Top Hackernews posts from krebsonsecurity.com

1. Whistleblower: Ubiquiti Breach “Catastrophic” (krebsonsecurity.com)
   1944 points by picture over 3 years ago | 785 comments
2. 30k U.S. organizations newly hacked via holes in Microsoft Exchange Server (krebsonsecurity.com)
   1038 points by picture over 3 years ago | 437 comments
3. It's still easy for anyone to become you at Experian (krebsonsecurity.com)
   874 points by todsacerdoti 10 months ago | 331 comments
4. DarkSide ransomware gang quits after servers, Bitcoin stash seized (krebsonsecurity.com)
   787 points by feross over 3 years ago | 584 comments
5. Experian’s credit freeze security is still a joke (krebsonsecurity.com)
   659 points by picture over 3 years ago | 375 comments
6. CEO of data privacy company Onerep.com founded dozens of people-search firms (krebsonsecurity.com)
   625 points by todsacerdoti 6 months ago | 151 comments
7. You can now ask Google to remove your phone number, email or address from search (krebsonsecurity.com)
   615 points by todsacerdoti over 2 years ago | 173 comments
8. Ubiquiti all but confirms breach response iniquity (krebsonsecurity.com)
   609 points by picture over 3 years ago | 312 comments
9. Try This One Weird Trick Russian Hackers Hate (krebsonsecurity.com)
   604 points by todsacerdoti over 3 years ago | 278 comments
10. Don’t Wanna Pay Ransom Gangs? Test Your Backups (krebsonsecurity.com)
    599 points by picture about 3 years ago | 316 comments
11. What Happened to Facebook, Instagram, and WhatsApp? (krebsonsecurity.com)
    584 points by happyopossum almost 3 years ago | 311 comments
12. Crazy Thin ‘Deep Insert’ ATM Skimmers (krebsonsecurity.com)
    575 points by todsacerdoti about 2 years ago | 464 comments
13. Intuit to share payroll data from 1.4M small businesses with Equifax (krebsonsecurity.com)
    565 points by todsacerdoti about 3 years ago | 207 comments
14. Hackers gaining power of subpoena via fake “emergency data requests” (krebsonsecurity.com)
    555 points by todsacerdoti over 2 years ago | 372 comments
15. Final thoughts on Ubiquiti (krebsonsecurity.com)
    539 points by todsacerdoti about 2 years ago | 228 comments
16. Hackers claim they breached T-Mobile more than 100 times in 2022 (krebsonsecurity.com)
    533 points by mikece over 1 year ago | 326 comments
17. ‘Trojan Source’ Bug Threatens the Security of All Code (krebsonsecurity.com)
    494 points by picture almost 3 years ago | 271 comments
18. Identity thieves bypassed Experian security to view credit reports (krebsonsecurity.com)
    475 points by picture over 1 year ago | 187 comments
19. Missouri Governor Vows to Prosecute St. Louis Post-Dispatch for Reporting (krebsonsecurity.com)
    458 points by picture almost 3 years ago | 131 comments
20. What’s interesting about the Florida water system hack is that we heard about it (krebsonsecurity.com)
    440 points by todsacerdoti over 3 years ago | 181 comments
21. Hoax email blast abused poor coding in FBI website (krebsonsecurity.com)
    431 points by todsacerdoti almost 3 years ago | 100 comments
22. Recent 'MFA Bombing' Attacks Targeting Apple Users (krebsonsecurity.com)
    400 points by vdddv 6 months ago | 222 comments
23. Another 0-day looms for many Western Digital users (krebsonsecurity.com)
    400 points by danso about 3 years ago | 226 comments
24. IRS to ditch biometric requirement for online access (krebsonsecurity.com)
    399 points by bonyt over 2 years ago | 171 comments
25. Tech CEO sentenced to 5 years in IP address scheme (krebsonsecurity.com)
    395 points by todsacerdoti 11 months ago | 297 comments
26. Sealed U.S. Court Records Exposed in SolarWinds Breach (krebsonsecurity.com)
    389 points by picture over 3 years ago | 151 comments
27. Ubiquiti developer charged with extortion, causing 2020 “breach” (krebsonsecurity.com)
    388 points by niros_valtos almost 3 years ago | 228 comments
28. Experian, you have some explaining to do (krebsonsecurity.com)
    385 points by todsacerdoti about 2 years ago | 118 comments
29. The internet is held together with spit and baling wire (krebsonsecurity.com)
    374 points by picture almost 3 years ago | 164 comments
30. Twitter's pivot to x.com is a gift to phishers (krebsonsecurity.com)
    370 points by todsacerdoti 5 months ago | 385 comments
31. Barracuda urges replacing, not patching, its email security gateways (krebsonsecurity.com)
    369 points by LinuxBender over 1 year ago | 117 comments
32. Mozilla Drops Onerep After CEO Admits to Running People-Search Networks (krebsonsecurity.com)
    327 points by todsacerdoti 6 months ago | 137 comments
33. T-Mobile: Breach Exposed SSN/DOB of 40M+ People (krebsonsecurity.com)
