- BadIIS Malware Exploits IIS Servers for SEO Fraudon February 10, 2025 at 5:15 pm
Trend Micro uncovers BadIIS malware exploiting IIS servers for SEO fraud and malicious redirects
- Georgia Hospital Alerts 120,000 Individuals of Data Breachon February 10, 2025 at 4:30 pm
Memorial Hospital and Manor, located in Bainbridge, Georgia, has alerted 120,000 individuals that their data was breached following a ransomware attack last November
- US: Man Gets 20 Years for $37m Crypto Heiston February 10, 2025 at 1:45 pm
A US resident based in Indiana was charged with cyber intrusion and cryptocurrency theft conspiracies
- UK Military Fast-Tracks Cybersecurity Recruitmenton February 10, 2025 at 11:15 am
The UK MoD has announced it is fast-tracking the recruitment of specialist cybersecurity roles, with recruits offered a starting salary of above £40,000
- Experts Dismayed at UK’s Apple Decryption Demandson February 10, 2025 at 10:30 am
Security and privacy experts have questioned a new demand from the UK Home Office on Apple’s encrypted iCloud service
Hacks – Threatpost The First Stop For Security News
- Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firmsby Nate Nelson on August 29, 2022 at 2:56 pm
Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.
- iPhone Users Urged to Update to Patch 2 Zero-Daysby Elizabeth Montalbano on August 19, 2022 at 3:25 pm
Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack.
- APT Lazarus Targets Engineers with macOS Malwareby Elizabeth Montalbano on August 17, 2022 at 3:07 pm
The North Korean APT is using a fake job posting for Coinbase in a cyberespionage campaign targeting users of both Apple and Intel-based systems.
- Black Hat and DEF CON Roundupby Threatpost on August 15, 2022 at 1:56 pm
‘Summer Camp’ for hackers features a compromised satellite, a homecoming for hackers and cyberwarfare warnings.
- New Hacker Forum Takes Pro-Ukraine Stanceby Elizabeth Montalbano on August 11, 2022 at 3:14 pm
A uniquely politically motivated site called DUMPS focuses solely on threat activity directed against Russia and Belarus
Mobile Security – Threatpost The First Stop For Security News
- iPhone Users Urged to Update to Patch 2 Zero-Daysby Elizabeth Montalbano on August 19, 2022 at 3:25 pm
Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack.
- Xiaomi Phone Bug Allowed Payment Forgeryby Nate Nelson on August 16, 2022 at 12:26 pm
Mobile transactions could’ve been disabled, created and signed by attackers.
- Google Boots Multiple Malware-laced Android Apps from Marketplaceby Elizabeth Montalbano on July 18, 2022 at 12:32 pm
Google removed eight Android apps, with 3M cumulative downloads, from its marketplace for being infected with a Joker spyware variant.
- Leaky Access Tokens Exposed Amazon Photos of Usersby Nate Nelson on June 29, 2022 at 8:18 pm
Hackers with Amazon users’ authentication tokens could’ve stolen or encrypted personal photos and documents.
- Google Warns Spyware Being Deployed Against Android, iOS Usersby Elizabeth Montalbano on June 24, 2022 at 11:02 am
The company is warning victims in Italy and Kazakhstan that they have been targeted by the malware from Italian firm RCS Labs.
Krebs on Security In-depth security news and investigation
- Teen on Musk’s DOGE Team Graduated from ‘The Com’by BrianKrebs on February 8, 2025 at 12:32 am
Wired reported this week that a 19-year-old working for Elon Musk’s so-called Department of Government Efficiency (DOGE) was given access to sensitive US government systems even though his past association with cybercrime communities should have precluded him from gaining the necessary security clearances to do so. As today’s story explores, the DOGE teen is a former denizen of ‘The Com,’ an archipelago of Discord and Telegram chat channels that function as a kind of distributed cybercriminal social network for facilitating instant collaboration.
- Experts Flag Security, Privacy Risks in DeepSeek AI Appby BrianKrebs on February 6, 2025 at 9:12 pm
New mobile apps from the Chinese artificial intelligence (AI) company DeepSeek have remained among the top three “free” downloads for Apple and Google devices since their debut on Jan. 25, 2025. But experts caution that many of DeepSeek’s design choices — such as using hard-coded encryption keys, and sending unencrypted user and device data to Chinese companies — introduce a number of glaring security and privacy risks.
- Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?by BrianKrebs on February 4, 2025 at 5:09 pm
The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled, English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. An investigation into the history of these communities shows their apparent co-founders quite openly operate an Internet service provider and a pair of e-commerce platforms catering to buyers and sellers on both forums.
- FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gangby BrianKrebs on January 31, 2025 at 6:35 pm
The FBI and authorities in The Netherlands this week seized a number of servers and domains for a hugely popular spam and malware dissemination service operating out of Pakistan. The proprietors of the service, who use the collective nickname “The Manipulaters,” have been the subject of three stories published here since 2015. The FBI said the main clientele are organized crime groups that try to trick victim companies into making payments to a third party.
- Infrastructure Laundering: Blending in with the Cloudby BrianKrebs on January 30, 2025 at 5:10 pm
In an effort to blend in and make their malicious traffic tougher to block, hosting firms catering to cybercriminals in China and Russia increasingly are funneling their operations through major U.S. cloud providers. Research published this week on one such outfit — a sprawling network tied to Chinese organized crime gangs and aptly named “Funnull” — highlights a persistent whac-a-mole problem facing cloud services.