The Coming Storm – PossibleThreat Articles

Teen on Musk’s DOGE Team Graduated from ‘The Com’

February 7, 2025 0 Comments A Little Sunshine, as400495, backconnect security llc, curtis gervais, diamondcdn, director of national intelligence, doge, dstat, edward coristine, elon musk, eric taylor, marshal webb, Ne'er-Do-Well News, neuralink, packetware, path networks, president trump, rivage, tesla sexy llc, the com, The Coming Storm, tucker preston, wired

Credit to Author: BrianKrebs| Date: Sat, 08 Feb 2025 00:32:53 +0000

Wired reported this week that a 19-year-old working for Elon Musk’s so-called Department of Government Efficiency (DOGE) was given access to sensitive US government systems even though his past association with cybercrime communities should have precluded him from gaining the necessary security clearances to do so. As today’s story explores, the DOGE teen is a former denizen of ‘The Com,’ an archipelago of Discord and Telegram chat channels that function as a kind of distributed cybercriminal social network for facilitating instant collaboration.

Independent Krebs Security

Experts Flag Security, Privacy Risks in DeepSeek AI App

February 6, 2025 0 Comments A Little Sunshine, andrew hoog, app transport security, Apple, Artificial intelligence, bytedance, china, deepseek, deepseek ai, iOS, Latest Warnings, nowsecure, The Coming Storm, volcengine

Credit to Author: BrianKrebs| Date: Thu, 06 Feb 2025 21:12:30 +0000

New mobile apps from the Chinese artificial intelligence (AI) company DeepSeek have remained among the top three “free” downloads for Apple and Google devices since their debut on Jan. 25, 2025. But experts caution that many of DeepSeek’s design choices — such as using hard-coded encryption keys, and sending unencrypted user and device data to Chinese companies — introduce a number of glaring security and privacy risks.

Independent Krebs Security

A Tumultuous Week for Federal Cybersecurity Efforts

January 27, 2025 0 Comments A Little Sunshine, alfa bank, david sacks, house judiciary committee's select subcommittee on the weaponization of the federal government, jack goldsmith, joe hall, john durham, lawfare, melania trump, michael sussman, president trump, quinta jurecic, rep. jim jordan, The Coming Storm, united states council on transnational organized crime, world liberty financial

Credit to Author: BrianKrebs| Date: Tue, 28 Jan 2025 02:50:10 +0000

President Trump last week issued a flurry of executive orders that upended a number of government initiatives focused on improving the nation’s cybersecurity posture. The president fired all advisors from the Department of Homeland Security’s Cyber Safety Review Board, called for the creation of a strategic cryptocurrency reserve, and voided a Biden administration action that sought to reduce the risks that artificial intelligence poses to consumers, workers and national security.

Independent Krebs Security

Microsoft: Happy 2025. Here’s 161 Security Updates

January 14, 2025 0 Comments adam barnett, bitlocker, bob hopkins, cve-2024-49142, cve-2025-21186, cve-2025-21210, cve-2025-21298, cve-2025-21311, cve-2025-21333, cve-2025-21334, cve-2025-21335, cve-2025-21366, cve-2025-21395, kev breen, Latest Warnings, microsoft access, microsoft patch tuesday january 2025, rapid7, satnam narang, The Coming Storm, Time to Patch, unpatched.ai, windows 11, windows hyper-v, windows ntlmv1

Credit to Author: BrianKrebs| Date: Tue, 14 Jan 2025 22:50:00 +0000

Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three “zero-day” weaknesses that are already under active attack. Redmond’s inaugural Patch Tuesday of 2025 bundles more fixes than the company has shipped in one go since 2017.

Independent Krebs Security

A Day in the Life of a Prolific Voice Phishing Crew

January 7, 2025 0 Comments 800-275-2273, A Little Sunshine, allison nixon, aristotle, autodoxers, Coinbase, crypto chameleon, discord, domaintools, Latest Warnings, lookout, mark cuban, okta, perm, shark tank, star fraud, stotle, telegram, The Coming Storm, trezor, unit 221b, voice phishing, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 07 Jan 2025 23:41:53 +0000

Besieged by scammers seeking to phish user accounts over the telephone, Apple and Google frequently caution that they will never reach out unbidden to users this way. However, new details about the internal operations of a prolific voice phishing gang show the group routinely abuses legitimate services at Apple and Google to force a variety of outbound communications to their users, including emails, automated phone calls and system-level messages sent to all signed-in devices.

