domaintools.com – Page 2 – PossibleThreat Articles

Ask Fitis, the Bear: Real Crooks Sign Their Malware

June 1, 2023 0 Comments 165540027, 774748@gmail.com, akafitis@gmail.com, Breadcrumbs, code-signing certificates, constella intelligence, domaintools.com, featar24, fitis, flashpoint, glavmed, intel 471, konstantin evgenievich fetisov, megatraffer, Ne'er-Do-Well News, o.r.z., spamit, spampage@yandex.ru

Credit to Author: BrianKrebs| Date: Thu, 01 Jun 2023 16:15:34 +0000

Code-signing certificates are supposed to help authenticate the identity of software publishers, and provide cryptographic assurance that a signed piece of software has not been altered or tampered with. Both of these qualities make stolen or ill-gotten code-signing certificates attractive to cybercriminal groups, who prize their ability to add stealth and longevity to malicious software. This post is a deep dive on “Megatraffer,” a veteran Russian hacker who has practically cornered the underground market for malware focused code-signing certificates since 2015.

Independent Krebs Security

A Serial Tech Investment Scammer Takes Up Coding?

April 3, 2023 0 Comments A Little Sunshine, alan john mykhailov, blackstone corporate alliance ltd, Breadcrumbs, codestoyou, colette davies, david bruno, domaintools.com, drydennow.com, igor gubskyi, igor hubskyi, iryna davies, john bernard, john clifton davies, maria yakovleva, mariya kulikova, mysolve, Ne'er-Do-Well News, safeswiss secure communication ag, secure swiss data, the inside knowledge gmbh

Credit to Author: BrianKrebs| Date: Mon, 03 Apr 2023 16:13:42 +0000

John Clifton Davies, a 60-year-old con man from the United Kingdom who fled the country in 2015 before being sentenced to 12 years in prison for fraud, has enjoyed a successful life abroad swindling technology startups by pretending to be a billionaire investor. Davies’ newest invention appears to be “CodesToYou,” which purports to be a “full cycle software development company” based in the U.K.

Independent Krebs Security

The Case for Limiting Your Browser Extensions

March 3, 2020 0 Comments 212b3d4039ab5319ec.js, blue shield of california, Breadcrumbs, cndpps, domaintools.com, frankomedison1020@gmail.com, icontent, linkojager, metrext, monetizus, page ruler extension, peter newnham, thisadsfor

Credit to Author: BrianKrebs| Date: Tue, 03 Mar 2020 15:39:53 +0000

Last week, KrebsOnSecurity reported to health insurance provider Blue Shield of California that its Web site was flagged by multiple security products as serving malicious content. Blue Shield quickly removed the unauthorized code. An investigation determined it was injected by a browser extension installed on the computer of a Blue Shield employee who’d edited the Web site in the past month. The incident is a reminder that browser extensions — however useful or fun they may seem when you install them — typically have a great deal of power and can effectively read and/or write all data in your browsing sessions. And as we’ll see, it’s not uncommon for extension makers to sell or lease their user base to shady advertising firms, or in some cases abandon them to outright cybercriminals.

Independent Krebs Security

French Firms Rocked by Kasbah Hacker?

March 2, 2020 0 Comments +212611604438, 4iq.com, Breadcrumbs, domaintools.com, fatal.001, fatalw01, Hyas, hyas.com, ing.equipepro@gmail.com, njRAT, sasha angus, talainine.com, yamosoft, yassine algangaf, yassine majidi

Credit to Author: BrianKrebs| Date: Mon, 02 Mar 2020 18:07:16 +0000

A large number of French critical infrastructure firms were hacked as part of an extended malware campaign that appears to have been orchestrated by at least one attacker based in Morocco, KrebsOnSecurity has learned. The individual thought to be involved has earned accolades from the likes of Apple, Dell, and Microsoft for helping to find and fix security vulnerabilities in their products.