krebs   578

« earlier    

RT : öopathie bei . Primum non nocere? Thread 👇🏻
Hom  Krebs  from twitter
3 days ago by ballaschk
Checked Your Credit Since the Equifax Hack? — Krebs on Security
A recent consumer survey suggests that half of all Americans still haven’t checked their credit report since the Equifax breach last year exposed the Social Security numbers, dates of birth, addresses and other personal information on nearly 150 million people. If you’re in that fifty percent, please make an effort to remedy that soon.
Credit reports from the three major bureaus — Equifax, Experian and TransUnion — can be obtained online for free at — the only Web site mandated by Congress to serve each American a free credit report every year. is run by a Florida-based company, but its data is supplied by the major credit bureaus, which struggled mightily to meet consumer demand for free credit reports in the immediate aftermath of the Equifax breach. Personally, I was unable to order a credit report for either me or my wife even two weeks after the Equifax breach went public: The site just kept returning errors and telling us to request the reports in writing via the U.S. Mail.
breach  credit_report  data  equifax  hack  identity_theft  krebs  privacy  security 
5 days ago by rgl7194
USPS Finally Starts Notifying You by Mail If Someone is Scanning Your Snail Mail Online — Krebs on Security
In October 2017, KrebsOnSecurity warned that ne’er-do-wells could take advantage of a relatively new service offered by the U.S. Postal Service that provides scanned images of all incoming mail before it is slated to arrive at its destination address. We advised that stalkers or scammers could abuse this service by signing up as anyone in the household, because the USPS wasn’t at that point set up to use its own unique communication system — the U.S. mail — to alert residents when someone had signed up to receive these scanned images.
The USPS recently told this publication that beginning Feb. 16 it started alerting all households by mail whenever anyone signs up to receive these scanned notifications of mail delivered to that address. The notification program, dubbed “Informed Delivery,” includes a scan of the front of each envelope destined for a specific address each day.
mail  scanning  krebs  email  privacy  security 
7 days ago by rgl7194
Simple Banking Security Tip: Verbal Passwords — Krebs on Security
There was a time when I was content to let my bank authenticate me over the phone by asking for some personal identifiers (SSN/DOB) that are broadly for sale in the cybercrime underground. At some point, however, I decided this wasn’t acceptable for institutions that held significant chunks of our money, and I began taking our business away from those that wouldn’t let me add a simple verbal passphrase that needed to be uttered before any account details could be discussed over the phone.
Most financial institutions will let customers add verbal passwords or personal identification numbers (PINs) that are separate from any other PIN or online banking password you might use, although few will advertise this.
banking  krebs  authentication  passwords  security  privacy 
9 days ago by rgl7194
What Is Your Bank’s Security Banking On? — Krebs on Security
A large number of banks, credit unions and other financial institutions just pushed customers onto new e-banking platforms that asked them to reset their account passwords by entering a username plus some other static identifier — such as the first six digits of their Social Security number (SSN), or a mix of partial SSN, date of birth and surname. Here’s a closer look at what may be going on (spoiler: small, regional banks and credit unions have grown far too reliant on the whims of just a few major online banking platform providers).
You might think it odd that any self-respecting financial institution would seek to authenticate customers via static data like partial SSN for passwords, and you’d be completely justified for thinking that, too. Nobody has any business using these static identifiers for authentication because they are for sale on most Americans quite cheaply in the cybercrime underground. The Equifax breach might have “refreshed” some of those data stores for identity thieves, but most U.S. adults have had their static details (DOB/SSN/MMN, address, previous address, etc) on sale for years now.
On Feb. 16, KrebsOnSecurity reader Brent Hoeft shared a copy of an email he’d just received from his financial institution Associated Bank, which at $30+ billion in assets happens to be Wisconsin’s largest by asset size.
security  banking  krebs  SSN  passwords  privacy  2FA 
9 days ago by rgl7194
File Your Taxes Before Scammers Do It For You — Krebs on Security
Today, Jan. 29, is officially the first day of the 2018 tax-filing season, also known as the day fraudsters start requesting phony tax refunds in the names of identity theft victims. Want to minimize the chances of getting hit by tax refund fraud this year? File your taxes before the bad guys can!
Tax refund fraud affects hundreds of thousands, if not millions, of U.S. citizens annually. Victims usually first learn of the crime after having their returns rejected because scammers beat them to it. Even those who are not required to file a return can be victims of refund fraud, as can those who are not actually due a refund from the IRS.
According to the IRS, consumer complaints over tax refund fraud have been declining steadily over the years as the IRS and states enact more stringent measures for screening potentially fraudulent applications.
security  privacy  taxes  scam  krebs  fraud  gov2.0 
5 weeks ago by rgl7194
Registered at SSA.GOV? Good for You, But Keep Your Guard Up — Krebs on Security