    327 points by todsacerdoti about 3 years ago | 266 comments
34. Apple AirTag Bug Enables ‘Good Samaritan’ Attack (krebsonsecurity.com)
    326 points by kaeruct almost 3 years ago | 105 comments
35. Gift card gang extracts cash from 100k inboxes daily (krebsonsecurity.com)
    324 points by parsecs about 3 years ago | 134 comments
36. PayPal phishing scam uses invoices sent via PayPal (krebsonsecurity.com)
    320 points by shantanu_sharma about 2 years ago | 133 comments
37. RaidForums gets raided, alleged admin arrested (krebsonsecurity.com)
    319 points by picture over 2 years ago | 191 comments
38. Hackers stole access tokens from Okta's support unit (krebsonsecurity.com)
    317 points by todsacerdoti 11 months ago | 160 comments
39. IRS Will Soon Require Selfies for Online Access (krebsonsecurity.com)
    314 points by todsacerdoti over 2 years ago | 428 comments
40. Missouri governor’s office responsible for teacher data leak (krebsonsecurity.com)
    308 points by todsacerdoti over 2 years ago | 117 comments
41. Six charged in mass takedown of DDoS-for-hire sites (krebsonsecurity.com)
    295 points by feross almost 2 years ago | 137 comments
42. Canadian man stuck in triangle of e-commerce fraud (krebsonsecurity.com)
    283 points by todsacerdoti 8 months ago | 279 comments
43. The ‘Zelle fraud’ scam: how it works, how to fight back (krebsonsecurity.com)
    277 points by picture almost 3 years ago | 232 comments
44. Norton 360 Now Comes with a Cryptominer (krebsonsecurity.com)
    271 points by todsacerdoti over 2 years ago | 88 comments
45. Finland’s most-wanted hacker nabbed in France (krebsonsecurity.com)
    258 points by impish9208 over 1 year ago | 171 comments
46. Senators Urge FTC to Probe ID.me over Selfie Data (krebsonsecurity.com)
    257 points by todsacerdoti over 2 years ago | 162 comments
47. Using fake reviews to find dangerous extensions (krebsonsecurity.com)
    257 points by todsacerdoti over 3 years ago | 103 comments
48. Banks are not repaying victims of Zelle scams (krebsonsecurity.com)
    251 points by todsacerdoti almost 2 years ago | 252 comments
49. Microsoft Patches Six Zero-Day Security Holes (krebsonsecurity.com)
    243 points by parsecs over 3 years ago | 66 comments
50. The fake browser update scam gets a makeover (krebsonsecurity.com)
    242 points by feross 11 months ago | 190 comments
51. FBI seizes bot shop ‘Genesis Market’ amid arrests targeting operators, suppliers (krebsonsecurity.com)
    239 points by todsacerdoti over 1 year ago | 121 comments
52. How does one get hired by a top cybercrime gang? (krebsonsecurity.com)
    236 points by wyldfire over 3 years ago | 139 comments
53. Top suspect in 2015 Ashley Madison hack committed suicide in 2014 (krebsonsecurity.com)
    227 points by feross about 1 year ago | 152 comments
54. Can We Stop Pretending SMS Is Secure Now? (krebsonsecurity.com)
    221 points by parsecs over 3 years ago | 152 comments
55. SMS phishers harvested phone numbers, shipment data from UPS tracking tool (krebsonsecurity.com)
    219 points by todsacerdoti about 1 year ago | 89 comments
56. Class Action Targets Experian over Account Security (krebsonsecurity.com)
    215 points by feross about 2 years ago | 116 comments
57. Chinese app included malware to gain competitive advantage (krebsonsecurity.com)
    209 points by SeaScythes over 1 year ago | 38 comments
58. Fake emergency search warrants draw scrutiny from Capitol Hill (krebsonsecurity.com)
    207 points by todsacerdoti over 2 years ago | 87 comments
59. Researchers quietly cracked Zeppelin ransomware keys (krebsonsecurity.com)
    206 points by feross almost 2 years ago | 64 comments
60. Many public Salesforce sites are leaking private data (krebsonsecurity.com)
    206 points by impish9208 over 1 year ago | 49 comments
61. German police raid DDoS-friendly host FlyHosting (krebsonsecurity.com)
    200 points by todsacerdoti over 1 year ago | 43 comments
62. How to Tell a Job Offer from an ID Theft Trap (krebsonsecurity.com)
    200 points by etxm over 3 years ago | 80 comments
63. Phishing domains tanked after Meta sued Freenom (krebsonsecurity.com)
    197 points by todsacerdoti over 1 year ago | 90 comments
64. Money laundering via author impersonation on Amazon? (krebsonsecurity.com)
    197 points by nixtaken over 3 years ago | 122 comments
65. SolarWinds: What Hit Us Could Hit Others (krebsonsecurity.com)
    196 points by picture over 3 years ago | 150 comments
66. The Rise of One-Time Password Interception Bots (krebsonsecurity.com)
    192 points by elorant almost 3 years ago | 165 comments
67. Scary fraud ensues when ID theft and usury collide (krebsonsecurity.com)
