DomainTools.com – Page 2 – WindowsTechs.com

The Case for Limiting Your Browser Extensions

Posted on March 3, 2020 by BrianKrebs

Last week, KrebsOnSecurity reported to health insurance provider Blue Shield of California that its Web site was flagged by multiple security products as serving malicious content. Blue Shield quickly removed the unauthorized code. An investigation determined it was injected by a browser extension installed on the computer of a Blue Shield employee who’d edited the Web site in the past month.

The incident is a reminder that browser extensions — however useful or fun they may seem when you install them — typically have a great deal of power and can effectively read and/or write all data in your browsing sessions. And as we’ll see, it’s not uncommon for extension makers to sell or lease their user base to shady advertising firms, or in some cases abandon them to outright cybercriminals. Continue reading The Case for Limiting Your Browser Extensions→

French Firms Rocked by Kasbah Hacker?

Posted on March 2, 2020 by BrianKrebs

A large number of French critical infrastructure firms were hacked as part of an extended malware campaign that appears to have been orchestrated by at least one attacker based in Morocco, KrebsOnSecurity has learned. The individual thought to be involved has earned accolades from the likes of Apple, Dell, and Microsoft for helping to find and fix security vulnerabilities in their products. Continue reading French Firms Rocked by Kasbah Hacker?→

Hackers Sell Access to Bait-and-Switch Empire

Posted on March 4, 2019 by BrianKrebs

Cybercriminals are auctioning off access to customer information stolen from an online data broker behind a dizzying array of bait-and-switch Web sites that sell access to a vast range of data on U.S. consumers, including DMV and arrest records, geneal… Continue reading Hackers Sell Access to Bait-and-Switch Empire→

Trump’s Dumps: ‘Making Dumps Great Again’

Posted on May 26, 2017 by BrianKrebs

It’s not uncommon for crooks who peddle stolen credit cards to seize on iconic American figures of wealth and power in the digital advertisements for these shops that run continuously on various cybercrime forums. Exhibit A: McDumpals, a hugely popular carding site that borrows the Ronald McDonald character from McDonald’s and caters to bulk buyers. Exhibit B: Uncle Sam’s dumps shop, which wants YOU! to buy American. Today, we’ll look at an up and coming credit card shop called Trump’s-Dumps, which invokes 45’s likeness and promises to “make credit card fraud great again.” Continue reading Trump’s Dumps: ‘Making Dumps Great Again’→

Trump’s Dumps: ‘Making Dumps Great Again’

Posted on May 26, 2017 by BrianKrebs

Who Ran Leakedsource.com?

Posted on February 15, 2017 by BrianKrebs

Late last month, multiple news outlets reported that unspecified law enforcement officials had seized the servers for Leakedsource.com, perhaps the largest online collection of usernames and passwords leaked or stolen in some of the worst data breaches — including billions of credentials for accounts at top sites like LinkedIn, Myspace, and Yahoo.

In a development that may turn out to be deeply ironic, it seems that the real-life identity of Leakedsource’s principal owner may have been exposed by many of the same stolen databases he’s been peddling. Continue reading Who Ran Leakedsource.com?→

Who Ran Leakedsource.com?

Posted on February 15, 2017 by BrianKrebs

Spreading the DDoS Disease and Selling the Cure

Posted on October 19, 2016 by BrianKrebs

Earlier this month a hacker released the source code for Mirai, a malware strain that was used to launch a historically large 620 Gbps denial-of-service attack against this site in September. That attack came in apparent retribution for a story here which directly preceded the arrest of two Israeli men for allegedly running an online attack for hire service called vDOS. Turns out, the site where the Mirai source code was leaked had some very interesting things in common with the place vDOS called home. Continue reading Spreading the DDoS Disease and Selling the Cure→

Spreading the DDoS Disease and Selling the Cure

Posted on October 19, 2016 by BrianKrebs

The Reincarnation of a Bulletproof Hoster

Posted on August 3, 2016 by BrianKrebs

In April 2016, security firm Trend Micro published a damning report about a Web hosting provider referred to only as a “cyber-attack facilitator in the Netherlands.” If the Trend analysis lacked any real punch that might have been because — shortly after the report was published — names were redacted so that it was no longer immediately clear exactly who the bad hosting provider was. This post aims to shine a bit more light on the individuals apparently behind this mysterious rogue hosting firm — a company called HostSailor[dot]com. Continue reading The Reincarnation of a Bulletproof Hoster→