HackDig : Dig high-quality web security articles for hackers

QAnon/8Chan Sites Briefly Knocked Offline

A phone call to an Internet provider in Oregon on Sunday evening was all it took to briefly sideline multiple websites related to 8chan/8kun — a controversial online image board linked to several mass shootings — and QAnon, the far-right conspiracy theory which holds that a cabal of Satanic pedophiles is running a global child sex-trafficking rin
Publish At:2020-10-19 04:05 | Read:43 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News The Coming Storm 8chan

Amid an Embarrassment of Riches, Ransom Gangs Increasingly Outsource Their Work

There’s an old adage in information security: “Every company gets penetration tested, whether or not they pay someone for the pleasure.” Many organizations that do hire professionals to test their network security posture unfortunately tend to focus on fixing vulnerabilities hackers could use to break in. But judging from the proliferation
Publish At:2020-10-08 18:53 | Read:110 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Web Fraud 2.0 domaintoo

Promising Infusions of Cash, Fake Investor John Bernard Walked Away With $30M

September featured two stories on a phony tech investor named John Bernard, a pseudonym used by a convicted thief named John Clifton Davies who’s fleeced dozens of technology companies out of an estimated $30 million with the promise of lucrative investments. Those stories prompted a flood of tips from Davies’ victims that paint a much clearer pi
Publish At:2020-10-07 11:41 | Read:129 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Docklands Enterprise Lt

Who is Tech Investor John Bernard?

John Bernard, the subject of a story here last week about a self-proclaimed millionaire investor who has bilked countless tech startups, appears to be a pseudonym for John Clifton Davies, a U.K. man who absconded from justice before being convicted on multiple counts of fraud in 2015. Prior to his conviction, Davies served 16 months in jail before being clea
Publish At:2020-09-30 11:56 | Read:74 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Colette Davies Igor Gub

Who’s Behind Monday’s 14-State 911 Outage?

Emergency 911 systems were down for more than an hour on Monday in towns and cities across 14 U.S. states. The outages led many news outlets to speculate the problem was related to Microsoft‘s Azure web services platform, which also was struggling with a widespread outage at the time. However, multiple sources tell KrebsOnSecurity the 911 issues stemme
Publish At:2020-09-30 11:56 | Read:140 | Comments:0 | Tags:A Little Sunshine 911 outage Azure CenturyLink FCC Federal C

Due Diligence That Money Can’t Buy

Most of us automatically put our guard up when someone we don’t know promises something too good to be true. But when the too-good-to-be-true thing starts as our idea, sometimes that instinct fails to kick in. Here’s the story of how companies searching for investors to believe in their ideas can run into trouble. Nick is an investment banker wh
Publish At:2020-09-14 16:39 | Read:271 | Comments:0 | Tags:A Little Sunshine David Bruno Jason Kane Jonathan Bibi Peiff

Sendgrid Under Siege from Hacked Accounts

Email service provider Sendgrid is grappling with an unusually large number of customer accounts whose passwords have been cracked, sold to spammers, and abused for sending phishing and email malware attacks. Sendgrid’s parent company Twilio says it is working on a plan to require multi-factor authentication for all of its customers, but that solution
Publish At:2020-08-28 14:20 | Read:288 | Comments:0 | Tags:A Little Sunshine The Coming Storm CAUCE Invaluement.com Kro

Confessions of an ID Theft Kingpin, Part II

Yesterday’s piece told the tale of Hieu Minh Ngo, a hacker the U.S. Secret Service described as someone who caused more material financial harm to more Americans than any other convicted cybercriminal. Ngo was recently deported back to his home country after serving more than seven years in prison for running multiple identity theft services. He now sa
Publish At:2020-08-27 14:51 | Read:342 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Hieu Minh Ngo identity

Confessions of an ID Theft Kingpin, Part I

At the height of his cybercriminal career, the hacker known as “Hieupc” was earning $125,000 a month running a bustling identity theft service that siphoned consumer dossiers from some of the world’s top data brokers. That is, until his greed and ambition played straight into an elaborate snare set by the U.S. Secret Service. Now, after mor
Publish At:2020-08-26 15:23 | Read:319 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Court Ventures Experian

Microsoft Put Off Fixing Zero Day for 2 Years

A security flaw in the way Microsoft Windows guards users against malicious files was actively exploited in malware attacks for two years before last week, when Microsoft finally issued a software update to correct the problem. One of the 120 security holes Microsoft fixed on Aug. 11’s Patch Tuesday was CVE-2020-1464, a problem with the way every supp
Publish At:2020-08-17 01:24 | Read:464 | Comments:0 | Tags:A Little Sunshine Time to Patch Bernardo Quintero CVE-2020-1

Porn Clip Disrupts Virtual Court Hearing for Alleged Twitter Hacker

Perhaps fittingly, a Web-streamed court hearing for the 17-year-old alleged mastermind of the July 15 mass hack against Twitter was cut short this morning after mischief makers injected a pornographic video clip into the proceeding. 17-year-old Graham Clark of Tampa, Fla. was among those charged in the July 15 Twitter hack. Image: Hillsborough County Sheriff
Publish At:2020-08-05 16:40 | Read:308 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Andrew Warren Christoph

Robocall Legal Advocate Leaks Customer Data

A California company that helps telemarketing firms avoid getting sued for violating a federal law that seeks to curb robocalls has leaked the phone numbers, email addresses and passwords of all its customers, as well as the mobile phone numbers and other data on people who have hired lawyers to go after telemarketers. The Blacklist Alliance provides techno
Publish At:2020-08-03 18:21 | Read:261 | Comments:0 | Tags:A Little Sunshine Data Breaches Call Protect Jolly Roger Tel

Here’s Why Credit Card Fraud is Still a Thing

Most of the civilized world years ago shifted to requiring computer chips in payment cards that make it far more expensive and difficult for thieves to clone and use them for fraud. One notable exception is the United States, which is still lurching toward this goal. Here’s a look at the havoc that lag has wrought, as seen through the purchasing patter
Publish At:2020-07-29 18:40 | Read:328 | Comments:0 | Tags:A Little Sunshine Data Breaches briansclub hack Damon McCoy

Twitter Hacking for Profit and the LoLs

The New York Times last week ran an interview with several young men who claimed to have had direct contact with those involved in last week’s epic hack against Twitter. These individuals said they were only customers of the person who had access to Twitter’s internal employee tools, and were not responsible for the actual intrusion or bitcoin sc
Publish At:2020-07-22 16:47 | Read:394 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News Allison Nixon aqua Beyo

Who’s Behind Wednesday’s Epic Twitter Hack?

Twitter was thrown into chaos on Wednesday after accounts for some of the world’s most recognizable public figures, executives and celebrities starting tweeting out links to bitcoin scams. Twitter says the attack happened because someone tricked or coerced an employee into providing access to internal Twitter administrative tools. This post is an attem
Publish At:2020-07-16 17:57 | Read:357 | Comments:0 | Tags:A Little Sunshine Ne'er-Do-Well News @6 @B Chaewon Chuckling


Tag Cloud