BrianKrebs – Page 28 – WindowsTechs.com

Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data

Posted on May 2, 2023 by BrianKrebs

A sprawling online company based in Georgia that has made tens of millions of dollars purporting to sell access to jobs at the United States Postal Service (USPS) has exposed its internal IT operations and database of nearly 900,000 customers. The leaked records indicate the network’s chief technology officer in Pakistan has been hacked for the past year, and that the entire operation was created by the principals of a Tennessee-based telemarketing firm that has promoted USPS employment websites since 2016. Continue reading Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data→

Many Public Salesforce Sites are Leaking Private Data

Posted on April 28, 2023 by BrianKrebs

A shocking number of organizations — including banks and healthcare providers — are leaking private and sensitive information from their public Salesforce Community websites, KrebsOnSecurity has learned. The data exposures all stem from a misconfiguration in Salesforce Community that allows an unauthenticated user to access records that should only be available after logging in. Continue reading Many Public Salesforce Sites are Leaking Private Data→

3CX Breach Was a Double Supply Chain Compromise

Posted on April 21, 2023 by BrianKrebs

We learned some remarkable new details this week about the recent supply-chain attack on VoIP software provider 3CX, a complex, lengthy intrusion that has the makings of a cyberpunk spy novel: North Korean hackers using legions of fake executive accounts on LinkedIn to lure people into opening malware disguised as a job offer; malware targeting Mac and Linux users working at defense and cryptocurrency firms; and software supply-chain attacks nested within earlier supply chain attacks. Continue reading 3CX Breach Was a Double Supply Chain Compromise→

Giving a Face to the Malware Proxy Service ‘Faceless’

Posted on April 18, 2023 by BrianKrebs

For the past seven years, a malware-based proxy service known as “Faceless” has sold anonymity to countless cybercriminals. For less than a dollar per day, Faceless customers can route their malicious traffic through tens of thousands of compromised systems advertised on the service. In this post we’ll examine clues left behind over the past decade by the proprietor of Faceless, including some that may help put a face to the name. Continue reading Giving a Face to the Malware Proxy Service ‘Faceless’→

Why is ‘Juice Jacking’ Suddenly Back in the News?

Posted on April 14, 2023 by BrianKrebs

KrebsOnSecurity received a nice bump in traffic this week thanks to tweets from the Federal Bureau of Investigation (FBI) and the Federal Communications Commission (FCC) about “juice jacking,” a term first coined here in 2011 to describe a potential threat of data theft when one plugs their mobile device into a public charging kiosk. It remains unclear what may have prompted the alerts, but the good news is that there are some fairly basic things you can do to avoid having to worry about juice jacking. Continue reading Why is ‘Juice Jacking’ Suddenly Back in the News?→

Microsoft (& Apple) Patch Tuesday, April 2023 Edition

Posted on April 12, 2023 by BrianKrebs

Microsoft today released software updates to plug 100 security holes in its Windows operating systems and other software, including a zero-day vulnerability that is already being used in active attacks. Not to be outdone, Apple has released a set of important updates addressing two zero-day vulnerabilities that are being used to attack iPhones, iPads and Macs. Continue reading Microsoft (& Apple) Patch Tuesday, April 2023 Edition→

FBI Seizes Bot Shop ‘Genesis Market’ Amid Arrests Targeting Operators, Suppliers

Posted on April 4, 2023 by BrianKrebs

Several domain names tied to Genesis Market, a bustling cybercrime store that sold access to passwords and other data stolen from millions of computers infected with malicious software, were seized by the Federal Bureau of Investigation (FBI) today. Sources tell KrebsOnsecurity the domain seizures coincided with “dozens” of arrests in the United States and abroad targeting those who allegedly operated the service, as well as suppliers who continuously fed Genesis Market with freshly-stolen data. Continue reading FBI Seizes Bot Shop ‘Genesis Market’ Amid Arrests Targeting Operators, Suppliers→

A Serial Tech Investment Scammer Takes Up Coding?

Posted on April 3, 2023 by BrianKrebs

John Clifton Davies, a 60-year-old con man from the United Kingdom who fled the country in 2015 before being sentenced to 12 years in prison for fraud, has enjoyed a successful life abroad swindling technology startups by pretending to be a billionaire investor. Davies’ newest invention appears to be “CodesToYou,” which purports to be a “full cycle software development company” based in the U.K. Continue reading A Serial Tech Investment Scammer Takes Up Coding?→

German Police Raid DDoS-Friendly Host ‘FlyHosting’

Posted on March 31, 2023 by BrianKrebs

Authorities in Germany this week seized Internet servers that powered FlyHosting, a dark web service that catered to cybercriminals operating DDoS-for-hire services. Fly Hosting first advertised on cybercrime forums in November 2022, saying it was a Germany-based hosting firm that was open for business to anyone looking for a reliable place to host malware, botnet controllers, or DDoS-for-hire infrastructure. Continue reading German Police Raid DDoS-Friendly Host ‘FlyHosting’→

UK Sets Up Fake Booter Sites To Muddy DDoS Market

Posted on March 28, 2023 by BrianKrebs

The United Kingdom’s National Crime Agency (NCA) has been busy setting up phony DDoS-for-hire websites that seek to collect information on users, remind them that launching DDoS attacks is illegal, and generally increase the level of paranoia for people looking to hire such services. Continue reading UK Sets Up Fake Booter Sites To Muddy DDoS Market→