Independent Krebs Security

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

December 19, 2024 0 Comments A Little Sunshine, acunetix, altug sara, altugsara321@gmail.com, araneida scanner, bilitro yazilim, Breadcrumbs, domaintools, Fin7, invicti security, matt sciberras, Ne'er-Do-Well News, neil roseman, ori0nbusiness@protonmail.com, silent push, The Coming Storm, u.s. department of health and human services, zach edwards

Credit to Author: BrianKrebs| Date: Thu, 19 Dec 2024 17:07:30 +0000

Cybercriminals are selling hundreds of thousands of credential sets stolen with the help of a cracked version of Acunetix, a powerful commercial web app vulnerability scanner, new research finds. The cracked software is being resold as a cloud-based attack tool by at least two different services, one of which KrebsOnSecurity traced to an information technology firm based in Turkey.

Independent Krebs Security

Why Phishers Love New TLDs Like .shop, .top and .xyz

December 3, 2024 0 Comments @chenlun, A Little Sunshine, and mobile anti-abuse working group, Anti-Phishing Working Group, coalition against unsolicited commercial email, icann, interisle consulting, internet corporation for assigned names and numbers, john levine, Latest Warnings, malware, messaging, new gtlds, phishing, Spam, The Coming Storm, u.s. postal service

Credit to Author: BrianKrebs| Date: Tue, 03 Dec 2024 13:27:31 +0000

Phishing attacks increased nearly 40 percent in the year ending August 2024, with much of that growth concentrated at a small number of new generic top-level domains (gTLDs) — such as .shop, .top, .xyz — that attract scammers with rock-bottom prices and no meaningful registration requirements, new research finds. Meanwhile, the nonprofit entity that oversees the domain name industry is moving forward with plans to introduce a slew of new gTLDs.

Independent Krebs Security

Hacker in Snowflake Extortions May Be a U.S. Soldier

November 26, 2024 0 Comments A Little Sunshine, AT&T, boxfan, buttholio, connor riley moucka, cyb3rph4nt0m, DDoS-for-hire, john erin binns, judische, kiberphant0m, naver, Ne'er-Do-Well News, proman557, Ransomware, reverseshell, shi-bot, snowflake, south korea, telekomterrorist, The Coming Storm, vars_secc, verizon, waifu

Credit to Author: BrianKrebs| Date: Wed, 27 Nov 2024 00:45:48 +0000

Two men have been arrested for allegedly stealing data from and extorting dozens of companies that used the cloud data storage company Snowflake, but a third suspect — a prolific hacker known as Kiberphant0m — remains at large and continues to publicly extort victims. However, this person’s identity may not remain a secret for long: A careful review of Kiberphant0m’s daily chats across multiple cybercrime personas suggests they are a U.S. Army soldier who is or was recently stationed in South Korea.

Independent Krebs Security

Fintech Giant Finastra Investigating Data Breach

November 19, 2024 0 Comments abyss0, breachforums, Data Breaches, finastra, ke-la.com, Latest Warnings, Ne'er-Do-Well News, The Coming Storm

Credit to Author: BrianKrebs| Date: Wed, 20 Nov 2024 01:12:15 +0000

The financial technology firm Finastra is investigating the alleged large-scale theft of information from its internal file transfer platform, KrebsOnSecurity has learned. Finastra, which provides software and services to 45 of the world’s top 50 banks, notified customers of a potential breach after a cybercriminal began selling more than 400 gigabytes of data purportedly stolen from the company.

Independent Krebs Security

FBI: Spike in Hacked Police Emails, Fake Subpoenas

November 9, 2024 0 Comments A Little Sunshine, emergency data request, fake edr, FBI, kodex, Latest Warnings, matt donahue, pwnstar, The Coming Storm, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Sat, 09 Nov 2024 19:20:26 +0000

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based technology companies.

← Previous