Feed Atlas
OPML directory + server-side RSS reader

krebsonsecurity.com

SiteRSSBlogs
Back

Latest posts

  • Microsoft Patches a Record 570 Security Flaws
    Jul 14, 2026BrianKrebs

    Microsoft Corp. today released software updates to plug at least 570 security holes in its Windows operating systems and other software, almost triple the number of vulnerabilities the software giant fixed in its record-smashing Patch Tuesday release last month. Microsoft attributed the burgeoning patch counts to vulnerability discoveries aided by artificial intelligence.

  • Lessons Learned from CISA’s Recent GitHub Leak
    Jul 13, 2026BrianKrebs

    The Cybersecurity and Infrastructure Security Agency (CISA) has issued a postmortem on a data leak in which a contractor published dozens of internal CISA credentials -- including AWS Govcloud keys -- in a public GitHub repository for almost six months before being notified by KrebsOnSecurity. Experts say the gaps identified in the agency's initial response provide important lessons that all secur

  • Felons, Fraudsters Flog Offensive Cybersecurity Startup
    Jul 08, 2026BrianKrebs

    A cybersecurity startup dangling millions of dollars to acquire zero-day security vulnerabilities in popular software is run by a pair of far-right conspiracy theorists and convicted felons whose most recent ventures included fake intelligence companies and a now-defunct AI-based lobbying platform they operated under assumed names.

  • FBI Seizes NetNut Proxy Platform, Popa Botnet
    Jul 02, 2026BrianKrebs

    The Federal Bureau of Investigation (FBI) said today it worked with industry partners to seize hundreds of domains associated with NetNut, a sprawling residential proxy service operated by the publicly-traded Israeli company Alarum Technologies [NASDAQ: ALAR]. The action comes roughly two weeks after KrebsOnSecurity published findings from multiple security firms connecting NetNut to the Popa botn

  • Scattered Spider Hackers Plead Guilty on Day 1 of Trial
    Jun 23, 2026BrianKrebs

    Two men pleaded guilty in the United Kingdom this week to criminal charges stemming from an August 2024 cyberattack that crippled Transport for London, the entity responsible for the public transport network in the Greater London area. The duo were key members of a prolific cybercrime group known as Scattered Spider, and their guilty pleas came on the first day of what was expected to be a six-wee

  • ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm
    Jun 18, 2026BrianKrebs

    For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet traffic linked to advertising fraud, account takeovers, and mass data-scraping efforts. This week, researchers from multiple security firms concluded that the Popa botnet is linked to NetNut, a "residential proxy" provider operated by the publicly-traded Israeli firm Ala

  • Who Runs the Ransomware Group ‘The Gentlemen?’
    Jun 10, 2026BrianKrebs

    A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of hackers through an aggressive recruitment strategy that promises affiliates 90 percent of any ransom paid by victims. This post examines clues pointing to a real life identity for the administrator of The Gentlemen ransomware group.

  • A Record-Breaking Patch Tuesday for June 2026
    Jun 09, 2026BrianKrebs

    Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported software, a record number of fixes for the company's monthly Patch Tuesday cycle. Nearly three dozen of those bugs earned Microsoft's most dire "critical" rating, and exploit code for at least three of the weaknesses is now publicly available.

  • Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts
    Jun 01, 2026BrianKrebs

    The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions began circulating on Telegram showing how to trick Meta's "AI support assistant" bot into resetting account passwords.

  • Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks
    May 25, 2026BrianKrebs

    Authorities in the Netherlands have arrested the co-owners of two related Internet hosting companies for operating IT infrastructure used by Russia to carry out cyberattacks, influence operations and disinformation campaigns inside the European Union. The two men were the focus of a 2025 KrebsOnSecurity story about how their hosting companies had assumed control over the technical infrastructure o