    191 points by picture over 2 years ago | 90 comments
68. Tech CEO pleads to wire fraud in IP address scheme (krebsonsecurity.com)
    188 points by sandebert over 2 years ago | 78 comments
69. 500M Avira antivirus users introduced to cryptomining (krebsonsecurity.com)
    185 points by todsacerdoti over 2 years ago | 95 comments
70. DDoS-Guard to forfeit internet space occupied by Parler (krebsonsecurity.com)
    183 points by todsacerdoti over 3 years ago | 300 comments
71. REvil Ransom Arrest, $6M Seizure, and $10M Reward (krebsonsecurity.com)
    180 points by todsacerdoti almost 3 years ago | 189 comments
72. A Closer Look at the Lapsus$ Data Extortion Group (krebsonsecurity.com)
    180 points by picture over 2 years ago | 78 comments
73. No, I did not hack your MS Exchange server (krebsonsecurity.com)
    178 points by todsacerdoti over 3 years ago | 71 comments
74. SIM swapper abducted, beaten, held for ransom (krebsonsecurity.com)
    173 points by todsacerdoti almost 2 years ago | 124 comments
75. UK sets up fake booter sites to muddy DDoS market (krebsonsecurity.com)
    169 points by todsacerdoti over 1 year ago | 113 comments
76. When Your Smart ID Card Reader Comes With Malware (krebsonsecurity.com)
    168 points by todsacerdoti over 2 years ago | 48 comments
77. Experts fear crooks are cracking keys stolen in LastPass breach (krebsonsecurity.com)
    167 points by todsacerdoti about 1 year ago | 117 comments
78. Battle with bots prompts purge of Amazon, Apple employee accounts on LinkedIn (krebsonsecurity.com)
    166 points by todsacerdoti almost 2 years ago | 116 comments
79. Teach a man to phish and he’s set for life (krebsonsecurity.com)
    163 points by todsacerdoti about 1 year ago | 89 comments
80. Your phone may soon replace many of your passwords (krebsonsecurity.com)
    159 points by todsacerdoti over 2 years ago | 314 comments
81. Who's behind the SWAT USA reshipping service? (krebsonsecurity.com)
    154 points by todsacerdoti 11 months ago | 180 comments
82. NY Man Pleads Guilty in $20M SIM Swap Theft (krebsonsecurity.com)
    152 points by picture almost 3 years ago | 167 comments
83. How did authorities identify the alleged LockBit boss? (krebsonsecurity.com)
    147 points by todsacerdoti 4 months ago | 84 comments
84. BlackCat ransomware group implodes after apparent payment by Change Healthcare (krebsonsecurity.com)
    146 points by todsacerdoti 7 months ago | 162 comments
85. Sued by Meta, Freenom halts domain registrations (krebsonsecurity.com)
    145 points by todsacerdoti over 1 year ago | 42 comments
86. Violence-as-a-Service: Brickings, Firebombings and Shootings for Hire (krebsonsecurity.com)
    144 points by feross about 2 years ago | 59 comments
87. 'Operation Endgame' Hits Malware Delivery Platforms (krebsonsecurity.com)
    144 points by todsacerdoti 4 months ago | 72 comments
88. Two U.S. men charged in 2022 hacking of DEA portal (krebsonsecurity.com)
    131 points by todsacerdoti over 1 year ago | 60 comments
89. Serial swatter who caused death gets five years in prison (krebsonsecurity.com)
    128 points by picture about 3 years ago | 155 comments
90. Fintech Giant Fiserv Used Unclaimed Domain (krebsonsecurity.com)
    126 points by todsacerdoti over 3 years ago | 27 comments
91. “Downthem” DDoS-for-hire boss gets 2 years in prison (krebsonsecurity.com)
    123 points by todsacerdoti over 2 years ago | 71 comments
92. Microsoft Issues Emergency Patch for Windows Flaw (krebsonsecurity.com)
    123 points by todsacerdoti about 3 years ago | 63 comments
93. Re-Victimization from Police-Auctioned Cell Phones (krebsonsecurity.com)
    122 points by impish9208 over 1 year ago | 34 comments
94. Wanted: Disgruntled Employees to Deploy Ransomware (krebsonsecurity.com)
    120 points by todsacerdoti about 3 years ago | 130 comments
95. Glut of Fake LinkedIn Profiles Pits HR Against the Bots (krebsonsecurity.com)
    115 points by todsacerdoti almost 2 years ago | 98 comments
96. Why Your Wi-Fi Router Doubles as an Apple AirTag (krebsonsecurity.com)
    114 points by todsacerdoti 4 months ago | 105 comments
97. Leaked Chats Show Lapsus$ Stole T-Mobile Source Code (krebsonsecurity.com)
    113 points by todsacerdoti over 2 years ago | 38 comments
98. Why CISA Is Warning CISOs About a Breach at Sisense (krebsonsecurity.com)
    107 points by todsacerdoti 5 months ago | 52 comments
99. Stark Industries Solutions: An Iron Hammer in the Cloud (krebsonsecurity.com)
    106 points by todsacerdoti 4 months ago | 11 comments
100. Man Robbed of 16 Bitcoin Sues Young Thieves’ Parents (krebsonsecurity.com)
     105 points by picture about 3 years ago | 141 comments