KrebsOnSecurity has long warned readers to plant your own flag at the my Social Security online portal of the U.S. Social Security Administration (SSA) — even if you are not yet drawing benefits from the agency — because identity thieves have been registering accounts in peoples’ names and siphoning retirement and/or disability funds. This is the story of a Midwest couple that took all the right precautions and still got hit by ID thieves who impersonated them to the SSA directly over the phone.
In mid-December 2017 this author heard from Ed Eckenstein, a longtime reader in Oklahoma whose wife Ruth had just received a snail mail letter from the SSA about successfully applying to withdraw benefits. The letter confirmed she’d requested a one-time transfer of more than $11,000 from her SSA account. The couple said they were perplexed because both previously had taken my advice and registered accounts with MySocialSecurity, even though Ruth had not yet chosen to start receiving SSA benefits.
security  privacy  krebs  gov2.0  social_security  SSN 
5 weeks ago by rgl7194
Some Basic Rules for Securing Your IoT Stuff — Krebs on Security
Most readers here have likely heard or read various prognostications about the impending doom from the proliferation of poorly-secured “Internet of Things” or IoT devices. Loosely defined as any gadget or gizmo that connects to the Internet but which most consumers probably wouldn’t begin to know how to secure, IoT encompasses everything from security cameras, routers and digital video recorders to printers, wearable devices and “smart” lightbulbs.
Throughout 2016 and 2017, attacks from massive botnets made up entirely of hacked IoT devices had many experts warning of a dire outlook for Internet security. But the future of IoT doesn’t have to be so bleak. Here’s a primer on minimizing the chances that your IoT things become a security liability for you or for the Internet at large.
security  privacy  IoT  krebs 
5 weeks ago by rgl7194
Drugs Tripped Up Suspects In First Known ATM “Jackpotting” Attacks in the US — Krebs on Security
On Jan. 27, 2018, KrebsOnSecurity published what this author thought was a scoop about the first known incidence of U.S. ATMs being hit with “jackpotting” attacks, a crime in which thieves deploy malware that forces cash machines to spit out money like a loose Las Vegas slot machine. As it happens, the first known jackpotting attacks in the United States were reported in November 2017 by local media on the west coast, although the reporters in those cases seem to have completely buried the lede.
On Nov. 20, 2017, Oil City News — a community publication in Wyoming — reported on the arrest of three Venezuelan nationals who were busted on charges of marijuana possession after being stopped by police.
After pulling over the van the men were driving, police on the scene reportedly detected the unmistakable aroma of pot smoke wafting from the vehicle. When the cops searched the van, they discovered small amounts of pot, THC edible gummy candies, and several backpacks full of cash.
security  banking  crime  ATM  malware  drugs  krebs 
6 weeks ago by rgl7194
First ‘Jackpotting’ Attacks Hit U.S. ATMs — Krebs on Security
ATM “jackpotting” — a sophisticated crime in which thieves install malicious software and/or hardware at ATMs that forces the machines to spit out huge volumes of cash on demand — has long been a threat for banks in Europe and Asia, yet these attacks somehow have eluded U.S. ATM operators. But all that changed this week after the U.S. Secret Service quietly began warning financial institutions that jackpotting attacks have now been spotted targeting cash machines here in the United States.
To carry out a jackpotting attack, thieves first must gain physical access to the cash machine. From there they can use malware or specialized electronics — often a combination of both — to control the operations of the ATM.
krebs  security  banking  crime  ATM  malware 
6 weeks ago by rgl7194
Der Koch, dem nichts mehr schmeckte | Beobachter
Am Anfang steht ein dicker Hals und die Diagnose Krebs. Durch die Bestrahlung verliert der Koch dann den Geschmackssinn – und damit seinen Job.
Koch  Geschmackssinn  News  Krankheit  Krebs 
6 weeks ago by Einfach_Essen
Serial SWATter Tyler “SWAuTistic” Barriss Charged with Involuntary Manslaughter — Krebs on Security
Tyler Raj Barriss, a 25-year-old serial “swatter” whose phony emergency call to Kansas police last month triggered a fatal shooting, has been charged with involuntary manslaughter and faces up to eleven years in prison.
Tyler Raj Barriss, in an undated selfie.
Barriss’s online alias — “SWAuTistic” — is a nod to a dangerous hoax known as “swatting,” in which the perpetrator spoofs a call about a hostage situation or other violent crime in progress in the hopes of tricking police into responding at a particular address with potentially deadly force.
Barriss was arrested in Los Angeles this month for alerting authorities in Kansas to a fake hostage situation at an address in Wichita, Kansas on Dec. 28, 2017.
crime  games  police  swatting  krebs 
8 weeks ago by rgl7194
Microsoft’s Jan. 2018 Patch Tuesday Lowdown — Krebs on Security
Microsoft on Tuesday released 14 security updates, including fixes for the Spectre and Meltdown flaws detailed last week, as well as a zero-day vulnerability in Microsoft Office that is being exploited in the wild. Separately, Adobe pushed a security update to its Flash Player software.
Last week’s story, Scary Chip Flaws Raise Spectre of Meltdown, sought to explain the gravity of these two security flaws present in most modern computers, smartphones, tablets and mobile devices. The bugs are thought to be mainly exploitable in chips made by Intel and ARM, but researchers said it was possible they also could be leveraged to steal data from computers with chips made by AMD.
browser  bug  cpu  javascript  linux  mac  meltdown_spectre  privacy  security  windows  krebs 
9 weeks ago by rgl7194

