Happy 5th Birthday, KrebsOnSecurity!
It’s hard to believe, but KrebsOnSecurity turns five years old today! How time flies!
Category Archives: Other
Cowards Attack Sony PlayStation, Microsoft xBox Networks
A gaggle of young misfits that has long tried to silence this Web site now is taking credit for preventing millions of users from playing Sony Playstation and Microsoft Xbox Live games this holiday season. The group, which calls itself LizardSquad, started attacking… Read More »
Unencrypted Data Lets Thieves ‘Charge Anywhere’
Charge Anywhere LLC, a New Jersey mobile payments provider, today disclosed that malicious software planted on its networks may have jeopardized credit card data from transactions the company handled between November 2009 and September 2014.
KrebsOnSecurity on CBS’s ’60 Minutes’
In case any of you loyal readers missed it, KrebsOnSecurity.com and its author were featured in a 60 Minutes interview last night on the credit and debit card breaches that have hit countless retailers and consumers over the past year.… Read More »
Amazon: Spam Nation one of “Best of Month”
A quick update on my new book, Spam Nation, The Inside Story of Organized Cybercrime — From Global Epidemic to Your Front Door: Amazon has named it to their “Best Books of the Month” picks for November. In addition, my publisher has graciously extended the free ZeusGard offer until Nov. 25 for the next 500 people who order more than one copy of the book.
KrebsOnSecurity Honored for Fraud Reporting
The Association of Certified Fraud Examiners today announced they have selected Yours Truly as the recipient of this year’s “Guardian Award,” an honor given annually to a journalist “whose determination, perseverance, and commitment to the truth have contributed significantly to the fight against fraud.”
‘Shellshock’ Bug Spells Trouble for Web Security
As if consumers weren’t already suffering from breach fatigue: Experts warn that attackers are exploiting a critical, newly-disclosed security vulnerability present countless networks and Web sites that rely on Unix and Linux operating systems. Experts say the flaw, dubbed “Shellshock,” is so intertwined with the modern Internet that it could prove challenging to fix, and in the short run is likely to put millions of networks and countless consumer records at risk of compromise.
Critical Update for Adobe Reader & Acrobat
Adobe has released a security update for its Acrobat and PDF Reader products that fixes at least eight critical vulnerabilities in Mac and Windows versions of the software. If you use either of these programs, please take a minute to update now.
True Goodbye: ‘Using TrueCrypt Is Not Secure’
The anonymous developers responsible for building and maintaining the free whole-disk encryption suite TrueCrypt apparently threw in the towel this week, shuttering the TrueCrypt site and warning users that the product is no longer secure now that Microsoft has ended support for Windows XP.
Backdoor in Call Monitoring, Surveillance Gear
If your company’s core business is making software designed to help first responders and police record and intercept phone calls, it’s probably a good idea to ensure the product isn’t so full of security holes that it allows trivial access by unauthorized users. Unfortunately, even companies working in this sensitive space fall victim to the classic blunder that eventually turns most software into Swiss Cheese: Trying to bolt on security only after the product has shipped.
