A Little Sunshine – Page 3 – WindowsTechs.com

National Public Data Published Its Own Passwords

Posted on August 19, 2024 by BrianKrebs

New details are emerging about a breach at National Public Data (NPD), a consumer data broker that recently spilled hundreds of millions of Americans’ Social Security Numbers, addresses, and phone numbers online. KrebsOnSecurity has learned that another NPD data broker which shares access to the same consumer records inadvertently published the passwords to its back-end database in a file that was freely available for download from its homepage until today. Continue reading National Public Data Published Its Own Passwords→

NationalPublicData.com Hack Exposes a Nation’s Data

Posted on August 15, 2024 by BrianKrebs

A great many readers this month reported receiving alerts that their Social Security Number, name, address and other personal information were exposed in a breach at a little-known but aptly-named consumer data broker called NationalPublicData.com. This post examines what we know about a breach that has exposed hundreds of millions of consumer records. We’ll also take a closer look at the data broker that got hacked — a background check company founded by an actor and retired sheriff’s deputy from Florida. Continue reading NationalPublicData.com Hack Exposes a Nation’s Data→

Cybercrime Rapper Sues Bank over Fraud Investigation

Posted on August 7, 2024 by BrianKrebs

In January, KrebsOnSecurity wrote about rapper Punchmade Dev, whose music videos sing the praises of a cybercrime lifestyle. That story showed how Punchmade’s social media profiles promoted Punchmade-themed online stores selling bank account and payment card data. Now the Kentucky native is suing his financial institution after it blocked a $75,000 wire transfer and froze his account, citing an active law enforcement investigation. Continue reading Cybercrime Rapper Sues Bank over Fraud Investigation→

Low-Drama ‘Dark Angels’ Reap Record Ransoms

Posted on August 5, 2024 by BrianKrebs

A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. Security experts say the Dark Angels have been around since 2021, but the group doesn’t get much press because they work alone and maintain a low profile, picking one target at a time and favoring mass data theft over disrupting the victim’s operations. Continue reading Low-Drama ‘Dark Angels’ Reap Record Ransoms→

Don’t Let Your Domain Name Become a “Sitting Duck”

Posted on July 31, 2024 by BrianKrebs

More than a million domain names — including many registered by Fortune 100 firms and brand protection companies — are vulnerable to takeover by cybercriminals thanks to authentication weaknesses at a number of large web hosting providers and domain registrars, new research finds. Continue reading Don’t Let Your Domain Name Become a “Sitting Duck”→

Crooks Bypassed Google’s Email Verification to Create Workspace Accounts, Access 3rd-Party Services

Posted on July 26, 2024 by BrianKrebs

Google says it recently fixed an authentication weakness that allowed crooks to circumvent email verification needed to create a Google Workspace account, and leverage that to impersonate a domain holder to third-party services that allow logins through Google’s “Sign in with Google” feature. Continue reading Crooks Bypassed Google’s Email Verification to Create Workspace Accounts, Access 3rd-Party Services→

Phish-Friendly Domain Registry “.top” Put on Notice

Posted on July 23, 2024 by BrianKrebs

The Chinese company in charge of handing out domain names ending in “.top” has been given until mid-August 2024 to show that it has put in place systems for managing phishing reports and suspending abusive domains, or else forfeit its license to sell domains. The warning comes amid the release of new findings that .top was the most common suffix in phishing websites over the past year, second only to domains ending in “.com.” Continue reading Phish-Friendly Domain Registry “.top” Put on Notice→

Global Microsoft Meltdown Tied to Bad Crowstrike Update

Posted on July 19, 2024 by BrianKrebs

A faulty software update from cybersecurity vendor Crowdstrike crippled countless Microsoft Windows computers across the globe today, disrupting everything from airline travel and financial institutions to hospitals and businesses online. Crowdstrike said a fix has been deployed, but experts say the recovery from this outage could take some time, as Crowdstrike’s solution needs to be applied manually on a per-machine basis. Continue reading Global Microsoft Meltdown Tied to Bad Crowstrike Update→

Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks

Posted on July 15, 2024 by BrianKrebs

At least a dozen organizations with domain names at domain registrar Squarespace saw their websites hijacked last week. Squarespace bought all assets of Google Domains a year ago, but many customers still haven’t set up their new accounts. Experts say malicious hackers learned they could commandeer any migrated Squarespace accounts that hadn’t yet been registered, merely by supplying an email address tied to an existing domain. Continue reading Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks→

Crooks Steal Phone, SMS Records for Nearly All AT&T Customers

Posted on July 12, 2024 by BrianKrebs

AT&T Corp. disclosed today that a new data breach has exposed phone call and text message records for roughly 110 million people — nearly all of its customers. AT&T said it delayed disclosing the incident in response to “national security and public safety concerns,” noting that some of the records included data that could be used to determine where a call was made or text message sent. AT&T also acknowledged the customer records were exposed in a cloud database that was protected only by a username and password (no multi-factor authentication needed). Continue reading Crooks Steal Phone, SMS Records for Nearly All AT&T Customers→