Slándáil Research:
Feeds
Feeds
Search
Search Engine
Feed: Krebs on Security
Link
Russian FSB Counterintelligence Chief Gets 9 Years in Cybercrime Bribery Scheme
Who Stole 3.6M Tax Records from South Carolina?
Crickets from Chirp Systems in Smart Lock Key Leak
Why CISA is Warning CISOs About a Breach at Sisense
Twitter’s Clumsy Pivot to X.com Is a Gift to Phishers
April’s Patch Tuesday Brings Record Number of Fixes
Fake Lawsuit Threat Exposes Privnote Phishing Sites
‘The Manipulaters’ Improve Phishing, Still Fail at Opsec
Thread Hijacking: Phishes That Prey on Your Curiosity
Recent ‘MFA Bombing’ Attacks Targeting Apple Users
Mozilla Drops Onerep After CEO Admits to Running People-Search Networks
The Not-so-True People-Search Network from China
CEO of Data Privacy Company Onerep.com Founded Dozens of People-Search Firms
Patch Tuesday, March 2024 Edition
Incognito Darknet Market Mass-Extorts Buyers, Sellers
A Close Up Look at the Consumer Data Broker Radaris
BlackCat Ransomware Group Implodes After Apparent $22M Payment by Change Healthcare
Fulton County, Security Experts Call LockBit’s Bluff
Calendar Meeting Links Used to Spread Mac Malware
FBI’s LockBit Takedown Postponed a Ticking Time Bomb in Fulton County, Ga.
New Leak Shows Business Side of China’s APT Menace
Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll Affiliates
U.S. Internet Leaked Years of Internal, Customer Emails
Fat Patch Tuesday, February 2024 Edition
Juniper Support Portal Exposed Customer Device Info
From Cybercrime Saul Goodman to the Russian GRU
Arrests in $400M SIM-Swap Tied to Heist at FTX?
Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider
Who is Alleged Medibank Hacker Aleksandr Ermakov?
Using Google Search to Find Software Can Be Risky
Canadian Man Stuck in Triangle of E-Commerce Fraud
E-Crime Rapper ‘Punchmade Dev’ Debuts Card Shop
Here’s Some Bitcoin: Oh, and You’ve Been Served!
Meet Ika & Sal: The Bulletproof Hosting Duo from Hell
Happy 14th Birthday, KrebsOnSecurity!
BlackCat Ransomware Raises Ante After FBI Disruption
Ten Years Later, New Clues in the Target Breach
Microsoft Patch Tuesday, December 2023 Edition
ICANN Launches Service to Help With WHOIS Lookups
Okta: Breach Affected All Customer Support Users
ID Theft Service Resold Access to USInfoSearch Data
Alleged Extortioner of Psychotherapy Patients Faces Trial
Microsoft Patch Tuesday, November 2023 Edition
It’s Still Easy for Anyone to Become You at Experian
Who’s Behind the SWAT USA Reshipping Service?
Russian Reshipping Service ‘SWAT USA Drop’ Exposed
.US Harbors Prolific Malicious Link Shortening Service
NJ Man Hired Online to Firebomb, Shoot at Homes Gets 13 Years in Prison
Hackers Stole Access Tokens from Okta’s Support Unit
The Fake Browser Update Scam Gets a Makeover
Tech CEO Sentenced to 5 Years in IP Address Scheme
Patch Tuesday, October 2023 Edition
Phishers Spoof USPS, 12 Other Natl’ Postal Services
Don’t Let Zombie Zoom Links Drag You Down
A Closer Look at the Snatch Data Ransom Group
‘Snatch’ Ransom Group Exposes Visitor IP Addresses
LastPass: ‘Horse Gone Barn Bolted’ is Strong Password
Who’s Behind the 8Base Ransomware Website?
FBI Hacker Dropped Stolen Airbus Data on 9/11
Adobe, Apple, Google & Microsoft Patch 0-Day Bugs
Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach
Why is .US Being Used to Phish So Many of Us?
