You are browsing archives for
Multiple media reports this week warned Americans to be on guard against a new phishing scam that arrives in a text message informing recipients they are not yet registered to vote. A bit of digging reveals the missives were sent by a California political consulting firm as part of a well-meaning but potentially counterproductive get-out-the-vote […]
Malicious hackers are exploiting a zero-day vulnerability in Versa Director, a software product used by many Internet and IT service providers. Researchers believe the activity is linked to Volt Typhoon, a Chinese cyber espionage group focused on infiltrating critical U.S. networks and laying the groundwork for the ability to disrupt communications between the United States […]
The proliferation of new top-level domains (TLDs) has exacerbated a well-known security weakness: Many organizations set up their internal Microsoft authentication systems years ago using domain names in TLDs that didn’t exist at the time. Meaning, they are continuously sending their Windows usernames and passwords to domain names they do not control and which are […]
New details are emerging about a breach at National Public Data (NPD), a consumer data broker that recently spilled hundreds of millions of Americans’ Social Security Numbers, addresses, and phone numbers online. KrebsOnSecurity has learned that another NPD data broker which shares access to the same consumer records inadvertently published the passwords to its back-end […]
A great many readers this month reported receiving alerts that their Social Security Number, name, address and other personal information were exposed in a breach at a little-known but aptly-named consumer data broker called NationalPublicData.com. This post examines what we know about a breach that has exposed hundreds of millions of consumer records. We’ll also […]
In this week’s Princh Library Blog post, recurring guest writer Sam L. Bowman gives advice on how you can improve your library’s signage by implementing diagrams. He discusses some basic principles to keep in mind when designing signage, pictography practices, and more. Enjoy! Libraries exist to encourage reading, writing, researching, and getting involved in your […]
Microsoft today released updates to fix at least 90 security vulnerabilities in Windows and related software, including a whopping six zero-day flaws that are already being actively exploited by attackers. Image: Shutterstock. This month’s bundle of update joy from Redmond includes patches for security holes in Office, .NET, Visual Studio, Azure, Co-Pilot, Microsoft Dynamics, Teams, […]
Photo: EPNAC Max Greenfield knows that anxieties can keep our mind racing at night. Even the most far-fetched ones. “It’s totally normal to be scared of a shark if you’re in the water and a shark is swimming toward you,” says Greenfield, an actor most known for his roles on sitcoms New Girl and The […]
A partial selfie posted by Punchmade Dev to his Twitter account. Yes, that is a functioning handheld card skimming device, encrusted in diamonds. Underneath that are more medallions, including a diamond-studded bitcoin and payment card. In January, KrebsOnSecurity wrote about rapper Punchmade Dev, whose music videos sing the praises of a cybercrime lifestyle. That story […]
A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. Security experts say the Dark Angels have been around since 2021, but the group doesn’t get much press because they work alone and […]
Twenty-four prisoners were freed today in an international prisoner swap between Russia and Western countries. Among the eight Russians repatriated were several convicted cybercriminals. In return, Russia has reportedly released 16 prisoners, including Wall Street Journal reporter Evan Gershkovich and ex-U.S. Marine Paul Whelan. AMong those in the prisoner swap is Roman Seleznev, 40, who […]
More than a million domain names — including many registered by Fortune 100 firms and brand protection companies — are vulnerable to takeover by cybercriminals thanks to authentication weaknesses at a number of large web hosting providers and domain registrars, new research finds. Image: Shutterstock. Your Web browser knows how to find a site like […]
Google says it recently fixed an authentication weakness that allowed crooks to circumvent the email verification required to create a Google Workspace account, and leverage that to impersonate a domain holder at third-party services that allow logins through Google’s “Sign in with Google” feature. Last week, KrebsOnSecurity heard from a reader who said they received a […]
Kwame Alexander speaks at the 2024 Annual Conference and Exhibition. Photo: EPNAC San Diego’s dreamy weather and landscape were no match for the sunny disposition of library workers and advocates reuniting under a shared mission at the American Library Association’s (ALA) 2024 Annual Conference and Exhibition. A total of 13,532 people registered for the event, […]
The Library Marketplace at the American Library Association’s 2024 Annual Conference and Exhibition in San Diego. Photo: EPNAC The American Library Association’s 2024 Annual Conference and Exhibition (June 27–July 2) brought 13,532 registrants to sunny San Diego for educational programs, featured speakers, business meetings, and celebrations. Though attendance was slightly down from the past two […]
Connie Chung speaks at the American Library Association’s 2024 Annual Conference and Exhibition in San Diego on June 29. Photo: EPANC Connie Chung has been bringing you the headlines since the late 1960s. As the first Asian American to anchor any news program in the US and the first woman to coanchor the CBS Evening […]
By Megan Bennett | July 24, 2024 Photos: EPANC The weather report at the American Library Association’s 2024 Annual Conference and Exhibition, held June 27–July 2 in San Diego, was all smiles. Here are some of the week’s picture-perfect moments. Clockwise from top: Haley White, reference department manager at Springfield-Greene County (Mo.) Library District, takes […]
What an amazing Annual Conference experience in San Diego! It was great to see strong attendance numbers of nearly 13,600, reflecting a continued desire for learning and engagement. As we look ahead to meet the information needs of our membership, it is important that we stand united to remember why we work in this trusted […]
The Chinese company in charge of handing out domain names ending in “.top” has been given until mid-August 2024 to show that it has put in place systems for managing phishing reports and suspending abusive domains, or else forfeit its license to sell domains. The warning comes amid the release of new findings that .top […]
A faulty software update from cybersecurity vendor Crowdstrike crippled countless Microsoft Windows computers across the globe today, disrupting everything from airline travel and financial institutions to hospitals and businesses online. Crowdstrike said a fix has been deployed, but experts say the recovery from this outage could take some time, as Crowdstrike’s solution needs to be […]
