Email Bombs Exploit Lax Authentication in Zendesk – Krebs on Security
Cybercriminals are abusing a widespread lack of authentication in the customer service platform Zendesk to flood targeted email inboxes with...
Read more →Category: Krebson
Patch Tuesday, October 2025 ‘End of 10’ Edition – Krebs on Security
Microsoft today released software updates to plug a whopping 172 security holes in its Windows operating systems, including at least...
Read more →
DDoS Botnet Aisuru Blankets US ISPs in Record DDoS – Krebs on Security
The world’s largest and most disruptive botnet is now drawing a majority of its firepower from compromised Internet-of-Things (IoT) devices...
Read more →
ShinyHunters Wage Broad Corporate Extortion Spree – Krebs on Security
A cybercriminal group that used voice phishing attacks to siphon more than a billion records from Salesforce customers earlier this...
Read more →
Self-Replicating Worm Hits 180+ Software Packages – Krebs on Security
At least 187 code packages made available through the JavaScript repository NPM have been infected with a self-replicating worm that...
Read more →
Bulletproof Host Stark Industries Evades EU Sanctions – Krebs on Security
In May 2025, the European Union levied financial sanctions on the owners of Stark Industries Solutions Ltd., a bulletproof hosting provider...
Read more →
Microsoft Patch Tuesday, September 2025 Edition – Krebs on Security
Microsoft Corp. today issued security updates to fix more than 80 vulnerabilities in its Windows operating systems and software. There...
Read more →
18 Popular Code Packages Hacked, Rigged to Steal Crypto – Krebs on Security
At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly...
Read more →
GOP Cries Censorship Over Spam Filters That Work – Krebs on Security
The chairman of the Federal Trade Commission (FTC) last week sent a letter to Google’s CEO demanding to know why...
Read more →
The Ongoing Fallout from a Breach at AI Chatbot Maker Salesloft – Krebs on Security
The recent mass-theft of authentication tokens from Salesloft, whose AI chatbot is used by a broad swath of corporate America...
Read more →
Affiliates Flock to ‘Soulless’ Scam Gambling Machine – Krebs on Security
Last month, KrebsOnSecurity tracked the sudden emergence of hundreds of polished online gaming and wagering websites that lure people with...
Read more →
DSLRoot, Proxies, and the Threat of ‘Legal Botnets’ – Krebs on Security
The cybersecurity community on Reddit responded in disbelief this month when a self-described Air National Guard member with top secret...
Read more →