Krebs on Security

Arrests in Tap-to-Pay Scheme Powered by Phishing Authorities in at least two U.S. states last week independently announced arrests of Chinese...

a month ago

23

Arrests in Tap-to-Pay Scheme Powered by Phishing

from Krebs on Security [alt+shift+b] in technology

a month ago

Authorities in at least two U.S. states last week independently announced arrests of Chinese nationals accused of perpetrating a novel form of tap-to-pay fraud using mobile devices. Details released by authorities so far indicate the mobile wallets being used by the scammers were...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

DOGE Worker’s Code Supports NLRB Whistleblower A whistleblower at the National Labor Relations Board (NLRB) alleged last week that denizens of Elon...

a week ago

19

DOGE Worker’s Code Supports NLRB Whistleblower

from Krebs on Security [alt+shift+b] in technology

a week ago

A whistleblower at the National Labor Relations Board (NLRB) alleged last week that denizens of Elon Musk's Department of Government Efficiency (DOGE) siphoned gigabytes of data from the agency's sensitive case files in early March. The whistleblower said accounts created for...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

DOGE to Fired CISA Staff: Email Us Your Personal Data A message posted on Monday to the homepage of the U.S. Cybersecurity & Infrastructure Security...

a month ago

19

DOGE to Fired CISA Staff: Email Us Your Personal Data

from Krebs on Security [alt+shift+b] in technology

a month ago

A message posted on Monday to the homepage of the U.S. Cybersecurity & Infrastructure Security Agency (CISA) is the latest exhibit in the Trump administration's continued disregard for basic cybersecurity protections. The message instructed recently-fired CISA employees to get in...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

When Getting Phished Puts You in Mortal Danger Many successful phishing attacks result in a financial loss or malware infection. But falling for...

a month ago

19

When Getting Phished Puts You in Mortal Danger

from Krebs on Security [alt+shift+b] in technology

a month ago

Many successful phishing attacks result in a financial loss or malware infection. But falling for some phishing scams, like those currently targeting Russians searching online for organizations that are fighting the Kremlin war machine, can cost you your freedom or your life.

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

How Each Pillar of the 1st Amendment is Under Attack In an address to Congress this month, President Trump claimed he had "brought free speech back to...

a month ago

18

How Each Pillar of the 1st Amendment is Under Attack

from Krebs on Security [alt+shift+b] in technology

a month ago

In an address to Congress this month, President Trump claimed he had "brought free speech back to America." But barely two months into his second term, the president has waged an unprecedented attack on the First Amendment rights of journalists, students, universities, government...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Whistleblower: DOGE Siphoned NLRB Case Data A security architect with the National Labor Relations Board (NLRB) alleges that employees from Elon...

2 weeks ago

18

Whistleblower: DOGE Siphoned NLRB Case Data

from Krebs on Security [alt+shift+b] in technology

2 weeks ago

A security architect with the National Labor Relations Board (NLRB) alleges that employees from Elon Musk's Department of Government Efficiency (DOGE) transferred gigabytes of sensitive data from agency case files in early March, using short-lived accounts configured to leave few...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Cyber Forensic Expert in 2,000+ Cases Faces FBI Probe A Minnesota cybersecurity and computer forensics expert whose testimony has featured in thousands of...

a month ago

15

Cyber Forensic Expert in 2,000+ Cases Faces FBI Probe

from Krebs on Security [alt+shift+b] in technology

a month ago

A Minnesota cybersecurity and computer forensics expert whose testimony has featured in thousands of courtroom trials over the past 30 years is facing questions about his credentials and an inquiry from the Federal Bureau of Investigation (FBI). Legal experts say the inquiry...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Microsoft: 6 Zero-Days in March 2025 Patch Tuesday Microsoft today issued more than 50 security updates for its various Windows operating systems,...

a month ago

15

Microsoft: 6 Zero-Days in March 2025 Patch Tuesday

from Krebs on Security [alt+shift+b] in technology

a month ago

Microsoft today issued more than 50 security updates for its various Windows operating systems, including fixes for a whopping six zero-day vulnerabilities that are already seeing active exploitation.

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

ClickFix: How to Infect Your PC in Three Easy Steps A clever malware deployment scheme first spotted in targeted attacks last year has now gone...

a month ago

15

ClickFix: How to Infect Your PC in Three Easy Steps

from Krebs on Security [alt+shift+b] in technology

a month ago

A clever malware deployment scheme first spotted in targeted attacks last year has now gone mainstream. In this scam, dubbed "ClickFix," the visitor to a hacked or malicious website is asked to distinguish themselves from bots by pressing a combination of keyboard keys that...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Patch Tuesday, April 2025 Edition Microsoft today released updates to plug at least 121 security holes in its Windows operating...

4 weeks ago

14

Patch Tuesday, April 2025 Edition

from Krebs on Security [alt+shift+b] in technology

4 weeks ago

Microsoft today released updates to plug at least 121 security holes in its Windows operating systems and software, including one vulnerability that is already being exploited in the wild. Eleven of those flaws earned Microsoft's most-dire "critical" rating, meaning malware or...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Trump Revenge Tour Targets Cyber Leaders, Elections President Trump last week revoked security clearances for Chris Krebs, the former director of the...

