Latest Warnings – Page 10 – WindowsTechs.com

FBI, CISA Echo Warnings on ‘Vishing’ Threat

Posted on August 21, 2020 by BrianKrebs

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) on Thursday issued a joint alert to warn about the growing threat from voice phishing or “vishing” attacks targeting companies. The advisory came less than 24 hours after KrebsOnSecurity published an in-depth look at a crime group offering a service that people can hire to steal VPN credentials and other sensitive data from employees working remotely during the Coronavirus pandemic. Continue reading FBI, CISA Echo Warnings on ‘Vishing’ Threat→

FBI, CISA Echo Warnings on ‘Vishing’ Threat

Posted on August 21, 2020 by BrianKrebs

Voice Phishers Targeting Corporate VPNs

Posted on August 19, 2020 by BrianKrebs

The COVID-19 epidemic has brought a wave of email phishing attacks that try to trick work-at-home employees into giving away credentials needed to remotely access their employers’ networks. But one increasingly brazen group of crooks is taking your standard phishing attack to the next level, marketing a voice phishing service that uses a combination of one-on-one phone calls and custom phishing sites to steal VPN credentials from employees. Continue reading Voice Phishers Targeting Corporate VPNs→

Microsoft Patch Tuesday, August 2020 Edition

Posted on August 11, 2020 by BrianKrebs

Microsoft today released updates to plug at least 120 security holes in its Windows operating systems and supported software, including two newly discovered vulnerabilities that are actively being exploited. Yes, good people of the Windows world, it’s … Continue reading Microsoft Patch Tuesday, August 2020 Edition→

Is Your Chip Card Secure? Much Depends on Where You Bank

Posted on July 30, 2020 by BrianKrebs

Chip-based credit and debit cards are designed to make it infeasible for skimming devices or malware to clone your card when you pay for something by dipping the chip instead of swiping the stripe. But a recent series of malware attacks on U.S.-based merchants suggest thieves are exploiting weaknesses in how certain financial institutions have implemented the technology to sidestep key chip card security features and effectively create usable, counterfeit cards. Continue reading Is Your Chip Card Secure? Much Depends on Where You Bank→

Turn on MFA Before Crooks Do It For You

Posted on June 19, 2020 by BrianKrebs

Hundreds of popular websites now offer some form of multi-factor authentication (MFA), which can help users safeguard access to accounts when their password is breached or stolen. But people who don’t take advantage of these added safeguards may find it far more difficult to regain access when their account gets hacked, because increasingly thieves will enable multi-factor options and tie the account to a device they control. Here’s the story of one such incident. Continue reading Turn on MFA Before Crooks Do It For You→

Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com

Posted on June 14, 2020 by BrianKrebs

For the past year, a site called Privnotes.com has been impersonating Privnote.com, a legitimate, free service that offers private, encrypted messages which self-destruct automatically after they are read. Until recently, I couldn’t quite work out what Privnotes was up to, but today it became crystal clear: Any messages containing bitcoin addresses will be automatically altered to include a different bitcoin address, as long as the Internet addresses of the sender and receiver of the message are not the same. Continue reading Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com→

Florence, Ala. Hit By Ransomware 12 Days After Being Alerted by KrebsOnSecurity

Posted on June 9, 2020 by BrianKrebs

In late May, KrebsOnSecurity alerted numerous officials in Florence, Ala. that their information technology systems had been infiltrated by hackers who specialize in deploying ransomware. Nevertheless, on Friday, June 5, the intruders sprang their attack, deploying ransomware and demanding nearly $300,000 worth of bitcoin. City officials now say they plan to pay the ransom demand, in hopes of keeping the personal data of their citizens off of the Internet. Continue reading Florence, Ala. Hit By Ransomware 12 Days After Being Alerted by KrebsOnSecurity→

U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs

Posted on May 16, 2020 by BrianKrebs

A well-organized Nigerian crime ring is exploiting the COVID-19 crisis by committing large-scale fraud against multiple state unemployment insurance programs, with potential losses in the hundreds of millions of dollars, according to a new alert issued by the U.S. Secret Service.

A memo seen by KrebsOnSecurity that the Secret Service sent to field offices around the United States this week says the ring has been filing unemployment claims in different states using Social Security numbers and other personally identifiable information (PII) belonging to identity theft victims, and that “a substantial amount of the fraudulent benefits submitted have used PII from first responders, government personnel and school employees.” Continue reading U.S. Secret Service: “Massive Fraud” Against State Unemployment Insurance Programs→

Microsoft Patch Tuesday, May 2020 Edition

Posted on May 12, 2020 by BrianKrebs

Microsoft today issued software updates to plug at least 111 security holes in Windows and Windows-based programs. None of the vulnerabilities were labeled as being publicly exploited or detailed prior to today, but as always if you’re running Windows on any of your machines it’s time once again to prepare to get your patches on. Continue reading Microsoft Patch Tuesday, May 2020 Edition→