« earlier    

related tags

0day  10.13  2fa  a  amazon  anabol  anabole_diät  antibiotikaresistenz  artenvielfalt  aspartam  aspirin  atm  ausleiten  authentication  award  banking  bewegung  bgp  biologie  birthday  blutspiegel  botnet  bots  breach  brian  browser  bug  business  butter  bücher  c  career  chemotherapie  cia  college  comic  cortisol  cpu  creativity  credit  credit_cards  credit_freeze  credit_report  creditcards  creditfreeze  crime  crispr  cxo  cybercrime  cybersecurity  cycle  d  d14  data  ddos  dems  dnc  dosis  drugs  ecommerce  einsamkeit  election  email  encryption  equifax  fasten  fastening  fcc  feedly  feil_dr._wolfgang  fettleber  finances  fisch  fitness  flash  flying  forschung  fraud  games  gegen  genetik  geschmackssinn  gesund  gesundheit  glyphosat  google  gov2.0  graphic_novel  hack  hacking  health  hijack  hilfe  hillary  hochdosistherapie  hom  html5  iarc  identity_theft  ifttt  immunotherapie  influence  infosec  infusion  instapaper  interaktion  internet  iot  isp  jackpot  javascript  jhu  jobs  k1  k2  ketogene_diät  ketose  koch  kontakte  krack  krankheit  kurkuma  leber  legal  linux  m07  mac  macos  mail  malware  manipulation  meditation  mefi  meltdown_spectre  methadon  minecraft  money  mum  mäuse  nahrungsergänzungsmittel  news  nutrition  nytimes  passwords  pflanzenschutzmittel  pflichtprogramm_täglich  phishing  police  politics  privacy  propaganda  pros  rinderleber  robocalls  root  running  russia  saccharin  scam  scanning  schadstoffe_ausleiten  schwermetalle  security  seefisch  social  social_engineering  social_security  socialmedia  software  sollwert  south_america  spam  ssn  stevia  stress  stresshormon  studien  sucralose  swatting  süßstoff  taxes  technology  temporäre_kalorienrestriktion  tobuy  tod  tools  trump  twitter  ukraine  villainy  vitamin  vpn  web  wi-fi  wikileaks  windows  wissenschaft  y2017  yahoo  yoga  zucker  übergewicht 

Copy this bookmark: