Patch Tuesday, December 2024 Edition

Microsoft today released updates to plug at least 70 security holes in Windows and Windows software, including one vulnerability that is already being exploited in active attacks. The zero-day seeing exploitation involves CVE-2024-49138, a security weakness in the Windows Common… Read More » Continue reading Patch Tuesday, December 2024 Edition

Justice Department Seizes Cybercrime Website and Charges Its Administrators

Three Administrators Charged and Cryptocurrency Seized The Justice Department today announced the seizure of PopeyeTools, an illicit website and marketplace dedicated to selling stolen credit cards and other tools for carrying out cybercrime and fraud,… Continue reading Justice Department Seizes Cybercrime Website and Charges Its Administrators

Russia arrests hacker accused of preventing electronic voting during local election

Funny how Russia doesn’t like it when someone interferes with their elections, huh? Daryna Antoniuk reports: Russia’s Federal Security Service (FSB) announced that it had detained a Moscow resident for conducting distributed denial-of-service (DD… Continue reading Russia arrests hacker accused of preventing electronic voting during local election

American creating deepfakes targeting Harris works with Russian intel, documents show

Catherine Belton reports: A former deputy Palm Beach County sheriff who fled to Moscow and became one of the Kremlin’s most prolific propagandists is working directly with Russian military intelligence to pump out deepfakes and circulate misinformation… Continue reading American creating deepfakes targeting Harris works with Russian intel, documents show

Google Database Reveals Thousands of Privacy Incidents

Joseph Cox reports: Google has accidentally collected childrens’ voice data, leaked the trips and home addresses of car pool users, and made YouTube recommendations based on users’ deleted watch history, among thousands of other employee-reported priva… Continue reading Google Database Reveals Thousands of Privacy Incidents

Is Your Computer Part of ‘The Largest Botnet Ever?’

The U.S. Department of Justice (DOJ) today said they arrested the alleged operator of 911 S5, a ten-year-old online anonymity service that was powered by what the director of the FBI called “likely the world’s largest botnet ever.” The arrest coincided with the seizure of the 911 S5 website and supporting infrastructure, which the government says turned computers running various “free VPN” products into Internet traffic relays that facilitated billions of dollars in online fraud and cybercrime. Continue reading Is Your Computer Part of ‘The Largest Botnet Ever?’

Treasury Sanctions Creators of 911 S5 Proxy Botnet

The U.S. Department of the Treasury today unveiled sanctions against three Chinese nationals for allegedly operating 911 S5, an online anonymity service that for many years was the easiest and cheapest way to route one’s Web traffic through malware-infected computers around the globe. KrebsOnSecurity identified one of the three men in a July 2022 investigation into 911 S5, which was massively hacked and then closed ten days later. Continue reading Treasury Sanctions Creators of 911 S5 Proxy Botnet