Latest Warnings – WindowsTechs.com

Fintech Giant Finastra Investigating Data Breach

Posted on November 20, 2024 by BrianKrebs

The financial technology firm Finastra is investigating the alleged large-scale theft of information from its internal file transfer platform, KrebsOnSecurity has learned. Finastra, which provides software and services to 45 of the world’s top 50 banks, notified customers of a potential breach after a cybercriminal began selling more than 400 gigabytes of data purportedly stolen from the company. Continue reading Fintech Giant Finastra Investigating Data Breach→

FBI: Spike in Hacked Police Emails, Fake Subpoenas

Posted on November 9, 2024 by BrianKrebs

The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based technology companies. Continue reading FBI: Spike in Hacked Police Emails, Fake Subpoenas→

Booking.com Phishers May Leave You With Reservations

Posted on November 1, 2024 by BrianKrebs

A number of cybercriminal innovations are making it easier for scammers to cash in on your upcoming travel plans. This story examines a recent spear-phishing campaign that ensued when a California hotel had its booking.com credentials stolen. We’ll also explore an array of cybercrime services aimed at phishers who target hotels that rely on the world’s most visited travel website. Continue reading Booking.com Phishers May Leave You With Reservations→

Change Healthcare Breach Hits 100M Americans

Posted on October 30, 2024 by BrianKrebs

Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information. Continue reading Change Healthcare Breach Hits 100M Americans→

The Global Surveillance Free-for-All in Mobile Ad Data

Posted on October 23, 2024 by BrianKrebs

Not long ago, the ability to remotely track someone’s daily movements just by knowing their home address, employer, or place of worship was considered a powerful surveillance tool that should only be in the purview of nation states. But a new lawsuit in a likely constitutional battle over a New Jersey privacy law shows that anyone can now access this capability, thanks to a proliferation of commercial services that hoover up the digital exhaust emitted by widely-used mobile apps and websites. Continue reading The Global Surveillance Free-for-All in Mobile Ad Data→

Patch Tuesday, October 2024 Edition

Posted on October 8, 2024 by BrianKrebs

Microsoft today released security updates to fix at least 117 security holes in Windows computers and other software, including two vulnerabilities that are already seeing active attacks. Also, Adobe plugged 52 security holes across a range of products, and Apple has addressed a bug in its new macOS 15 “Sequoia” update that broke many cybersecurity tools. Continue reading Patch Tuesday, October 2024 Edition→

Timeshare Owner? The Mexican Drug Cartels Want You

Posted on September 25, 2024 by BrianKrebs

The FBI is warning timeshare owners to be wary of a prevalent telemarketing scam involving a violent Mexican drug cartel that tries to trick elderly people into believing someone wants to buy their property. This is the story of a couple who recently lost more than $50,000 to an ongoing timeshare scam that spans at least two dozen phony escrow, title and realty firms. Continue reading Timeshare Owner? The Mexican Drug Cartels Want You→

This Windows PowerShell Phish Has Scary Potential

Posted on September 19, 2024 by BrianKrebs

Many GitHub users this week received a novel phishing email warning of critical security holes in their code. Those who clicked the link for details were asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware. While it’s unlikely that many programmers fell for this scam, it’s notable because less targeted versions of it are likely to be far more successful against the average Windows user. Continue reading This Windows PowerShell Phish Has Scary Potential→

Scam ‘Funeral Streaming’ Groups Thrive on Facebook

Posted on September 18, 2024 by BrianKrebs

Scammers are flooding Facebook with groups that purport to offer video streaming of funeral services for the recently deceased. Friends and family who follow the links for the streaming services are then asked to cough up their credit card information. Recently, these scammers have branched out into offering fake streaming services for nearly any kind of event advertised on Facebook. Here’s a closer look at the size of this scheme, and some findings about who may be responsible. Continue reading Scam ‘Funeral Streaming’ Groups Thrive on Facebook→

Sextortion Scams Now Include Photos of Your Home

Posted on September 3, 2024 by BrianKrebs

An old but persistent email scam known as “sextortion” has a new personalized touch: The missives, which claim that malware has captured webcam footage of recipients pleasuring themselves, now include a photo of the target’s home in a bid to make threats about publishing the videos more frightening and convincing. Continue reading Sextortion Scams Now Include Photos of Your Home→