Software Archives - Page 2 of 8

Cybercriminals are selling hundreds of thousands of credential sets stolen with the help of a cracked version of Acunetix, a powerful commercial web app vulnerability scanner, new research finds. The cracked software is being resold as a cloud-based attack tool by at least two different services, one of which KrebsOnSecurity traced to an information technology firm based in Turkey.

How to Lose a Fortune with Just One Bad Click

18 December 2024 @ 1:17 pm

Adam Griffin is still in disbelief over how quickly he was robbed of nearly $500,000 in cryptocurrencies. A scammer called using a real Google phone number to warn his Gmail account was being hacked, sent email security alerts directly from google.com, and ultimately seized control over the account by convincing him to click "yes" to a Google prompt on his mobile device.

How Cryptocurrency Turns to Cash in Russian Banks

11 December 2024 @ 9:38 pm

A financial firm registered in Canada has emerged as the payment processor for dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services aimed at Russian-speaking customers, new research finds. Meanwhile, an investigation into the Vancouver street address used by this company shows it is home to dozens of foreign currency dealers, money transfer businesses, and cryptocurrency exchanges -- none of which are physically located there.

Patch Tuesday, December 2024 Edition

11 December 2024 @ 1:53 am

Microsoft today released updates to plug at least 70 security holes in Windows and Windows software, including one vulnerability that is already being exploited in active attacks. The zero-day seeing exploitation involves CVE-2024-49138, a security weakness in the Windows Common… Read More »

U.S. Offered $10M for Hacker Just Arrested by Russia

4 December 2024 @ 2:08 pm

In January 2022, KrebsOnSecurity identified a Russian man named Mikhail Matveev as "Wazawaka," a cybercriminal who was deeply involved in the formation and operation of multiple ransomware groups. The U.S. government indicted Matveev as a top ransomware purveyor a year later, offering $10 million for information leading to his arrest. Last week, the Russian government reportedly arrested Matveev and charged him with creating malware used to extort companies.

Why Phishers Love New TLDs Like .shop, .top and .xyz

3 December 2024 @ 1:27 pm

Phishing attacks increased nearly 40 percent in the year ending August 2024, with much of that growth concentrated at a small number of new generic top-level domains (gTLDs) -- such as .shop, .top, .xyz -- that attract scammers with rock-bottom prices and no meaningful registration requirements, new research finds. Meanwhile, the nonprofit entity that oversees the domain name industry is moving forward with plans to introduce a slew of new gTLDs.

Hacker in Snowflake Extortions May Be a U.S. Soldier

27 November 2024 @ 12:45 am

Two men have been arrested for allegedly stealing data from and extorting dozens of companies that used the cloud data storage company Snowflake, but a third suspect -- a prolific hacker known as Kiberphant0m -- remains at large and continues to publicly extort victims. However, this person's identity may not remain a secret for long: A careful review of Kiberphant0m's daily chats across multiple cybercrime personas suggests they are a U.S. Army soldier who is or was recently stationed in South Korea.

Feds Charge Five Men in ‘Scattered Spider’ Roundup

21 November 2024 @ 8:13 pm

Federal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. technology companies between 2021 and 2023, including LastPass, MailChimp, Okta, T-Mobile and Twilio.

Fintech Giant Finastra Investigating Data Breach

20 November 2024 @ 1:12 am

The financial technology firm Finastra is investigating the alleged large-scale theft of information from its internal file transfer platform, KrebsOnSecurity has learned. Finastra, which provides software and services to 45 of the world's top 50 banks, notified customers of a potential breach after a cybercriminal began selling more than 400 gigabytes of data purportedly stolen from the company.

An Interview With the Target & Home Depot Hacker

15 November 2024 @ 4:45 am

In December 2023, KrebsOnSecurity revealed the real-life identity of Rescator, the nickname used by a Russian cybercriminal who sold more than 100 million payment cards stolen from Target and Home Depot between 2013 and 2014. Moscow resident Mikhail Shefel, who confirmed using the Rescator identity in a recent interview, also admitted reaching out because he is broke and seeking publicity for several new money making schemes.

http://krebsonsecurity.com/ http://krebsonsecurity.com/feed/

opensource.com

Rating: 7.7/10 (3 votes cast)

Tagged Linux, News, Software

Opensource software and project news.

