Krebs on Security

JULY 25, 2023

Researchers this month uncovered a two-year-old Linux-based remote access trojan dubbed AVrecon that enslaves Internet routers into botnet that bilks online advertisers and performs password-spraying attacks. md , and that they were a systems administrator for sscompany[.]net. form [sic] hackers on public networks.”

Analytics 199

Analytics Passwords Systems administration Retail 199

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk 147

Risk Financial Services Insurance Cybersecurity 147

IT Governance

JUNE 1, 2023

More worryingly, the same database contained usernames, email addresses and encrypted passwords. An additional 6 million records dating back to “at least 2005” were also compromised in the attack, the source of which is not yet known. Cybernews confirmed that the dataset has since been secured.

Data breaches 122

Data breaches Insurance Personal data Ransomware 122

eSecurity Planet

FEBRUARY 16, 2021

In 2005, Sony BMG delivered millions of CDs with a rootkit that monitored listening habits and unintentionally left a backdoor to the device for cybercriminals. Always change the default passwords for any IoT devices you install before extended use. Good password hygiene is one of the best ways to prevent access to keyloggers.

Phishing 105

Phishing Ransomware Passwords Access 105