HackDig : Dig high-quality web security articles

First American Financial Pays Farcical $500K Fine

In May 2019, KrebsOnSecurity broke the news that the website of mortgage settlement giant First American Financial Corp. [NYSE:FAF] was leaking more than 800 million documents — many containing sensitive financial data — related to real estate transactions dating back 16 years. This week, the U.S. Securities and Exchange Commission settled its in
Publish At:2021-06-18 10:27 | Read:73 | Comments:0 | Tags:A Little Sunshine accepted the risk American Land Title Asso

Justice Dept. Claws Back $2.3M Paid by Colonial Pipeline to Ransomware Gang

The U.S. Department of Justice said today it has recovered $2.3 million worth of Bitcoin that Colonial Pipeline paid to ransomware extortionists last month. The funds had been sent to DarkSide, a ransomware-as-a-service syndicate that disbanded after a May 14 farewell message to affiliates saying its Internet servers and cryptocurrency stash were seized by u
Publish At:2021-06-07 19:46 | Read:153 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Ransomware Colonial Pip

Adventures in Contacting the Russian FSB

KrebsOnSecurity recently had occasion to contact the Russian Federal Security Service (FSB), the Russian equivalent of the U.S. Federal Bureau of Investigation (FBI). In the process of doing so, I encountered a small snag: The FSB’s website said in order to communicate with them securely, I needed to download and install an encryption and virtual priva
Publish At:2021-06-07 11:58 | Read:125 | Comments:0 | Tags:A Little Sunshine BadB C# CryptoPro fbi Federal Security Ser

Using Fake Reviews to Find Dangerous Extensions

Fake, positive reviews have infiltrated nearly every corner of life online these days, confusing consumers while offering an unwelcome advantage to fraudsters and sub-par products everywhere. Happily, identifying and tracking these fake reviewer accounts is often the easiest way to spot scams. Here’s the story of how bogus reviews on a counterfeit Micr
Publish At:2021-05-29 13:22 | Read:142 | Comments:0 | Tags:A Little Sunshine Breadcrumbs adobe Amazon brookice100@gmail

A Closer Look at the DarkSide Ransomware Gang

The FBI confirmed this week that a relatively new ransomware group known as DarkSide is responsible for an attack that caused Colonial Pipeline to shut down 5,550 miles of pipe, stranding countless barrels of gasoline, diesel and jet fuel on the Gulf Coast. Here’s a closer look at the DarkSide cybercrime gang, as seen through their negotiations with a
Publish At:2021-05-11 13:54 | Read:329 | Comments:0 | Tags:A Little Sunshine Ransomware Colonial Pipeline ransomware at

Fintech Startup Offers $500 for Payroll Passwords

How much is your payroll data worth? Probably a lot more than you think. One financial startup that’s targeting the gig worker market is offering up to $500 to anyone willing to hand over the payroll account username and password given to them by their employer, plus a regular payment for each month afterwards in which those credentials still work. Thi
Publish At:2021-05-10 14:24 | Read:322 | Comments:0 | Tags:A Little Sunshine Argyle argyle.com Bain Capital Billy Mards

Investment Scammer John Davies Reinvents Himself?

John Bernard, a pseudonym used by a convicted thief and con artist named John Clifton Davies who’s fleeced dozens of technology startups out of an estimated $30 million, appears to have reinvented himself again after being exposed in a recent investigative series published here. Sources tell KrebsOnSecurity that Davies/Bernard is now posing as John Cavendish
Publish At:2021-05-07 11:59 | Read:274 | Comments:0 | Tags:A Little Sunshine ABA Group & Associates LTD binary options

The Wages of Password Re-use: Your Money or Your Life

When normal computer users fall into the nasty habit of recycling passwords, the result is most often some type of financial loss. When cybercriminals develop the same habit, it can eventually cost them their freedom. Our passwords can say a lot about us, and much of what they have to say is unflattering. In a world in which all databases — including
Publish At:2021-05-04 17:24 | Read:278 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News

Experian API Exposed Credit Scores of Most Americans

Big-three consumer credit bureau Experian just fixed a weakness with a partner website that let anyone look up the credit score of tens of millions of Americans just by supplying their name and mailing address, KrebsOnSecurity has learned. Experian says it has plugged the data leak, but the researcher who reported the finding says he fears the same weakness
Publish At:2021-04-29 08:09 | Read:411 | Comments:0 | Tags:A Little Sunshine Bill Demirkapi credit score lookup tool Ex

Experian’s Credit Freeze Security is Still a Joke

In 2017, KrebsOnSecurity showed how easy it is for identity thieves to undo a consumer’s request to freeze their credit file at Experian, one of the big three consumer credit bureaus in the United States.  Last week, KrebsOnSecurity heard from a reader who had his freeze thawed without authorization through Experian’s website, and it reminded me
Publish At:2021-04-26 21:24 | Read:378 | Comments:0 | Tags:A Little Sunshine Latest Warnings CreditLock Dune Thomas Equ

Note to Self: Create Non-Exhaustive List of Competitors

What was the best news you heard so far this month? Mine was learning that KrebsOnSecurity is listed as a restricted competitor by Gartner Inc. [NYSE:IT] — a $4 billion technology goliath whose analyst reports can move markets and shape the IT industry. Earlier this month, a reader pointed my attention to the following notice from Gartner to clients wh
Publish At:2021-04-20 20:29 | Read:415 | Comments:0 | Tags:A Little Sunshine Gartner Inc. Magic Quadrant Medium Patreon

Did Someone at the Commerce Dept. Find a SolarWinds Backdoor in Aug. 2020?

On Aug. 13, 2020, someone uploaded a suspected malicious file to VirusTotal, a service that scans submitted files against more than five dozen antivirus and security products. Last month, Microsoft and FireEye identified that file as a newly-discovered fourth malware backdoor used in the sprawling SolarWinds supply chain hack. An analysis of the malicious fi
Publish At:2021-04-16 09:45 | Read:365 | Comments:0 | Tags:A Little Sunshine CVE-2020-4006 Cybersecurity Infrastructure

Whistleblower: Ubiquiti Breach “Catastrophic”

On Jan. 11, Ubiquiti Inc. [NYSE:UI] — a major vendor of cloud-enabled Internet of Things (IoT) devices such as routers, network video recorders and security cameras — disclosed that a breach involving a third-party cloud provider had exposed customer account credentials. Now a source who participated in the response to that breach alleges Ubiquit
Publish At:2021-03-30 16:16 | Read:455 | Comments:0 | Tags:A Little Sunshine Data Breaches Ubiquiti breach Ubiquiti Inc

No, I Did Not Hack Your MS Exchange Server

New data suggests someone has compromised more than 21,000 Microsoft Exchange Server email systems worldwide and infected them with malware that invokes both KrebsOnSecurity and Yours Truly by name. Let’s just get this out of the way right now: It wasn’t me. The Shadowserver Foundation, a nonprofit that helps network owners identify and fix secu
Publish At:2021-03-28 16:05 | Read:661 | Comments:0 | Tags:A Little Sunshine Babydraco backdoor Babydraco shell David W

RedTorch Formed from Ashes of Norse Corp.

Remember Norse Corp., the company behind the interactive “pew-pew” cyber attack map shown in the image blow? Norse imploded rather suddenly in 2016 following a series of managerial missteps and funding debacles. Now, the founders of Norse have launched a new company with a somewhat different vision: RedTorch, which for the past two years has mark
Publish At:2021-03-22 17:00 | Read:661 | Comments:0 | Tags:A Little Sunshine Cheetah Counter Surveillance Frigg Henry M