HackDig : Dig high-quality web security articles for hackers

Is Your Chip Card Secure? Much Depends on Where You Bank

Chip-based credit and debit cards are designed to make it infeasible for skimming devices or malware to clone your card when you pay for something by dipping the chip instead of swiping the stripe. But a recent series of malware attacks on U.S.-based merchants suggest thieves are exploiting weaknesses in how certain financial institutions have implemented th
Publish At:2020-07-30 15:20 | Read:122 | Comments:0 | Tags:All About Skimmers Latest Warnings The Coming Storm chip car

Turn on MFA Before Crooks Do It For You

Hundreds of popular websites now offer some form of multi-factor authentication (MFA), which can help users safeguard access to accounts when their password is breached or stolen. But people who don’t take advantage of these added safeguards may find it far more difficult to regain access when their account gets hacked, because increasingly thieves wil
Publish At:2020-06-19 17:21 | Read:281 | Comments:0 | Tags:Latest Warnings Security Tools Dennis Dayman microsoft multi

Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com

For the past year, a site called Privnotes.com has been impersonating Privnote.com, a legitimate, free service that offers private, encrypted messages which self-destruct automatically after they are read. Until recently, I couldn’t quite work out what Privnotes was up to, but today it became crystal clear: Any messages containing bitcoin addresses wil
Publish At:2020-06-14 13:48 | Read:226 | Comments:0 | Tags:Latest Warnings Allison Nixon privnote.com privnotes.com Uni

Florence, Ala. Hit By Ransomware 12 Days After Being Alerted by KrebsOnSecurity

In late May, KrebsOnSecurity alerted numerous officials in Florence, Ala. that their information technology systems had been infiltrated by hackers who specialize in deploying ransomware. Nevertheless, on Friday, June 5, the intruders sprang their attack, deploying ransomware and demanding nearly $300,000 worth of bitcoin. City officials now say they plan to
Publish At:2020-06-09 14:07 | Read:168 | Comments:0 | Tags:Latest Warnings Ransomware alex holden CrowdStrike DoppelPay

Tech Support Scam Uses Child Porn Warning

A new email scam is making the rounds, warning recipients that someone using their Internet address has been caught viewing child pornography. The message claims to have been sent from Microsoft Support, and says the recipient’s Windows license will be suspended unless they call an “MS Support” number to reinstate the license, but the numbe
Publish At:2020-05-18 13:12 | Read:299 | Comments:0 | Tags:A Little Sunshine Latest Warnings 1 844 286 1916 Microsoft s

Microsoft Patch Tuesday, May 2020 Edition

Microsoft today issued software updates to plug at least 111 security holes in Windows and Windows-based programs. None of the vulnerabilities were labeled as being publicly exploited or detailed prior to today, but as always if you’re running Windows on any of your machines it’s time once again to prepare to get your patches on. May marks the th
Publish At:2020-05-18 13:12 | Read:338 | Comments:0 | Tags:Latest Warnings Time to Patch adobe acrobat adobe reader CVE

U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs

A well-organized Nigerian crime ring is exploiting the COVID-19 crisis by committing large-scale fraud against multiple state unemployment insurance programs, with potential losses in the hundreds of millions of dollars, according to a new alert issued by the U.S. Secret Service. A memo seen by KrebsOnSecurity that the Secret Service circulated to field off
Publish At:2020-05-18 13:12 | Read:181 | Comments:0 | Tags:Latest Warnings The Coming Storm Web Fraud 2.0 Coronavirus C

When in Doubt: Hang Up, Look Up, & Call Back

Many security-conscious people probably think they’d never fall for a phone-based phishing scam. But if your response to such a scam involves anything other than hanging up and calling back the entity that claims to be calling, you may be in for a rude awakening. Here’s how one security and tech-savvy reader got taken for more than $10,000 in an
Publish At:2020-05-03 09:35 | Read:506 | Comments:0 | Tags:A Little Sunshine Latest Warnings The Coming Storm

Would You Have Fallen for This Phone Scam?

You may have heard that today’s phone fraudsters like to use caller ID spoofing services to make their scam calls seem more believable. But you probably didn’t know that these fraudsters also can use caller ID spoofing to trick your bank into giving up information about recent transactions on your account — data that can then be abused to m
Publish At:2020-05-03 09:35 | Read:526 | Comments:0 | Tags:Latest Warnings Web Fraud 2.0 citibank email bomb Gemini Adv

Sipping from the Coronavirus Domain Firehose

Security experts are poring over thousands of new Coronavirus-themed domain names registered each day, but this often manual effort struggles to keep pace with the flood of domains invoking the virus to promote malware and phishing sites, as well as non-existent healthcare products and charities. As a result, domain name registrars are under increasing press
Publish At:2020-04-16 13:00 | Read:491 | Comments:0 | Tags:Latest Warnings The Coming Storm Web Fraud 2.0 CAUCE Centers

New IRS Site Could Make it Easy for Thieves to Intercept Some Stimulus Payments

The U.S. federal government is now in the process of sending Economic Impact Payments by direct deposit to millions of Americans. Most who are eligible for payments can expect to have funds direct-deposited into the same bank accounts listed on previous years’ tax filings sometime next week. Today, the Internal Revenue Service (IRS) stood up a site to
Publish At:2020-04-10 19:13 | Read:784 | Comments:0 | Tags:Latest Warnings The Coming Storm Economic Impact Payment Int

Phish of GoDaddy Employee Jeopardized Escrow.com, Among Others

A spear-phishing attack this week hooked a customer service employee at GoDaddy.com,┬áthe world’s largest domain name registrar, KrebsOnSecurity has learned. The incident gave the phisher the ability to view and modify key customer records, access that was used to change domain settings for a half-dozen GoDaddy customers, including transaction brokering
Publish At:2020-04-01 00:40 | Read:478 | Comments:0 | Tags:A Little Sunshine Latest Warnings The Coming Storm Chris Uel

Zxyel Flaw Powers New Mirai IoT Botnet Strain

In February, hardware maker Zyxel fixed a zero-day vulnerability in its routers and VPN firewall products after KrebsOnSecurity told the company the flaw was being abused by attackers to break into devices. This week, security researchers said they spotted that same vulnerability being exploited by a new variant of Mirai, a malware strain that targets vulner
Publish At:2020-03-20 12:41 | Read:512 | Comments:0 | Tags:Latest Warnings Time to Patch CVE-2020-9054 mirai Mukashi Pa

Coronavirus Widens the Money Mule Pool

With many people being laid off or working from home thanks to the Coronavirus pandemic, cybercrooks are almost certain to have more than their usual share of recruitable “money mules” — people who get roped into money laundering schemes under the pretense of a work-at-home job offer. Here’s the story of one upstart mule factory that
Publish At:2020-03-17 20:05 | Read:581 | Comments:0 | Tags:A Little Sunshine Latest Warnings Web Fraud 2.0 alex holden

Live Coronavirus Map Used to Spread Malware

Cybercriminals constantly latch on to news items that captivate the public’s attention, but usually they do so by sensationalizing the topic or spreading misinformation about it. Recently, however, cybercrooks have started disseminating real-time, accurate information about global infection rates tied to the Coronavirus/COVID-19 pandemic in a bid to in
Publish At:2020-03-12 15:01 | Read:736 | Comments:0 | Tags:Latest Warnings The Coming Storm Azorult Coronavirus malware

Announce

Share high-quality web security related articles with you:)

Tools