No Image

Patch Tuesday, August 2019 Edition

August 13, 2019 BrianKrebs 0

Most Microsoft Windows (ab)users probably welcome the monthly ritual of applying security updates about as much as they look forward to going to the dentist: It always seems like you were there just yesterday, and you never quite know how it’s all going to turn out. Fortunately, this month’s patch batch from Redmond is mercifully light, at least compared to last month.

The post Patch Tuesday, August 2019 Edition appeared first on Wolfe’s Blog.

No Image

SEC Investigating Data Leak at First American Financial Corp.

August 12, 2019 BrianKrebs 0

The U.S. Securities and Exchange Commission (SEC) is investigating a security failure on the Web site of real estate title insurance giant First American Financial Corp. that exposed more than 885 million personal and financial records tied to mortgage deals going back to 2003, KrebsOnSecurity has learned.

The post SEC Investigating Data Leak at First American Financial Corp. appeared first on Wolfe’s Blog.

No Image

SEC Investigating Data Leak at First American Financial Corp.

August 12, 2019 BrianKrebs 0

The U.S. Securities and Exchange Commission (SEC) is investigating a security failure on the Web site of real estate title insurance giant First American Financial Corp. that exposed more than 885 million personal and financial records tied to mortgage deals going back to 2003, KrebsOnSecurity has learned.

The post SEC Investigating Data Leak at First American Financial Corp. appeared first on Wolfe’s Blog.

No Image

iNSYNQ Ransom Attack Began With Phishing Email

August 9, 2019 BrianKrebs 0

A ransomware outbreak that hit QuickBooks cloud hosting firm iNSYNQ in mid-July appears to have started with an email phishing attack that snared an employee working in sales for the company, KrebsOnSecurity has learned. It also looks like the intruders spent roughly ten days rooting around iNSYNQ’s internal network to properly stage things before unleashing the ransomware. iNSYNQ ultimately declined to pay the ransom demand, and it is still working to completely restore customer access to files.

The post iNSYNQ Ransom Attack Began With Phishing Email appeared first on Wolfe’s Blog.

No Image

Who Owns Your Wireless Service? Crooks Do.

August 7, 2019 BrianKrebs 0

Incessantly annoying and fraudulent robocalls. Corrupt wireless company employees taking hundreds of thousands of dollars in bribes to unlock and hijack mobile phone service. Wireless providers selling real-time customer location data, despite repeated promises to the contrary. A noticeable uptick in SIM-swapping attacks that lead to multi-million dollar cyberheists.

If you are somehow under the impression that you — the customer — are in control over the security, privacy and integrity of your mobile phone service, think again. And you’d be forgiven if you assumed the major wireless carriers or federal regulators had their hands firmly on the wheel.

The post Who Owns Your Wireless Service? Crooks Do. appeared first on Wolfe’s Blog.