krebsonsecurity.com
13 articles in the Truth Foundry index. Each links out to the original.
- CISA Postmortem Reveals Delays in Responding to GitHub Secrets Leak · CISA admits slow response to GitHub leak exposed AWS keys and passwords for six months.
- Convicted Felons and Conspiracy Theorists Run Offensive Cybersecurity Startup · A cybersecurity startup led by Jack Burkman and Jacob Wohl, both convicted felons, offers millions for offensive exploits.
- Israeli Firm Alarum Linked to Popa Android Botnet Used for Fraud · Security researchers link the Popa botnet to NetNut, a proxy service operated by publicly-traded Israeli firm Alarum Technologies.
- Russian Cybercriminal Alexander Yapaev Identified as Ransomware Group 'The Gentlemen' Leader · Russian national Alexander Yapaev is identified as the administrator of the active ransomware group The Gentlemen.
- Microsoft Releases Record-Breaking 200 Security Patches in June Patch Tuesday · Microsoft addresses 200 vulnerabilities in Windows and software, marking a record Patch Tuesday driven by AI-assisted bug discovery.
- Hackers Exploit Meta AI Support Bot to Hijack High-Value Instagram Accounts · Pro-Iran hackers used a Meta AI support bot vulnerability to reset passwords and seize accounts like the Obama White House.
- Netherlands Arrests Two for Operating Servers Used in Russian Cyberattacks · Dutch authorities arrested two men for running hosting infrastructure that supported Russian cyberattacks and influence operations in the EU.
- Congress Demands Answers After CISA Contractor Leaks Agency Secrets on GitHub · Lawmakers demand accountability after a CISA contractor exposed critical agency credentials on a public GitHub repository.
- Canadian Authorities Arrest Kimwolf Botmaster 'Dort' on DDoS Charges · Jacob Butler, aka 'Dort', arrested in Ottawa for operating the Kimwolf IoT botnet used in massive DDoS attacks.
- CISA Contractor Leaks AWS GovCloud Keys and Internal Credentials on GitHub · A CISA contractor exposed privileged AWS GovCloud keys and internal passwords on a public GitHub repository.
- Major Tech Giants Fix Record Security Bugs via AI-Driven Patch Tuesday · Microsoft, Apple, Google, and others patch hundreds of vulnerabilities after testing Anthropic's AI security tool.
- Canvas Breach Disrupts Schools After ShinyHunters Extortion Attack · Cybercriminal group ShinyHunters disrupted Canvas, affecting 275 million students and faculty across 9,000 institutions.
- Brazilian DDoS Protection Firm Accused of Using Botnet Against Rivals · Huge Networks CEO claims competitor breached his firm to launch DDoS attacks on Brazilian ISPs.