The Dark Nexus Between Harm Groups and ‘The Com’

Bug Left Some Windows PCs Dangerously Unpatched

Sextortion Scams Now Include Photos of Your Home

Owners of 1-Time Passcode Theft Service Plead Guilty

When Get-Out-The-Vote Efforts Look Like Phishing

In February, KrebsOnSecurity wrote about a novel cybercrime service that helped attackers intercept the one-time passwords (OTPs) that many websites require as a second authentication factor in addition to passwords. That service quickly went offline, but new research reveals a number of competitors have since launched bot-based services that make it relatively easy for crooks to phish OTPs from targets.

Headline

The Rise of One-Time Password Interception Bots

Krebs on Security: Latest News