New developments at Opensource.com

6 June 2023 @ 5:30 pm

New developments at Opensource.com admin Tue, 06/06/2023 - 13:30 You may have noticed that it's been quiet here on Opensource.com lately. That's because there's a new project in the works, and while there aren't many specific details to announce yet, there's plenty to talk about. What better way to start than with the entire internet? The internet, and top-level domains You may know that the internet is a network. A network, by definition, is a group of connections. The term "internet

Tips for running virtual, in-person, and hybrid events

3 May 2023 @ 7:00 am

Tips for running virtual, in-person, and hybrid events rpaik Wed, 05/03/2023 - 03:00 Over the past few years, virtual events have thrived. In-person events are back now, but it's important to keep in mind that virtual events didn't just come out of nowhere. Many of us were actually doing a lot of different online events even before they became popular. Many communities held hackathons, bug and issue triaging, webinars, and so on, as virtual events. They brought community members together for collabor

Generate web pages from Markdown with Docsify-This

2 May 2023 @ 7:00 am

Generate web pages from Markdown with Docsify-This paulhibbitts Tue, 05/02/2023 - 03:00 Are you interested in leveraging Markdown for online content without any website setup or build process? How about seamlessly embedding constraint-free Markdown or HTML into multiple platforms (such as a content management system or learning management system)? The open source project Docsify-This, built with

3 reasons to host a docathon for your open source project

28 April 2023 @ 7:00 am

3 reasons to host a docathon for your open source project lmalivert Fri, 04/28/2023 - 03:00 Your open source project's documentation is essential to your customers. Your target audience must understand the purpose of your project and how to use it, and documentation is what bridges that gap. A project is rarely ever truly done, so it's equally important for resources to be maintained and updated with your project's continuous improvement. But what happens when you have lots of documentatio

How I used guilt as a motivator for good

28 April 2023 @ 7:00 am

How I used guilt as a motivator for good its-surya Fri, 04/28/2023 - 03:00 Recently, I was asked by a friend and colleague if I were interested in speaking together at a conference. I was pleasantly surprised because I hadn't contributed much to the project they were presenting, but I expressed interest. We met to discuss the presentation, and that's when I learned the real reason I was asked to participate: The conference's

3 key open source challenges in developing countries

27 April 2023 @ 7:00 am

3 key open source challenges in developing countries Ahmed Sobeh Thu, 04/27/2023 - 03:00 When I go back home and talk to people in the tech industry, or any other industry for that matter, about what I do and the topics I'm involved in daily, I'm usually met with bemusement at the idea of an Open Source Programs Office (OSPO). The concept of a company contributing to an open source project without obvio

Run a virtual conference using only open source tools

27 April 2023 @ 7:00 am

Run a virtual conference using only open source tools mairin Thu, 04/27/2023 - 03:00 The Fedora Design Team discovered that using open source tools to run a virtual conference can be quite effective by hosting the first Creative Freedom Summit in January 2023. In this article, I'll share some background on the conference, why using open source tools to run it was

5 open ways to help UX designers and developers collaborate better

26 April 2023 @ 7:00 am

5 open ways to help UX designers and developers collaborate better kriker Wed, 04/26/2023 - 03:00 Ideally, designers have a good relationship with their product team and users. However, the relationship between designers and developers is more difficult to build and maintain. The lack of a close relationship makes it difficult to solve problems or improve. In my experience, the open source

Test your Drupal website with Cypress

26 April 2023 @ 7:00 am

Test your Drupal website with Cypress cobadger Wed, 04/26/2023 - 03:00 If you don't include tests in your Drupal development, chances are it's because you think it adds complexity and expense without benefit. Cypress is an open source tool with many benefits: Reliably tests anything that runs in a web browser Works on any web platform (it's great for testing projects using front-end technologies like

What's new in GNOME 44?

25 April 2023 @ 7:00 am

What's new in GNOME 44? Jim Hall Tue, 04/25/2023 - 03:00 I use GNOME as my primary desktop environment on my Linux PC at home. GNOME gives me an easy-to-use graphical desktop that provides the flexibility I need yet doesn't get in my way when I focus on my work. GNOME recently released GNOME 44 with a bunch of new features. I reached out to the GNOME team to ask about the latest version and what was in it. Here's what team members Caroline Henriksen (brand manager), Matthias Clasen (GNOME d

https://opensource.com/ https://opensource.com/feed