How Did Authorities Identify the Alleged Lockbit Boss? (krebsonsecurity.com)
Last week, the United States joined the U.K. and Australia in sanctioning and charging a Russian man named Dmitry Yuryevich Khoroshev as the leader of the infamous LockBit ransomware group. LockBit’s leader “LockBitSupp” claims the feds named the wrong guy, saying the charges don’t explain how they connected him to...
U.S. Charges Russian Man as Boss of LockBit Ransomware Group – Krebs on Security (krebsonsecurity.com)
KrebsOnSecurity has been in intermittent contact with LockBitSupp for several months over the course of reporting on different LockBit victims. Reached at the same ToX instant messenger identity that the ransomware group leader has promoted on Russian cybercrime forums, LockBitSupp claimed the authorities named the wrong guy....
Why Your VPN May Not Be As Secure As It Claims (krebsonsecurity.com)
Virtual private networking (VPN) companies market their services as a way to prevent anyone from snooping on your Internet usage. But new research suggests this is a dangerous assumption when connecting to a VPN via an untrusted network, because attackers on the same network could force a target’s traffic off of the protection...
Man Who Mass-Extorted Psychotherapy Patients Gets Six Years (krebsonsecurity.com)
A 26-year-old Finnish man was sentenced to more than six years in prison today after being convicted of hacking into an online psychotherapy clinic, leaking tens of thousands of patient therapy records, and attempting to extort the clinic and patients.
Smart locks from Chirp systems found to store app credentials in plain text (krebsonsecurity.com)
Twitter’s Clumsy Pivot to X.com Is a Gift to Phishers (krebsonsecurity.com)
👀🍿
Twitter’s Clumsy Pivot to X.com Is a Gift to Phishers (krebsonsecurity.com)
On April 9, Twitter/X began automatically modifying links that mention “twitter.com” to read “x.com” instead. But over the past 48 hours, dozens of new domain names have been registered that demonstrate how this change could be used to craft convincing phishing links — such as fedetwitter[.]com, which until very...
Thread Hijacking: Phishes That Prey on Your Curiosity – Krebs on Security (krebsonsecurity.com)
Recent ‘MFA Bombing’ Attacks Targeting Apple Users – Krebs on Security (krebsonsecurity.com)
Recent ‘MFA Bombing’ Attacks Targeting Apple Users (krebsonsecurity.com)
Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple’s password reset feature. In this scenario, a target’s Apple devices are forced to display dozens of system-level prompts that prevent the devices from being used until the recipient responds...
Mozilla Drops Onerep After CEO Admits to Running People-Search Networks (krebsonsecurity.com)
Mozilla drops Onerep after CEO admits to running people-search networks (krebsonsecurity.com)
The nonprofit organization that supports the Firefox web browser said today it is winding down its new partnership with Onerep, an identity protection service recently bundled with Firefox that offers to remove users from hundreds of people-search sites. The move comes just days after a report by KrebsOnSecurity forced...
Mozilla Drops Onerep After CEO Admits to Running People-Search Networks – Krebs on Security (krebsonsecurity.com)
Mozilla Drops Onerep After CEO Admits to Running People-Search Networks (krebsonsecurity.com)
The nonprofit organization that supports the Firefox web browser said today it is winding down its new partnership with Onerep, an identity protection service recently bundled with Firefox that offers to remove users from hundreds of people-search sites. The move comes just days after a report by KrebsOnSecurity forced...
Mozilla Drops Onerep After CEO Admits to Running People-Search Networks (krebsonsecurity.com)
Mozilla Drops Onerep After CEO Admits to Running People-Search Networks (krebsonsecurity.com)
The nonprofit organization that supports the Firefox web browser said today it is winding down its new partnership with Onerep, an identity protection service recently bundled with Firefox that offers to remove users from hundreds of people-search sites. The move comes just days after a report by KrebsOnSecurity forced...
CEO of data privacy company Onerep.com [Mozilla's partner for Mozilla Monitor] founded dozens of people-search firms (krebsonsecurity.com)
The data privacy company Onerep.com bills itself as a Virginia-based service for helping people remove their personal information from almost 200 people-search websites. However, an investigation into the history of onerep.com finds this company is operating out of Belarus and Cyprus, and that its founder has launched dozens of...
CEO of Data Privacy Company Onerep.com Founded Dozens of People-Search Firms (krebsonsecurity.com)
CEO of Data Privacy Company Onerep.com Founded Dozens of People-Search Firms (krebsonsecurity.com)
cross-posted from: sh.itjust.works/post/16231775
CEO of Data Privacy Company Onerep.com Founded Dozens of People-Search Firms – Krebs on Security (krebsonsecurity.com)
CEO of Data Privacy Company Onerep.com Founded Dozens of People-Search Firms (krebsonsecurity.com)
cross-posted from: sh.itjust.works/post/16231775
U.S. Internet Leaked Years of Customer Emails in Major Security Blunder (krebsonsecurity.com)
Comments...
U.S. Internet Leaked Years of Internal, Customer Emails – Krebs on Security (krebsonsecurity.com)
U.S. Internet Leaked Years of Internal, Customer Emails (krebsonsecurity.com)
The Minnesota-based Internet provider U.S. Internet Corp. has a business unit called Securence, which specializes in providing filtered, secure email services to businesses, educational institutions and government agencies worldwide. But until it was notified last week, U.S. Internet was publishing more than a decade’s worth...