News

RSS Krebs on Security
  • Microsoft Patch Tuesday, December 2025 Edition December 9, 2025
    Microsoft today pushed updates to fix at least 56 security flaws in its Windows operating systems and supported software. This final Patch Tuesday of 2025 tackles one zero-day bug that is already being exploited, as well as two publicly disclosed vulnerabilities.
    BrianKrebs
  • Drones to Diplomas: How Russia’s Largest Private University is Linked to a $25M Essay Mill December 6, 2025
    A sprawling academic cheating network turbocharged by Google Ads that has generated nearly $25 million in revenue has curious connections to a Kremlin-connected oligarch whose Russian university builds drones for Russia's war against Ukraine.
    BrianKrebs
  • SMS Phishers Pivot to Points, Taxes, Fake Retailers December 4, 2025
    China-based phishing groups blamed for non-stop scam SMS messages about a supposed wayward package or unpaid toll fee are promoting a new offering, just in time for the holiday shopping season: Phishing kits for mass-creating fake but convincing e-commerce websites that convert customer payment card data into mobile wallets from Apple and Google. Experts say […]
    BrianKrebs
  • Meet Rey, the Admin of ‘Scattered Lapsus$ Hunters’ November 26, 2025
    A prolific cybercriminal group that calls itself "Scattered LAPSUS$ Hunters" made headlines regularly this year by stealing data from and publicly mass extorting dozens of major corporations. But the tables seem to have turned somewhat for "Rey," the moniker chosen by the technical operator and public face of the hacker group: Earlier this week, Rey […]
    BrianKrebs
  • Is Your Android TV Streaming Box Part of a Botnet? November 24, 2025
    On the surface, the Superbox media streaming devices for sale at retailers like BestBuy and Walmart may seem like a steal: They offer unlimited access to more than 2,200 pay-per-view and streaming services like Netflix, ESPN and Hulu, all for a one-time fee of around $400. But security experts warn these TV boxes require intrusive […]
    BrianKrebs
  • Mozilla Says It’s Finally Done With Two-Faced Onerep November 20, 2025
    In March 2024, Mozilla said it was winding down its collaboration with Onerep -- an identity protection service offered with the Firefox web browser that promises to remove users from hundreds of people-search sites -- after KrebsOnSecurity revealed Onerep's founder had created dozens of people-search services and was continuing to operate at least one of […]
    BrianKrebs
  • The Cloudflare Outage May Be a Security Roadmap November 19, 2025
    An intermittent outage at Cloudflare on Tuesday briefly knocked many of the Internet's top destinations offline. Some affected Cloudflare customers were able to pivot away from the platform temporarily so that visitors could still access their websites. But security experts say doing so may have also triggered an impromptu network penetration test for organizations that […]
    BrianKrebs
  • Microsoft Patch Tuesday, November 2025 Edition November 16, 2025
    Microsoft this week pushed security updates to fix more than 60 vulnerabilities in its Windows operating systems and supported software, including at least one zero-day bug that is already being exploited. Microsoft also fixed a glitch that prevented some Windows 10 users from taking advantage of an extra year of security updates, which is nice […]
    BrianKrebs
  • Google Sues to Disrupt Chinese SMS Phishing Triad November 13, 2025
    Google is suing more than two dozen unnamed individuals allegedly involved in peddling a popular China-based mobile phishing service that helps scammers impersonate hundreds of trusted brands, blast out text message lures, and convert phished payment card data into mobile wallets from Apple and Google.
    BrianKrebs
  • Drilling Down on Uncle Sam’s Proposed TP-Link Ban November 9, 2025
    The U.S. government is reportedly preparing to ban the sale of wireless routers and other networking gear from TP-Link Systems, a tech company that currently enjoys an estimated 50% market share among home users and small businesses. Experts say while the proposed ban may have more to do with TP-Link's ties to China than any […]
    BrianKrebs