briankrebsVerified account

@briankrebs

Independent investigative journalist. Writes about cybercrime. Author of 'Spam Nation', a NYT bestseller. Wrote for The Washington Post '95-'09

The Underweb
http://krebsonsecurity.com
Joined March 2009
287 Photos and videos Photos and videos

Tweets

You blocked @briankrebs

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @briankrebs

  1. Pinned Tweet
    Aug 16

    Entrepreneur sues AT&T for $224M after fraudulent SIM swap. Attacks like these are prompting some experts to say the surest way to safeguard one’s online accounts may be to disconnect them from the mobile providers entirely.

    7 replies 101 retweets 132 likes
    Undo
  2. Retweeted
    Sep 13

    Scary as fuck weather report. First it's like, ah smart use of green screen, then it's like holy fucking shit.

    3,351 replies 140,199 retweets 291,088 likes
    Show this thread
    Show this thread
    Undo
  3. Sep 12

    The 4 major US mobile providers want to be your online identity. Here's a look at Project Verify, a nascent effort by the carriers to use unique subscriber data points to supplant or supplement passwords and 2-factor codes for online authentication

    25 replies 145 retweets 155 likes
    Undo
  4. Retweeted
    Sep 12

    This is a great add. I’m aware it existed in pre-iPhone days, but it’s nice to have it on a device I will use. Managed properly it also unlocks new security features.

    New iPhones will have dual-SIM capacity, useful for those who want two different phone numbers (work and home) or the ability to have a travel SIM and home SIM. This is cool.
    8 replies 17 retweets 78 likes
    Undo
  5. Retweeted
    Sep 12
    Replying to

    Then this is the only recourse.

    2 replies 10 retweets 62 likes
    Undo
  6. Sep 12

    This was the third wolf spider I found. It was over 2 inches long. Just found another one right next to the toilet. Eek. He got away before I could catch him. Might be time to get out my Boring Co. flamethrower and just call the house a total loss.

    77 replies 7 retweets 195 likes
    Show this thread
    Show this thread
    Undo
  7. Sep 11

    Our home has been invaded by wolf spiders. I'm wondering if all the wetness of late has driven them to seek shelter indoors. Just today I've captured three of these huge spiders and released them outside but now my shoe is starting to look like a better option.

    124 replies 12 retweets 255 likes
    Show this thread
    Show this thread
    Undo
  8. Retweeted
    Sep 11

    Some people don't like the idea of publicly shaming a company for bad security posture, but time and time again it gets results. I don't buy the excuse that somehow it's unfair on the org or social media folks, here's why:

    29 replies 225 retweets 499 likes
    Undo
  9. Retweeted
    Sep 11

    My latest in How not to fall prey to the latest 'sextortion' email threat via

    12 retweets 18 likes
    Undo
  10. Sep 11

    Went back thru an old (circa 2004-5) short Gmail address I got when Gmail was still in invite phase. Searching "password" I found more than 100 different accounts -- including many email and domain reg accounts -- that listed the address as a backup or primary. Bizarre.

    13 replies 8 retweets 61 likes
    Undo
  11. Sep 10

    In just a few days, consumer credit freezes will be free for all Americans and their dependents -- no more fees to place or lift a freeze. Here's a primer on the upcoming changes and why you should embrace the freeze if you haven't already

    16 replies 848 retweets 1,133 likes
    Undo
  12. Sep 10

    It's all part of the Krebs Cycle :)

    is the “Identification” phase of the Incident Response Cycle (from Intelligence-Driven Incident Response by Roberts & Brown)
    12 replies 44 retweets 327 likes
    Undo
  13. Retweeted
    Sep 10

    Advisory: Tor Browser 7.x has a serious vuln/bugdoor leading to full bypass of Tor / NoScript 'Safest' security level (supposed to block all JS). PoC: Set the Content-Type of your html/js page to "text/html;/json" and enjoy full JS pwnage. Newly released Tor 8.x is Not affected.

    29 replies 970 retweets 1,112 likes
    Undo
  14. Retweeted
    Sep 7

    Google has a new search engine out, for searching for Datasets.

    20 replies 968 retweets 1,563 likes
    Undo
  15. Retweeted
    Sep 7

    If you're watching a talk an occasional nod or smile can really go a long way to let the speaker know that you're not lost/hating every word (unless you are, in which case carry on). To the people who've nodded through my talks, thank you! You keep me going!

    24 replies 94 retweets 736 likes
    Undo
  16. Retweeted
    Sep 5

    Do you use a popular browser extension? How confident are you that the creator wouldn’t accept a $10k offer to hand it over only to have it then go rogue on you?

    Replying to @troyhunt @stampycode
    A friend of ours wrote a reasonably popular chrome extension (~70k users). As soon as it started to take off he had offers by scammers to buy the extension. An easy way for scammers to hijack your browser: find an extension with interesting permissions, buy, push an “update”.
    57 replies 700 retweets 1,115 likes
    Undo
  17. Retweeted
    Sep 6

    We are investigating the theft of customer data from our website and our mobile app, as a matter of urgency. For more information, please click the following link:

    889 replies 1,254 retweets 718 likes
    Undo
  18. Retweeted
    Sep 6

    We would like to thank for his assistance in the Apophis Squad investigation. Protecting the ProtonMail community is our priority and this means we will always work to bring criminals to justice.

    Got a nice shout-out today from for helping them track down a 19-year-old Internet hoodlum from the UK who repeatedly DDoS'd my site and theirs. He has pleaded guilty to making bomb threats against thousands of schools
    9 replies 104 retweets 528 likes
    Undo
  19. Sep 6

    Got a nice shout-out today from for helping them track down a 19-year-old Internet hoodlum from the UK who repeatedly DDoS'd my site and theirs. He has pleaded guilty to making bomb threats against thousands of schools

    32 replies 199 retweets 701 likes
    Undo
  20. Sep 6

    North Korean spy to be charged with 2014 hack and subsequent pantsing of Sony Pictures

    46 retweets 51 likes
    Undo
  21. Sep 6

    In the wake of file-sharing site 's Chrome browser extension getting compromised by password-stealing malware, it's a good time to reevaluate whether a given extension is worth the risk

    6 replies 117 retweets 137 likes
    Undo

@briankrebs hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·