Recent Comments

    Blogroll

    Search

    Archive for Identity Theft

    Are you using a “free” VPN? Be careful!

    March 15th, 2021 by

    21 million free VPN users’ data exposed

    “Detailed credentials for more than 21 million mobile VPN app users were swiped and advertised for sale online last week, offered by a cyber thief who allegedly stole user data collected by the VPN apps themselves. The data includes email addresses, randomly generated password strings, payment information, and device IDs belonging to users of three VPN apps—SuperVPN, GeckoVPN, and ChatVPN.”

    Posted in Identity Theft, Malware | No Comments »

    Multiple Security Updates Released for Exchange Server

    March 6th, 2021 by

    Multiple Security Updates Released for Exchange Server – updated March 5, 2021
    (Updated March 5, 2021)

    “Today we are releasing several security updates for Microsoft Exchange Server to address vulnerabilities that have been used in limited targeted attacks. Due to the critical nature of these vulnerabilities, we recommend that customers apply the updates to affected systems immediately to protect against these exploits and to prevent future abuse across the ecosystem. “

    Posted in Identity Theft, Malware, Security Breeches | No Comments »

    New Checkout Skimmers Need no Power

    February 24th, 2021 by

    Checkout Skimmers Powered by Chip Cards

    “Easily the most sophisticated skimming devices made for hacking terminals at retail self-checkout lanes are a new breed of PIN pad overlay combined with a flexible, paper-thin device that fits inside the terminal’s chip reader slot. What enables these skimmers to be so slim? They draw their power from the low-voltage current that gets triggered when a chip-based card is inserted. As a result, they do not require external batteries, and can remain in operation indefinitely.”

    Posted in Identity Theft, Malware | No Comments »

    3.2 billion unique pairs of cleartext emails and passwords have just been leaked

    February 8th, 2021 by

    Largest compilation of emails and passwords leaked for free on public forum

    “More than 3.2 billion unique pairs of cleartext emails and passwords have just been leaked on a popular hacking forum, aggregating past leaks from Netflix, LinkedIn, Exploit.in, Bitcoin and more. This leak is comparable to the Breach Compilation of 2017, in which 1.4 billion credentials were leaked.

    However, the current breach, known as “Compilation of Many Breaches” (COMB), contains more than double the unique email and password pairs. The data is currently archived and put in an encrypted, password-protected container.”

    Posted in Identity Theft, Security Breeches | No Comments »

    Wind River Security Incident

    February 3rd, 2021 by

    Wind River Security Incident Affects SSNs, Passport Numbers

    “Wind River Systems, which develops embedded system software, on Friday warned of a “security incident” that had exposed personnel records.

    One or more files were downloaded from the company’s network on or around September 29, it said. Affected data included information maintained within the company’s personnel records – including critical data like Social-Security numbers, driver’s license numbers and passport numbers.

    “We have been working with law enforcement and outside experts to investigate a security incident that occurred toward the end of September,” according to the security-incident notice, filed with California’s Attorney General as part of the state’s data-breach notification requirements. “We have no indication that any information in these files has been misused.””

    Posted in Identity Theft, Security Breeches | No Comments »

    Unemployment Frauds Continue Unabated

    January 30th, 2021 by

    The Taxman Cometh for ID Theft Victims

    “The unprecedented volume of unemployment insurance fraud witnessed in 2020 hasn’t abated, although news coverage of the issue has largely been pushed off the front pages by other events. But the ID theft problem is coming to the fore once again: Countless Americans will soon be receiving notices from state regulators saying they owe thousands of dollars in taxes on benefits they never received last year.”

    Posted in Finance/Taxes, Identity Theft, Scams | No Comments »

    SonicWall Breach

    January 28th, 2021 by

    SonicWall Breach Stems from ‘Probable’ Zero-Days

    Posted January 25, 2021:

    “SonicWall is investigating “probable” zero-day flaws in its remote access security products that have been targeted by “highly-sophisticated” attackers. The company says it is investigating the attack and will update customers within 24 hours.”

    Posted in Identity Theft, Malware, Security Breeches | No Comments »

    Stolen Card Market closing February 2021

    January 19th, 2021 by

    Joker’s Stash Carding Market to Call it Quits

    Joker’s Stash, by some accounts the largest underground shop for selling stolen credit card and identity data, says it’s closing up shop effective mid-February 2021. The announcement came on the heels of a turbulent year for the major cybercrime store, and just weeks after U.S. and European authorities seized a number of its servers.

    Posted in Identity Theft, Phishing, Ransomware | No Comments »

    iPhones of 36 journalists hacked

    December 23rd, 2020 by

    Zero-click iMessage zero-day used to hack the iPhones of 36 journalists

    “Three dozen journalists had their iPhones hacked in July and August using what at the time was an iMessage zero-day exploit that didn’t require the victims to take any action to be infected, researchers said.”

    Posted in Identity Theft, Malware | No Comments »

    Did you eat at Dickey’s BBQ? 3 Million card data stolen!

    October 16th, 2020 by

    Breach at Dickey’s BBQ Smokes 3M Cards

    “One of the digital underground’s most popular stores for peddling stolen credit card information began selling a batch of more than three million new card records this week. KrebsOnSecurity has learned the data was stolen in a lengthy data breach at more than 100 Dickey’s Barbeque Restaurant locations around the country.”

    Posted in Identity Theft, Security Breeches | No Comments »

    « Previous Entries Next Entries »