U.S. Hacks QakBot, Quietly Removes Botnet Infections
Kroll Employee SIM-Swapped for Crypto Investor Data
Tourists Give Themselves Away by Looking Up. So Do Most Network Intruders.
Karma Catches Up to Global Phishing Service 16Shop
Diligere, Equity-Invest Are New Firms of U.K. Con Man
Microsoft Patch Tuesday, August 2023 Edition
Meet the Brains Behind the Malware-Friendly AI Chat Service ‘WormGPT’
Teach a Man to Phish and He’s Set for Life
How Malicious Android Apps Slip Into Disguise
Russia Sends Cybersecurity CEO to Jail for 14 Years
Who and What is Behind the Malware Proxy Service SocksEscort?
Few Fortune 100 Firms List Security Pros in Their Executive Ranks
LeakedSource Owner Quit Ashley Madison a Month Before 2015 Hack
SEO Expert Hired and Fired By Ashley Madison Turned on Company, Promising Revenge
Apple & Microsoft Patch Tuesday, July 2023 Edition
Top Suspect in 2015 Ashley Madison Hack Committed Suicide in 2014
Who’s Behind the DomainNetworks Snail Mail Scam?
Russian Cybersecurity Executive Arrested for Alleged Role in 2012 Megahacks
U.K. Cyber Thug “PlugwalkJoe” Gets 5 Years in Prison
SMS Phishers Harvested Phone Numbers, Shipment Data from UPS Tracking Tool
Why Malware Crypting Services Deserve More Scrutiny
CISA Order Highlights Persistent Risk at Network Edge
Microsoft Patch Tuesday, June 2023 Edition
Barracuda Urges Replacing — Not Patching — Its Email Security Gateways
Service Rents Email Addresses for Account Signups
Ask Fitis, the Bear: Real Crooks Sign Their Malware
Discord Admins Hacked by Malicious Bookmarks
Phishing Domains Tanked After Meta Sued Freenom
Interview With a Crypto Scam Investment Spammer
Russian Hacker “Wazawaka” Indicted for Ransomware
Re-Victimization from Police-Auctioned Cell Phones
Microsoft Patch Tuesday, May 2023 Edition
Feds Take Down 13 More DDoS-for-Hire Services
$10M Is Yours If You Can Get This Guy to Leave Russia
Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data
Many Public Salesforce Sites are Leaking Private Data
3CX Breach Was a Double Supply Chain Compromise
Giving a Face to the Malware Proxy Service ‘Faceless’
Why is ‘Juice Jacking’ Suddenly Back in the News?
Microsoft (& Apple) Patch Tuesday, April 2023 Edition
FBI Seizes Bot Shop ‘Genesis Market’ Amid Arrests Targeting Operators, Suppliers
A Serial Tech Investment Scammer Takes Up Coding?
German Police Raid DDoS-Friendly Host ‘FlyHosting’
UK Sets Up Fake Booter Sites To Muddy DDoS Market
Google Suspends Chinese E-Commerce App Pinduoduo Over Malware
Why You Should Opt Out of Sharing Data With Your Mobile Provider
Feds Charge NY Man as BreachForums Boss “Pompompurin”
Microsoft Patch Tuesday, March 2023 Edition
Two U.S. Men Charged in 2022 Hacking of DEA Portal
Who’s Behind the NetWire Remote Access Trojan?
Sued by Meta, Freenom Halts Domain Registrations
Highlights from the New U.S. Cybersecurity Strategy
Hackers Claim They Breached T-Mobile More Than 100 Times in 2022
When Low-Tech Hacks Cause High-Impact Breaches
Who’s Behind the Botnet-Based Service BHProxies?
New Protections for Food Benefits Stolen by Skimmers
Microsoft Patch Tuesday, February 2023 Edition
U.S., U.K. Sanction 7 Men Tied to Trickbot Hacking Group
KrebsOnSecurity in Upcoming Hulu Series on Ashley Madison Breach
Finland’s Most-Wanted Hacker Nabbed in France
Experian Glitch Exposing Credit Files Lasted 47 Days
Administrator of RSOCKS Proxy Botnet Pleads Guilty
New T-Mobile Breach Affects 37 Million Accounts
Thinking of Hiring or Running a Booter Service? Think Again.
