Tuesday, July 14

Internet Crime

Cyber Security, Free, How-to Tips, Internet Crime, Resources

BYOD: A trend rife with security concerns

Researchers explored the implications of allowing employees to bring their own devices for sensitive work tasks. Image: marchmeena29, Getty Images/iStockphoto A new report from cloud security company Bitglass found that employers are losing control of their enterprise's cybersecurity reins due to the explosion of the bring your own device (BYOD) trend.  Researchers surveyed IT professionals and cybersecurity workers to explore how organizations are dealing with the move toward allowing employee-purchased devices to be used within the workplace. Nearly 70% of re...
Cyber Security, Free, Guide, How-to Tips, Internet Crime, Parents Family, Resources

Joker billing fraud malware eluded Google Play security to infect Android devices

A new variant targeted Android users to subscribe them to premium services without their consent, according to Check Point Research. iStock/Jirsak Google sometimes has a tough time keeping malware out of its mobile app store. Though the company employs Google Play Protect to scan and vet apps that contain malware, savvy cybercriminals can devise ways to sneak past those defenses.Always a thorn in Google's side, the Joker malware arrived as a new variant a few months ago and evaded Google Play Protect to infect legitimate apps and sign people up to premium services. A blog pos...
Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com
Children Teens, Cyber Security, Internet Crime, Parents Family

Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com

For the past year, a site called Privnotes.com has been impersonating Privnote.com, a legitimate, free service that offers private, encrypted messages which self-destruct automatically after they are read. Until recently, I couldn’t quite work out what Privnotes was up to, but today it became crystal clear: Any messages containing bitcoin addresses will be automatically altered to include a different bitcoin address, as long as the Internet addresses of the sender and receiver of the message are not the same. Earlier this year, KrebsOnSecurity heard from the owners of Privnote.com, who complained that someone had set up a fake clone of their site that was fooling quite a few regular users of the service. And it’s not hard to see why: Privnotes.com is confusingly similar in name...
FEMA IT Specialist Charged in ID Theft, Tax Refund Fraud Conspiracy
Cyber Security, Free, How-to Tips, Internet Crime, Resources

FEMA IT Specialist Charged in ID Theft, Tax Refund Fraud Conspiracy

An information technology specialist at the Federal Emergency Management Agency (FEMA) was arrested this week on suspicion of hacking into the human resource databases of University of Pittsburgh Medical Center (UPMC) in 2014, stealing personal data on more than 65,000 UPMC employees, and selling the data on the dark web. On June 16, authorities in Michigan arrested 29-year-old Justin Sean Johnson in connection with a 43-count indictment on charges of conspiracy, wire fraud and aggravated identity theft. Federal prosecutors in Pittsburgh allege that in 2013 and 2014 Johnson hacked into the Oracle PeopleSoft databases for UPMC, a $21 billion nonprofit health enterprise that includes more than 40 hospitals. According to the indictment, Johnson stole employee information on all 65...
Russian Cybercrime Boss Burkov Gets 9 Years
Cyber Security, Internet Crime

Russian Cybercrime Boss Burkov Gets 9 Years

A well-connected Russian hacker once described as “an asset of supreme importance” to Moscow was sentenced on Friday to nine years in a U.S. prison after pleading guilty to running a site that sold stolen payment card data, and to administering a highly secretive crime forum that counted among its members some of the most elite Russian cybercrooks. Alexei Burkov, seated second from right, attends a hearing in Jerusalem in 2015. Photo: Andrei Shirokov / Tass via Getty Images. Aleksei Burkov of St. Petersburg, Russia admitted to running CardPlanet, a site that sold more than 150,000 stolen credit card accounts, and to being a founder of DirectConnection — a closely guarded underground community that attracted some of the world’s most-wanted Russian hackers. As KrebsOnSecurity not...
COVID-19 ‘Breach Bubble’ Waiting to Pop?
Cyber Security, Free, How-to Tips, Internet Crime, Parents Family, Virus

COVID-19 ‘Breach Bubble’ Waiting to Pop?

The COVID-19 pandemic has made it harder for banks to trace the source of payment card data stolen from smaller, hacked online merchants. On the plus side, months of quarantine have massively decreased demand for account information that thieves buy and use to create physical counterfeit credit cards. But fraud experts say recent developments suggest both trends are about to change — and likely for the worse. The economic laws of supply and demand hold just as true in the business world as they do in the cybercrime space. Global lockdowns from COVID-19 have resulted in far fewer fraudsters willing or able to visit retail stores to use their counterfeit cards, and the decreased demand has severely depressed prices in the underground for purloined card data. An ad for a site sell...
E-Verify’s “SSN Lock” is Nothing of the Sort
Cyber Security, Free, How-to Tips, Internet Crime, Social Media

E-Verify’s “SSN Lock” is Nothing of the Sort

One of the most-read advice columns on this site is a 2018 piece called “Plant Your Flag, Mark Your Territory,” which tried to impress upon readers the importance of creating accounts at websites like those at the Social Security Administration, the IRS and others before crooks do it for you. A key concept here is that these services only allow one account per Social Security number — which for better or worse is the de facto national identifier in the United States. But KrebsOnSecurity recently discovered that this is not the case with all federal government sites built to help you manage your identity online. A reader who was recently the victim of unemployment insurance fraud said he was told he should create an account at the Department of Homeland Security‘s myE-Verify web...
Five shocking passages in Mary Trumps tell-all book
Children Teens, Cyber Security, Free, How-to Tips, Internet Crime, Parents Family, Seniors Aging

Five shocking passages in Mary Trumps tell-all book

Image copyright Getty Images Image caption Pictures of Donald Trump's parents, seen in the White House's Oval Office A tell-all memoir written by President Donald Trump's niece claims that he is a "narcissist" who now threatens the life of every American.Mary Trump's book, Too Much and Never Enough: How My Family Created the World's Most Dangerous Man, describes her uncle as a fraud and a bully.The White House rejects claims made in the book, excerpts of which have been leaked to US media.The Trump family has sued to block its 14 July publication.'More than narcissism'Ms Trump, 55, writes that for her uncle, "no...
Mary Trump: Why has presidents niece penned damning memoir?
Children Teens, Cyber Security, Free, How-to Tips, Internet Crime, Parents Family, Social Media

Mary Trump: Why has presidents niece penned damning memoir?

Image copyright Trump Campaign Image caption An undated photo of the Trump siblings, from left to right: Robert, Elizabeth, Fred, Donald and Maryanne US President Donald Trump's niece is set to publish an unflattering tell-all memoir about him. So who is she and why has she come forward now?On 28 July, Mary Trump is due to release Too Much And Never Enough: How My Family Created the World's Most Dangerous Man, Simon & Schuster announced on Monday.The book will hit the shelves just weeks before the Republican National Convention, when her uncle will accept the party's nomination for his re-election bid in Nov...