Crickets from Chirp Systems in Smart Lock Key Leak – Krebs on Security
The U.S. government is warning that “smart locks” securing entry to an estimated 50,000 dwellings nationwide contain hard-coded credentials that can be used to remotely…
Category: Krebson
Why CISA is Warning CISOs About a Breach at Sisense – Krebs on Security
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said today it is investigating a breach at business intelligence company Sisense, whose products are designed to…
Twitter’s Clumsy Pivot to X.com Is a Gift to Phishers – Krebs on Security
On April 9, Twitter/X began automatically modifying links that mention “twitter.com” to read “x.com” instead. But over the past 48 hours, dozens of new domain…
April’s Patch Tuesday Brings Record Number of Fixes – Krebs on Security
If only Patch Tuesdays came around infrequently — like total solar eclipse rare — instead of just creeping up on us each month like The…
Fake Lawsuit Threat Exposes Privnote Phishing Sites – Krebs on Security
A cybercrook who has been setting up websites that mimic the self-destructing message service privnote.com accidentally exposed the breadth of their operations recently when they…
‘The Manipulaters’ Improve Phishing, Still Fail at Opsec – Krebs on Security
Roughly nine years ago, KrebsOnSecurity profiled a Pakistan-based cybercrime group called “The Manipulaters,” a sprawling web hosting network of phishing and spam delivery platforms. In…
Phishes That Prey on Your Curiosity – Krebs on Security
Thread hijacking attacks. They happen when someone you know has their email account compromised, and you are suddenly dropped into an existing conversation between the…
Recent ‘MFA Bombing’ Attacks Targeting Apple Users – Krebs on Security
Several Apple customers recently reported being targeted in elaborate phishing attacks that involve what appears to be a bug in Apple’s password reset feature. In…
Mozilla Drops Onerep After CEO Admits to Running People-Search Networks – Krebs on Security
The nonprofit organization that supports the Firefox web browser said today it is winding down its new partnership with Onerep, an identity protection service recently…
The Not-so-True People-Search Network from China – Krebs on Security
It’s not unusual for the data brokers behind people-search websites to use pseudonyms in their day-to-day lives (you would, too). Some of these personal data…
CEO of Data Privacy Company Onerep.com Founded Dozens of People-Search Firms – Krebs on Security
The data privacy company Onerep.com bills itself as a Virginia-based service for helping people remove their personal information from almost 200 people-search websites. However, an…
Patch Tuesday, March 2024 Edition – Krebs on Security
Apple and Microsoft recently released software updates to fix dozens of security holes in their operating systems. Microsoft today patched at least 60 vulnerabilities in…