serisec

Category: domaintools

  • Who is the Kimwolf Botmaster “Dort”?

    Who is the Kimwolf Botmaster “Dort”? In early January 2026, KrebsOnSecurity revealed how a security researcher disclosed a vulnerability that was used to build Kimwolf, the world’s largest and most disruptive botnet. Since then, the person in control of Kimwolf — who goes by the handle “Dort” — has coordinated a barrage of distributed denial-of-service…

  • Bulletproof Host Stark Industries Evades EU Sanctions

    Bulletproof Host Stark Industries Evades EU Sanctions In May 2025, the European Union levied financial sanctions on the owners of Stark Industries Solutions Ltd., a bulletproof hosting provider that materialized two weeks before Russia invaded Ukraine and quickly became a top source of Kremlin-linked cyberattacks and disinformation campaigns. But new findings show those sanctions have done…

  • Phishers Target Aviation Execs to Scam Customers

    Phishers Target Aviation Execs to Scam Customers KrebsOnSecurity recently heard from a reader whose boss’s email account got phished and was used to trick one of the company’s customers into sending a large payment to scammers. An investigation into the attacker’s infrastructure points to a long-running Nigerian cybercrime ring that is actively targeting established companies…

  • Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

    Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’? The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled, English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. An investigation into the history of these communities shows their apparent co-founders quite openly operate…

  • FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang

    FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang The FBI and authorities in The Netherlands this week seized dozens of servers and domains for a hugely popular spam and malware dissemination service operating out of Pakistan. The proprietors of the service, who use the collective nickname “The Manipulaters,” have been the subject of three stories published…

  • A Day in the Life of a Prolific Voice Phishing Crew

    A Day in the Life of a Prolific Voice Phishing Crew Besieged by scammers seeking to phish user accounts over the telephone, Apple and Google frequently caution that they will never reach out unbidden to users this way. However, new details about the internal operations of a prolific voice phishing gang show the group routinely…

  • Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

    Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm Cybercriminals are selling hundreds of thousands of credential sets stolen with the help of a cracked version of Acunetix, a powerful commercial web app vulnerability scanner, new research finds. The cracked software is being resold as a cloud-based attack tool by at least two different services,…