shortener, namecheap, namesilo, national telecommunications and information administration, prolific puma, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 31 Oct 2023 13:26:55 +0000

The top-level domain for the United States — .US — is home to thousands of newly-registered domains tied to a malicious link shortening service that facilitates malware and phishing scams, new research suggests. The findings come close on the heels of a report that identified .US domains as among the most prevalent in phishing attacks over the past year.

Independent Krebs Security

NJ Man Hired Online to Firebomb, Shoot at Homes Gets 13 Years in Prison

October 23, 2023 0 Comments A Little Sunshine, Ne'er-Do-Well News, patrick mcgovern-allen, violence-as-a-service

Credit to Author: BrianKrebs| Date: Mon, 23 Oct 2023 13:08:27 +0000

A 22-year-old New Jersey man has been sentenced to more than 13 years in prison for participating in a firebombing and a shooting at homes in Pennsylvania last year. Patrick McGovern-Allen was the subject of a Sept. 4, 2022 story here about the emergence of “violence-as-a-service” offerings, where random people from the Internet hire themselves out to perform a variety of local, physical attacks, including firebombing a home, “bricking” windows, slashing tires, or performing a drive-by shooting at someone’s residence.

Independent Krebs Security

Hackers Stole Access Tokens from Okta’s Support Unit

October 23, 2023 0 Comments A Little Sunshine, beyondtrust, charlotte wylie, Data Breaches, marc maiffret, okta, okta breach

Credit to Author: BrianKrebs| Date: Fri, 20 Oct 2023 18:39:23 +0000

Okta, a company that provides identity tools like multi-factor authentication and single sign-on to thousands of businesses, has suffered a security breach involving a compromise of its customer support unit, KrebsOnSecurity has learned. Okta says the incident affected a “very small number” of customers, however it appears the hackers responsible had access to Okta’s support platform for at least two weeks before the company fully contained the intrusion.

Independent Krebs Security

The Fake Browser Update Scam Gets a Makeover

October 18, 2023 0 Comments A Little Sunshine, binance smart chain, bnb smart chain, clearfake, dusty miller, guardio labs, Latest Warnings, nati tal, oleg zaytsev, randy mceoin, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Wed, 18 Oct 2023 14:03:28 +0000

One of the oldest malware tricks in the book — hacked websites claiming visitors need to update their Web browser before they can view any content — has roared back to life in the past few months. New research shows the attackers behind one such scheme have developed an ingenious way of keeping their malware from being taken down by security experts or law enforcement: By hosting the malicious files on a decentralized, anonymous cryptocurrency blockchain.

Independent Krebs Security

Phishers Spoof USPS, 12 Other Natl’ Postal Services

October 9, 2023 0 Comments A Little Sunshine, alibaba, correos.es, dnslytics.com, domaintools, Latest Warnings, poste italiane, posti, postnl, postnord, ua-80133954-3, urlscan.io, usps, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Mon, 09 Oct 2023 20:39:43 +0000

Recent weeks have seen a sizable uptick in the number of phishing scams targeting U.S. Postal Service (USPS) customers. Here’s a look at an extensive SMS phishing operation that tries to steal personal and financial data by spoofing the USPS, as well as postal services in at least a dozen other countries worldwide.

Independent Krebs Security

Don’t Let Zombie Zoom Links Drag You Down

October 2, 2023 0 Comments A Little Sunshine, charan akiri, Latest Warnings, LinkedIn, The Coming Storm, zoom, zoom personal meeting id

Credit to Author: BrianKrebs| Date: Mon, 02 Oct 2023 15:43:34 +0000

Many organizations — including quite a few Fortune 500 firms — have exposed web links that allow anyone to initiate a Zoom video conference meeting as a valid employee. These company-specific Zoom links, which include a permanent user ID number and an embedded passcode, can work indefinitely and expose an organization’s employees, customers or partners to phishing and other social engineering attacks.

Independent Krebs Security

LastPass: ‘Horse Gone Barn Bolted’ is Strong Password

September 22, 2023 0 Comments A Little Sunshine, Data Breaches, international computer science institute, karim toubba, lastpass breach, nicholas weaver, The Coming Storm, Web Fraud 2.0, wladimir palant

Credit to Author: BrianKrebs| Date: Fri, 22 Sep 2023 23:41:09 +0000

The password manager service LastPass is now forcing some of its users to pick longer master passwords. LastPass says the changes are needed to ensure all customers are protected by their latest security improvements. But critics say the move is little more than a public relations stunt that will do nothing to help countless early adopters whose password vaults were exposed in a 2022 breach at LastPass.

Independent Krebs Security

Who’s Behind the 8Base Ransomware Website?

September 18, 2023 0 Comments @htmalgae, 8base ransomware, A Little Sunshine, andrei kolev, gitlab, jcube group, Ne'er-Do-Well News, Ransomware, vmware

Credit to Author: BrianKrebs| Date: Tue, 19 Sep 2023 02:12:53 +0000

The victim shaming website operated by the cybercriminals behind 8Base — currently one of the more active ransomware groups — was until earlier today leaking quite a bit of information that the crime group probably did not intend to be made public. The leaked data suggests that at least some of website’s code was written by a 36-year-old programmer residing in the capital city of Moldova.

Independent Krebs Security

FBI Hacker Dropped Stolen Airbus Data on 9/11

September 13, 2023 0 Comments A Little Sunshine, airbus, breachforums, Data Breaches, FBI, genesis market, hudson rock, infragard, Microsoft, redline, The Coming Storm, usdod

Credit to Author: BrianKrebs| Date: Thu, 14 Sep 2023 00:22:05 +0000

In December 2022, KrebsOnSecurity broke the news that a cybercriminal using the handle “USDoD” had infiltrated the FBI’s vetted information sharing network InfraGard, and was selling the contact information for all 80,000 members. The FBI responded by reverifying all InfraGard members and by seizing the cybercrime forum where the data was being sold. But on Sept. 11, 2023, USDoD resurfaced after a lengthy absence to leak sensitive employee data stolen from the aerospace giant Airbus, while promising to visit the same treatment on top U.S. defense contractors.