credentials – SSL and internet security news

FBI (and Others) Shut Down Genesis Market

April 5, 2023 infossl

botnets, credentials, cybercrime, fbi, law enforcement, Security technology, Uncategorized

Genesis Market is shut down: Active since 2018, Genesis Market’s slogan was, “Our store sells bots with logs, cookies, and their real fingerprints.” Customers could search for infected systems with a variety of options, including by Internet address or by specific domain names associated with stolen credentials. But earlier today, multiple domains associated with Genesis … Read More “FBI (and Others) Shut Down Genesis Market” »

Bizarro Banking Trojan

May 20, 2021 infossl

backdoors, banking, credentials, cryptography, malware, reports, Security technology, Uncategorized

Bizarro is a new banking trojan that is stealing financial information and crypto wallets. …the program can be delivered in a couple of ways — either via malicious links contained within spam emails, or through a trojanized app. Using these sneaky methods, trojan operators will implant the malware onto a target device, where it will … Read More “Bizarro Banking Trojan” »

Backdoor Found in Codecov Bash Uploader

April 21, 2021 infossl

backdoors, credentials, hacking, Security technology, supply chain, Uncategorized

Developers have discovered a backdoor in the Codecov bash uploader. It’s been there for four months. We don’t know who put it there. Codecov said the breach allowed the attackers to export information stored in its users’ continuous integration (CI) environments. This information was then sent to a third-party server outside of Codecov’s infrastructure,” the … Read More “Backdoor Found in Codecov Bash Uploader” »

Android Apps Stealing Facebook Credentials

June 30, 2020 infossl

android, credentials, facebook, google, malware, Security technology

Google has removed 25 Android apps from its store because they steal Facebook credentials: Before being taken down, the 25 apps were collectively downloaded more than 2.34 million times. The malicious apps were developed by the same threat group and despite offering different features, under the hood, all the apps worked the same. According to … Read More “Android Apps Stealing Facebook Credentials” »

Emotat Malware Causes Physical Damage

April 6, 2020 infossl

authentication, credentials, malware, microsoft, phishing, Security technology

Microsoft is reporting that an Emotat malware infection shut down a network by causing computers to overheat and then crash. The Emotet payload was delivered and executed on the systems of Fabrikam — a fake name Microsoft gave the victim in their case study — five days after the employee’s user credentials were exfiltrated to … Read More “Emotat Malware Causes Physical Damage” »

Chip Cards Fail to Reduce Credit Card Fraud in the US

November 15, 2018 infossl

chipandpin, credentials, creditcards, fraud, pointofsale, Security technology

A new study finds that credit card fraud has not declined since the introduction of chip cards in the US. The majority of stolen card information comes from hacked point-of-sale terminals. The reasons seem to be twofold. One, the US uses chip-and-signature instead of chip-and-PIN, obviating the most critical security benefit of the chip. And … Read More “Chip Cards Fail to Reduce Credit Card Fraud in the US” »

Google’s Data on Login Thefts

November 13, 2017 infossl

academicpapers, credentials, google, keylogging, phishing, Security technology

This is interesting research and data: With Google accounts as a case-study, we teamed up with the University of California, Berkeley to better understand how hijackers attempt to take over accounts in the wild. From March 2016 to March 2017, we analyzed several black markets to see how hijackers steal passwords and other sensitive data. … Read More “Google’s Data on Login Thefts” »