Microsoft Patch Tuesday, January 2023 Edition
Identity Thieves Bypassed Experian Security to View Credit Reports
Happy 13th Birthday, KrebsOnSecurity!
The Equifax Breach Settlement Offer is Real, For Now
Hacked Ring Cams Used to Record Swatting Victims
Six Charged in Mass Takedown of DDoS-for-Hire Sites
Microsoft Patch Tuesday, December 2022 Edition
FBI’s Vetted Info Sharing Network ‘InfraGard’ Hacked
New Ransom Payment Schemes Target Executives, Telemedicine
Judge Orders U.S. Lawyer in Russian Botnet Case to Pay Google
ConnectWise Quietly Patches Flaw That Helps Phishers
U.S. Govt. Apps Bundled Russian Code With Ties to Mobile Malware Developer
Researchers Quietly Cracked Zeppelin Ransomware Keys
Disneyland Malware Team: It’s a Puny World After All
Top Zeus Botnet Suspect “Tank” Arrested in Geneva
Lawsuit Seeks Food Benefits Stolen By Skimmers
Patch Tuesday, November 2022 Election Edition
LinkedIn Adds Verified Emails, Profile Creation Dates
Hacker Charged With Extorting Online Psychotherapy Service
Accused ‘Raccoon’ Malware Developer Fled Ukraine After Russian Invasion
Battle with Bots Prompts Mass Purge of Amazon, Apple Employee Accounts on LinkedIn
How Card Skimming Disproportionally Affects Those Most In Need
Anti-Money Laundering Service AMLBot Cleans House
Microsoft Patch Tuesday, October 2022 Edition
Report: Big U.S. Banks Are Stiffing Account Takeover Victims
Glut of Fake LinkedIn Profiles Pits HR Against the Bots
Microsoft: Two New 0-Day Flaws in Exchange Server
Fake CISO Profiles on LinkedIn Target Fortune 500s
Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S.
SIM Swapper Abducted, Beaten, Held for $200k Ransom
Botched Crypto Mugging Lands Three U.K. Men in Jail
Say Hello to Crazy Thin ‘Deep Insert’ ATM Skimmers
Wormable Flaw, 0days Lead Sept. 2022 Patch Tuesday
Transacting in Person with Strangers from the Internet
Violence-as-a-Service: Brickings, Firebombings & Shootings for Hire
Final Thoughts on Ubiquiti
How 1-Time Passcodes Became a Corporate Liability
PayPal Phishing Scam Uses Invoices Sent Via PayPal
When Efforts to Contain a Data Breach Backfire
Sounding the Alarm on Emergency Alert System Flaws
It Might Be Our Data, But It’s Not Our Breach
The Security Pros and Cons of Using Email Aliases
Microsoft Patch Tuesday, August 2022 Edition
Class Action Targets Experian Over Account Security
Scammers Sent Uber to Take Elderly Lady to the Bank
No SOCKS, No Shoes, No Malware Proxy Services!
911 Proxy Service Implodes After Disclosing Breach
Breach Exposes Users of Microleaves Proxy Service
A Retrospective on the 2015 Ashley Madison Breach
Massive Losses Define Epidemic of ‘Pig Butchering’
A Deep Dive Into the Residential Proxy Service ‘911’
Why 8kun Went Offline During the January 6 Hearings
Microsoft Patch Tuesday, July 2022 Edition
Experian, You Have Some Explaining to Do
The Link Between AWM Proxy & the Glupteba Botnet
Meet the Administrators of the RSOCKS Proxy Botnet
Why Paper Receipts are Money at the Drive-Thru
Microsoft Patch Tuesday, June 2022 Edition
Ransomware Group Debuts Searchable Victim Data
“Downthem” DDoS-for-Hire Boss Gets 2 Years in Prison
Adconion Execs Plead Guilty in Federal Anti-Spam Case
KrebsOnSecurity in New Netflix Series on Cybercrime
What Counts as “Good Faith Security Research?”
Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade Sanctions
Senators Urge FTC to Probe ID.me Over Selfie Data
When Your Smart ID Card Reader Comes With Malware
DEA Investigating Breach of Law Enforcement Data Portal
Microsoft Patch Tuesday, May 2022 Edition
Your Phone May Soon Replace Many of Your Passwords
Russia to Rent Tech-Savvy Prisoners to Corporate IT?
You Can Now Ask Google to Remove Your Phone Number, Email or Address from Search Results
Fighting Fake EDRs With ‘Credit Ratings’ for Police
Leaked Chats Show LAPSUS$ Stole T-Mobile Source Code
Conti’s Ransomware Toll on the Healthcare Industry
Microsoft Patch Tuesday, April 2022 Edition
RaidForums Gets Raided, Alleged Admin Arrested
Double-Your-Crypto Scams Share Crypto Scam Host
Actions Target Russian Govt. Botnet, Hydra Dark Market
The Original APT: Advanced Persistent Teenagers
Fake Emergency Search Warrants Draw Scrutiny from Capitol Hill
Hackers Gaining Power of Subpoena Via Fake “Emergency Data Requests”
Estonian Tied to 13 Ransomware Attacks Gets 66 Months in Prison
A Closer Look at the LAPSUS$ Data Extortion Group
‘Spam Nation’ Villain Vrublevsky Charged With Fraud
Pro-Ukraine ‘Protestware’ Pushes Antiwar Ads, Geo-Targeted Malware
Lawmakers Probe Early Release of Top RU Cybercrook
Report: Recent 10x Increase in Cyberattacks on Ukraine
Microsoft Patch Tuesday, March 2022 Edition
Internet Backbone Giant Lumen Shuns .RU
Conti Ransomware Group Diaries, Part IV: Cryptocrime
Conti Ransomware Group Diaries, Part III: Weaponry
Conti Ransomware Group Diaries, Part II: The Office
Conti Ransomware Group Diaries, Part I: Evasion
Russia Sanctions May Spark Escalating Cyber Conflict
IRS: Selfies Now Optional, Biometric Data to Be Deleted
Report: Missouri Governor’s Office Responsible for Teacher Data Leak
Red Cross Hack Linked to Iranian Influence Operation?
Wazawaka Goes Waka Waka
Russian Govt. Continues Carding Shop Crackdown
Microsoft Patch Tuesday, February 2022 Edition
IRS To Ditch Biometric Requirement for Online Access
How Phishers Are Slinking Their Links Into LinkedIn
Fake Investor John Bernard Sinks Norwegian Green Shipping Dreams
Who Wrote the ALPHV/BlackCat Ransomware Strain?
Scary Fraud Ensues When ID Theft & Usury Collide
Crime Shop Sells Hacked Logins to Other Crime Shops
IRS Will Soon Require Selfies for Online Access
At Request of U.S., Russia Rounds Up 14 REvil Ransomware Affiliates
Who is the Network Access Broker ‘Wazawaka?’
‘Wormable’ Flaw Leads January 2022 Patch Tuesday
500M Avira Antivirus Users Introduced to Cryptomining
Norton 360 Now Comes With a Cryptominer
Happy 12th Birthday, KrebsOnSecurity.com!
NY Man Pleads Guilty in $20 Million SIM Swap Theft
Microsoft Patch Tuesday, December 2021 Edition
Inside Ireland’s Public Healthcare Ransomware Scare
Canada Charges Its “Most Prolific Cybercriminal”
Who Is the Network Access Broker ‘Babam’?
Ubiquiti Developer Charged With Extortion, Causing 2020 “Breach”
The Internet is Held Together With Spit & Baling Wire
Arrest in ‘Ransom Your Employer’ Email Scheme
The ‘Zelle Fraud’ Scam: How it Works, How to Fight Back
Tech CEO Pleads to Wire Fraud in IP Address Scheme
Hoax Email Blast Abused Poor Coding in FBI Website