3 weeks ago

14

Trump Revenge Tour Targets Cyber Leaders, Elections

from Krebs on Security [alt+shift+b] in technology

3 weeks ago

President Trump last week revoked security clearances for Chris Krebs, the former director of the Cybersecurity and Infrastructure Security Agency (CISA) who was fired by Trump after declaring the 2020 election the most secure in U.S. history. The White House memo, which also...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

China-based SMS Phishing Triad Pivots to Banks China-based purveyors of SMS phishing kits are enjoying remarkable success converting phished...

3 weeks ago

11

China-based SMS Phishing Triad Pivots to Banks

from Krebs on Security [alt+shift+b] in technology

3 weeks ago

China-based purveyors of SMS phishing kits are enjoying remarkable success converting phished payment card data into mobile wallets from Apple and Google. Until recently, the so-called “Smishing Triad” mainly impersonated toll road operators and shipping companies. But experts...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Alleged Co-Founder of Garantex Arrested in India Authorities in India today arrested the alleged co-founder of Garantex, a cryptocurrency exchange...

a month ago

11

Alleged Co-Founder of Garantex Arrested in India

from Krebs on Security [alt+shift+b] in technology

a month ago

Authorities in India today arrested the alleged co-founder of Garantex, a cryptocurrency exchange sanctioned by the U.S. government in 2022 for facilitating tens of billions of dollars in money laundering by transnational criminal and cybercriminal organizations. Sources close to...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Feds Link $150M Cyberheist to 2022 LastPass Hacks In September 2023, KrebsOnSecurity published findings from security researchers who concluded that a...

2 months ago

11

Feds Link $150M Cyberheist to 2022 LastPass Hacks

from Krebs on Security [alt+shift+b] in technology

2 months ago

In September 2023, KrebsOnSecurity published findings from security researchers who concluded that a series of six-figure cyberheists across dozens of victims resulted from thieves cracking master passwords stolen from the password manager service LastPass in 2022. In a court...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab One of the most notorious providers of abuse-friendly "bulletproof" web hosting for cybercriminals...

2 months ago

10

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab

from Krebs on Security [alt+shift+b] in technology

2 months ago

One of the most notorious providers of abuse-friendly "bulletproof" web hosting for cybercriminals has started routing its operations through networks run by the Russian antivirus and security firm Kaspersky Lab, KrebsOnSecurity has learned.

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Funding Expires for Key Cyber Vulnerability Database A critical resource that cybersecurity professionals worldwide rely on to identify, mitigate and fix...

3 weeks ago

10

Funding Expires for Key Cyber Vulnerability Database

from Krebs on Security [alt+shift+b] in technology

3 weeks ago

A critical resource that cybersecurity professionals worldwide rely on to identify, mitigate and fix security vulnerabilities in software and hardware is in danger of breaking down. The federally funded, non-profit research and development organization MITRE warned today that its...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Who is the DOGE and X Technician Branden Spikes? At 49, Branden Spikes isn't just one of the oldest technologists who has been involved in Elon...

2 months ago

9

Who is the DOGE and X Technician Branden Spikes?

from Krebs on Security [alt+shift+b] in technology

2 months ago

At 49, Branden Spikes isn't just one of the oldest technologists who has been involved in Elon Musk's Department of Government Efficiency (DOGE). As the current director of information technology at X/Twitter and an early hire at PayPal, Zip2, Tesla and SpaceX, Spikes is also...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason” A U.S. Army soldier who pleaded guilty last week to leaking phone records for high-ranking U.S....

2 months ago

9

U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

from Krebs on Security [alt+shift+b] in technology

2 months ago

A U.S. Army soldier who pleaded guilty last week to leaking phone records for high-ranking U.S. government officials searched online for non-extradition countries and for an answer to the question "can hacking be treason?" prosecutors in the case said Wednesday. The government...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Trump 2.0 Brings Cuts to Cyber, Consumer Protections One month into his second term, President Trump's actions to shrink the government through mass...

2 months ago

8

Trump 2.0 Brings Cuts to Cyber, Consumer Protections

from Krebs on Security [alt+shift+b] in technology

2 months ago

One month into his second term, President Trump's actions to shrink the government through mass layoffs, firings and withholding funds allocated by Congress have thrown federal cybersecurity and consumer protection programs into disarray. At the same time, agencies are battling...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

Krebs on Security

Cyber Forensic Expert in 2,000+ Cases Faces FBI Probe A Minnesota cybersecurity and computer forensics expert whose testimony has featured in thousands of...

2 months ago

5

Cyber Forensic Expert in 2,000+ Cases Faces FBI Probe

from Krebs on Security [alt+shift+b] in technology

2 months ago

A Minnesota cybersecurity and computer forensics expert whose testimony has featured in thousands of courtroom trials over the past 30 years is facing questions about his credentials and an inquiry from the Federal Bureau of Investigation (FBI). Legal experts say the inquiry...

Direct Link [→] Remove from reading list Add to reading list [alt+a]

upvote [alt+ctrl+↑] downvote [alt+ctrl+↓] prev [↑] next [↓]

New here?

Krebs on Security

bored reading