Latest Warnings – Page 8 – PossibleThreat Articles

‘Wormable’ Flaw Leads January 2022 Patch Tuesday

February 2, 2022 0 Comments cve-2021-22947, cve-2021-36976, cve-2022-21846, cve-2022-21907, dustin childs, exchange server, http protocol stack, Latest Warnings, microsoft patch tuesday january 2022, National Security Agency, rapid7, satnam narang, tenable, The Coming Storm, Time to Patch, trend micro, zero day initiative

Credit to Author: BrianKrebs| Date: Tue, 11 Jan 2022 22:18:55 +0000

Microsoft today released updates to plug nearly 120 security holes in Windows and supported software. Six of the vulnerabilities were publicly detailed already, potentially giving attackers a head start in figuring out how to exploit them in unpatched systems. More concerning, Microsoft warns that one of the flaws fixed this month is “wormable,” meaning no human interaction would be required for an attack to spread from one vulnerable Windows box to another.

Independent Krebs Security

Coronavirus Widens the Money Mule Pool

March 17, 2020 0 Comments A Little Sunshine, alex holden, bitcoin atm scam, coronavirus scam, globalgiving, Hold Security, holdsecurity.com, kevin conroy, Latest Warnings, vasty health care foundation, vastyhealthcarefoundation.com, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 17 Mar 2020 22:11:46 +0000

With many people being laid off or working from home thanks to the Coronavirus pandemic, cybercrooks are almost certain to have more than their usual share of recruitable “money mules” — people who get roped into money laundering schemes under the pretense of a work-at-home job offer. Here’s the story of one upstart mule factory that spoofs a major nonprofit and tells new employees they’ll be collecting and transmitting donations for an international “Coronavirus Relief Fund.”

Independent Krebs Security

Live Coronavirus Map Used to Spread Malware

March 17, 2020 0 Comments azorult, coronavirus malware, coronavirus map, covid-19 malware, johns hopkins university, Latest Warnings, The Coming Storm

Credit to Author: BrianKrebs| Date: Thu, 12 Mar 2020 15:53:26 +0000

Cybercriminals constantly latch on to news items that captivate the public’s attention, but usually they do so by sensationalizing the topic or spreading misinformation about it. Recently, however, cybercrooks have started disseminating real-time, accurate information about global infection rates tied to the Coronavirus/COVID-19 pandemic in a bid to infect computers with malicious software.

Independent Krebs Security

Zyxel 0day Affects its Firewall Products, Too

February 26, 2020 0 Comments 0day, alex holden, Latest Warnings, Time to Patch, zero day, zyxel

Credit to Author: BrianKrebs| Date: Wed, 26 Feb 2020 14:43:31 +0000

On Monday, networking hardware maker Zyxel released security updates to plug a critical security hole in its network attached storage (NAS) devices that is being actively exploited by crooks who specialize in deploying ransomware. Today, Zyxel acknowledged the same flaw is present in many of its firewall products.

Independent Krebs Security

Zyxel Fixes 0day in Network Storage Devices

February 24, 2020 0 Comments 0day, 500mhz, alex holden, cert coordination center, cert/cc, cve-2020-9054, dhs, emotet, Hold Security, Latest Warnings, Ransomware, The Coming Storm, Time to Patch, zero day, zyxel communications corp.

Credit to Author: BrianKrebs| Date: Mon, 24 Feb 2020 17:13:11 +0000

Networking hardware vendor Zyxel today released an update to fix a critical flaw in many of its network attached storage (NAS) devices that can be used to remotely commandeer them. The patch comes 12 days after KrebsOnSecurity alerted the company that precise instructions for exploiting the vulnerability were being sold for $20,000 in the cybercrime underground. Based in Taiwan, Zyxel Communications Corp. (a.k.a “ZyXEL”) is a maker of networking devices, including Wi-Fi routers, NAS products and hardware firewalls. The company has roughly 1,500 employees and boasts some 100 million devices deployed worldwide. While in many respects the class of vulnerability addressed in this story is depressingly common among Internet of Things (IoT) devices, the flaw is notable because it has attracted the interest of groups specializing in deploying ransomware at scale.

Independent Krebs Security

Dangerous Domain Corp.com Goes Up for Sale

February 8, 2020 0 Comments active directory, corp.com, dns name devolution, jas global advisors, jeff schmidt, Latest Warnings, microsoft corp., Microsoft Windows, mike o'connor, namespace collision, The Coming Storm, U.S. Department of Homeland Security

Credit to Author: BrianKrebs| Date: Sat, 08 Feb 2020 17:32:04 +0000

As an early domain name investor, Mike O’Connor had by 1994 snatched up several choice online destinations, including bar.com, cafes.com, grill.com, place.com, pub.com and television.com. Some he sold over the years, but for the past 26 years O’Connor refused to auction perhaps the most sensitive domain in his stable — corp.com. It is sensitive because years of testing shows whoever wields it would have access to an unending stream of passwords, email and other proprietary data belonging to hundreds of thousands of systems at major companies around the globe.

Independent Krebs Security

Sprint Exposed Customer Support Site to Web

January 29, 2020 0 Comments Data Breaches, Latest Warnings, lisa belot, Microsoft, Sprint, vice.com

Credit to Author: BrianKrebs| Date: Wed, 29 Jan 2020 19:02:56 +0000

Fresh on the heels of a disclosure that Microsoft Corp. leaked internal customer support data to the Internet, mobile provider Sprint has addressed a mix-up in which posts to a private customer support community were exposed to the Web.

Independent Krebs Security

Does Your Domain Have a Registry Lock?

January 24, 2020 0 Comments arno vis, csc, dnspionage, dnssec, e-hawk, e-hawk.net, Latest Warnings, openprovider, pdr, peter cholnoky, public domain registry, raymond dijkxhoorn, registrar lock, registry lock, The Coming Storm, Web Fraud 2.0, whatsapp

Credit to Author: BrianKrebs| Date: Fri, 24 Jan 2020 16:37:11 +0000

If you’re running a business online, few things can be as disruptive or destructive to your brand as someone stealing your company’s domain name and doing whatever they wish with it. Even so, most major Web site owners aren’t taking full advantage of the security tools available to protect their domains from being hijacked. Here’s the story of one recent victim who was doing almost everything possible to avoid such a situation and still had a key domain stolen by scammers.

Independent Krebs Security

Phishing for Apples, Bobbing for Links

January 13, 2020 0 Comments apple phishing, Latest Warnings, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Mon, 13 Jan 2020 16:09:58 +0000

Anyone searching for a primer on how to spot clever phishing links need look no further than those targeting customers of Apple, whose brand by many measures has emerged as the most targeted. Past stories here have examined how scammers working with organized gangs try to phish iCloud credentials from Apple customers who have a mobile device that is lost or stolen. Today’s piece looks at the well-crafted links used in some of these lures.

Independent Krebs Security

Tricky Phish Angles for Persistence, Not Passwords

January 7, 2020 0 Comments jeff jones, Latest Warnings, login.microsoftonline.com, michael tyler, microsoft office 365, microsoftonline.com, phishlabs, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 07 Jan 2020 21:35:40 +0000

Late last year saw the re-emergence of a nasty phishing tactic that allows the attacker to gain full access to a user’s data stored in the cloud without actually stealing the account password. The phishing lure starts with a link that leads to the real login page for a cloud email and/or file storage service. Anyone who takes the bait will inadvertently forward a digital token to the attackers that gives them indefinite access to the victim’s email, files and contacts — even after the victim has changed their password.