HackDig : Dig high-quality web security articles for hacker

‘War Dialing’ Tool Exposes Zoom’s Password Problems

As the Coronavirus pandemic continues to force people to work from home, countless companies are now holding daily meetings using videoconferencing services from Zoom. But without the protection of a password, there’s a decent chance your next Zoom meeting could be “Zoom bombed” — attended or disrupted by someone who doesn’t bel
Publish At:2020-04-02 11:45 | Read:125 | Comments:0 | Tags:A Little Sunshine The Coming Storm Time to Patch Dave Kenned

Phish of GoDaddy Employee Jeopardized Escrow.com, Among Others

A spear-phishing attack this week hooked a customer service employee at GoDaddy.com, the world’s largest domain name registrar, KrebsOnSecurity has learned. The incident gave the phisher the ability to view and modify key customer records, access that was used to change domain settings for a half-dozen GoDaddy customers, including transaction brokering
Publish At:2020-04-01 00:40 | Read:135 | Comments:0 | Tags:A Little Sunshine Latest Warnings The Coming Storm Chris Uel

Annual Protest to ‘Fight Krebs’ Raises €150K+

In 2018, KrebsOnSecurity unmasked the creators of Coinhive — a now-defunct cryptocurrency mining service that was being massively abused by cybercriminals — as the administrators of a popular German language image-hosting forum. In protest of that story, forum members donated hundreds of thousands of euros to nonprofits that combat cancer (Krebs
Publish At:2020-03-30 15:28 | Read:74 | Comments:0 | Tags:A Little Sunshine Coinhive DKMS Krebsaction pr0gramm

Russians Shut Down Huge Card Fraud Ring

Federal investigators in Russia have charged at least 25 people accused of operating a sprawling international credit card theft ring. Cybersecurity experts say the raid included the charging of a major carding kingpin thought to be tied to dozens of carding shops and to some of the bigger data breaches targeting western retailers over the past decade. In a
Publish At:2020-03-26 16:37 | Read:211 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Alexey Stroganov Andrey

US Government Sites Give Bad Security Advice

Many U.S. government Web sites now carry a message prominently at the top of their home pages meant to help visitors better distinguish between official U.S. government properties and phishing pages. Unfortunately, part of that message is misleading and may help perpetuate a popular misunderstanding about Web site security and trust that phishers have been e
Publish At:2020-03-25 17:15 | Read:144 | Comments:0 | Tags:A Little Sunshine John LaCour OMB phishing PhishLabs U.S. Ge

Coronavirus Widens the Money Mule Pool

With many people being laid off or working from home thanks to the Coronavirus pandemic, cybercrooks are almost certain to have more than their usual share of recruitable “money mules” — people who get roped into money laundering schemes under the pretense of a work-at-home job offer. Here’s the story of one upstart mule factory that
Publish At:2020-03-17 20:05 | Read:188 | Comments:0 | Tags:A Little Sunshine Latest Warnings Web Fraud 2.0 alex holden

Crafty Web Skimming Domain Spoofs “https”

Earlier today, KrebsOnSecurity alerted the 10th largest food distributor in the United States that one of its Web sites had been hacked and retrofitted with code that steals credit card and login data. While such Web site card skimming attacks are not new, this intrusion leveraged a sneaky new domain that hides quite easily in a hacked site’s source co
Publish At:2020-03-11 22:15 | Read:299 | Comments:0 | Tags:A Little Sunshine The Coming Storm Web Fraud 2.0 .ps Akamai

Hackers Were Inside Citrix for Five Months

Networking software giant Citrix Systems says malicious hackers were inside its networks for five months between 2018 and 2019, making off with personal and financial data on company employees, contractors, interns, job candidates and their dependents. The disclosure comes almost a year after Citrix acknowledged that digital intruders had broken in by probin
Publish At:2020-02-19 14:05 | Read:384 | Comments:0 | Tags:A Little Sunshine Data Breaches Citrix Systems CVE-2019-1978

Encoding Stolen Credit Card Data on Barcodes

Crooks are constantly dreaming up new ways to use and conceal stolen credit card data. According to the U.S. Secret Service, the latest scheme involves stolen card information embedded in barcodes affixed to phony money network rewards cards. The scammers then pay for merchandise by instructing a cashier to scan the barcode and enter the expiration date and
Publish At:2020-02-18 15:20 | Read:268 | Comments:0 | Tags:A Little Sunshine The Coming Storm U.S. Secret Service

Pay Up, Or We’ll Make Google Ban Your Ads

A new email-based extortion scheme apparently is making the rounds, targeting Web site owners serving banner ads through Google’s AdSense program. In this scam, the fraudsters demand bitcoin in exchange for a promise not to flood the publisher’s ads with so much bot and junk traffic that Google’s automated anti-fraud systems suspend the use
Publish At:2020-02-17 12:48 | Read:303 | Comments:0 | Tags:A Little Sunshine The Coming Storm Web Fraud 2.0 AdSense ext

A Light at the End of Liberty Reserve’s Demise?

In May 2013, the U.S. Justice Department seized Liberty Reserve, alleging the virtual currency service acted as a $6 billion financial hub for the cybercrime world. Prompted by assurances that the government would one day afford Liberty Reserve users a chance to reclaim any funds seized as part of the takedown, KrebsOnSecurity filed a claim shortly thereafte
Publish At:2020-02-15 13:54 | Read:167 | Comments:0 | Tags:A Little Sunshine Arthur Budovsky irs Liberty Reserve U.S. I

When Your Used Car is a Little Too ‘Mobile’

Many modern vehicles let owners use the Internet or a mobile device to control the car’s locks, track location and performance data, and start the engine. But who exactly owns that control is not always clear when these smart cars are sold or leased anew. Here’s the story of one former electric vehicle owner who discovered he could still gain rem
Publish At:2020-02-05 21:40 | Read:417 | Comments:0 | Tags:A Little Sunshine Focus EV Ford Mathew Marulla MyFordMobile.

Iowa Prosecutors Drop Charges Against Men Hired to Test Their Security

On Sept. 11, 2019, two security experts at a company that had been hired by the state of Iowa to test the physical and network security of its judicial system were arrested while probing the security of an Iowa county courthouse, jailed in orange jumpsuits, charged with burglary, and held on $100,000 bail. On Thursday Jan. 30, prosecutors in Iowa announced t
Publish At:2020-01-31 20:35 | Read:540 | Comments:0 | Tags:A Little Sunshine Ars Technica Chad Leonard Chris Nickerson

Apple Addresses iPhone 11 Location Privacy Concern

Apple is rolling out a new update to its iOS operating system that addresses the location privacy issue on iPhone 11 devices that was first detailed here last month. Beta versions of iOS 13.3.1 include a new setting that lets users disable the “Ultra Wideband” feature, a short-range technology that lets iPhone 11 users share files locally with o
Publish At:2020-01-22 20:35 | Read:631 | Comments:0 | Tags:A Little Sunshine Time to Patch apple Brandon Butch iPhone 1

Inside ‘Evil Corp,’ a $100M Cybercrime Menace

The U.S. Justice Department this month offered a $5 million bounty for information leading to the arrest and conviction of a Russian man indicted for allegedly orchestrating a vast, international cybercrime network that called itself “Evil Corp” and stole roughly $100 million from businesses and consumers. As it happens, for several years KrebsOn
Publish At:2019-12-16 15:35 | Read:695 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Target: Small Businesse

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud