Sep 07, 2024Ravie LakshmananCybercrime / Dark Web Two men have been indicted in the U.S. for their alleged involvement in managing a dark web marketplace called WWH Club that specializes in the sale of sensitive personal and financial information. Alex Khodyrev, a 35-year-old Kazakhstan national, and Pavel Kublitskii, a 37-year-old Russian national, have been charged with … [Read more...] about FBI Cracks Down on Dark Web Marketplace Managed by Russian and Kazakh Nationals
Web
Russian Hacker Jailed 3+ Years for Selling Stolen Credentials on Dark Web
Aug 16, 2024Ravie LakshmananDark Web / Data Breach A 27-year-old Russian national has been sentenced to over three years in prison in the U.S. for peddling financial information, login credentials, and other personally identifying information (PII) on a now-defunct dark web marketplace called Slilpp. Georgy Kavzharadze, 27, of Moscow, Russia, pleaded guilty to one count of … [Read more...] about Russian Hacker Jailed 3+ Years for Selling Stolen Credentials on Dark Web
SolarWinds Releases Patch for Critical Flaw in Web Help Desk Software
Aug 15, 2024Ravie LakshmananEnterprise Security / Vulnerability SolarWinds has released patches to address a critical security vulnerability in its Web Help Desk software that could be exploited to execute arbitrary code on susceptible instances. The flaw, tracked as CVE-2024-28986 (CVSS score: 9.8), has been described as a deserialization bug. "SolarWinds Web Help Desk was … [Read more...] about SolarWinds Releases Patch for Critical Flaw in Web Help Desk Software
How phishing using progressive web apps (PWAs) works
A security researcher known as mr.d0x has published a post detailing a new technique that can be used for phishing and potentially other malicious activities. The technique exploits so-called progressive web apps (PWAs). In this post, we discuss what these applications are, why they can be dangerous, how attackers can use them for their own purposes, and how to [placeholder … [Read more...] about How phishing using progressive web apps (PWAs) works
Protecting Employees’ Sensitive Data on the Web
Organizations are increasingly concerned about high-profile employees’ information being exposed on the deep and dark web. The CrowdStrike Counter Adversary Operations team is often asked to find fake social media accounts and personally identifiable information (PII) that might be exposed. Impersonations and leaked PII can unravel lives and ruin the reputations of individuals … [Read more...] about Protecting Employees’ Sensitive Data on the Web
Elastic Cloud is now available on Amazon Web Services (Zurich)
Elastic Cloud gives you the flexibility to run where and how you want. Deploy in the cloud on Google Cloud, Microsoft Azure, Amazon Web Services, or all the above. You can choose to use our managed service offering or manage the service yourself with built-in automation and orchestration tools.When you log in to the Elastic Cloud console, simply select your region and preferred … [Read more...] about Elastic Cloud is now available on Amazon Web Services (Zurich)
A New Way To Manage Your Web Exposure: The Reflectiz Product Explained
An in-depth look into a proactive website security solution that continuously detects, prioritizes, and validates web threats, helping to mitigate security, privacy, and compliance risks. Reflectiz shields websites from client-side attacks, supply chain risks, data breaches, privacy violations, and compliance issues. You Can't Protect What You Can't See Today's websites are … [Read more...] about A New Way To Manage Your Web Exposure: The Reflectiz Product Explained
New ‘HrServ.dll’ Web Shell Detected in APT Attack Targeting Afghan Government
Nov 25, 2023NewsroomCyber Attack / Threat Intelligence An unspecified government entity in Afghanistan was targeted by a previously undocumented web shell called HrServ in what's suspected to be an advanced persistent threat (APT) attack. The web shell, a dynamic-link library (DLL) named "hrserv.dll," exhibits "sophisticated features such as custom encoding methods for client … [Read more...] about New ‘HrServ.dll’ Web Shell Detected in APT Attack Targeting Afghan Government
What are web skimmers? | Kaspersky official blog
There are a few fairly simple rules that can help you protect both yourself and your money from typical scams while online shopping. Here’s what these boil down to: Don’t send money to personal accounts of strangers on the internet; Don’t enter your bank card details on suspicious sites; Always check the web address carefully before leaving your payment details on a … [Read more...] about What are web skimmers? | Kaspersky official blog
Falcon Intelligence Recon+ and the Dark Web
The vastness of the deep and dark web can easily turn attempts to monitor for cyber threats into a firehose of useless information. Part of the problem is the nature of the data streams that need to be monitored. Every day, more credentials are stolen and exposed. Illegal criminal forums are full of repeated spamming of illicit advertisements. Thousands of new domain names are … [Read more...] about Falcon Intelligence Recon+ and the Dark Web