Recent Posts
News•Feb 28, 2026
Who Is the Kimwolf Botmaster “Dort”?
KrebsOnSecurity identified the individual behind the Kimwolf botnet as a teenager from Canada using the handle "Dort" and aliases like CPacket and M1CE. Public OSINT links the persona to a GitHub account, multiple cyber‑crime forum registrations, and a history of cheating software for Minecraft. Dort later monetized disposable‑email and CAPTCHA‑bypass services on the SIM Land Telegram channel and partnered with the hacker Qoft to steal over $250,000 in Xbox Game Pass accounts. After a vulnerability disclosure slowed Kimwolf’s spread, Dort launched DDoS, doxing, and swatting campaigns targeting the researcher and the site’s author.
By Krebs on Security
News•Feb 2, 2026
Please Don’t Feed the Scattered Lapsus ShinyHunters
The Scattered Lapsus ShinyHunters (SLSH) extortion gang blends data theft with aggressive personal harassment, including swatting, DDoS attacks, and media pressure. Operating through chaotic Telegram channels linked to The Com cyber‑crime network, they target executives via phone‑based phishing and MFA...
By Krebs on Security
News•Dec 19, 2025
Dismantling Defenses: Trump 2.0 Cyber Year in Review
The Trump administration’s 2025‑2026 policy agenda has dramatically reshaped U.S. cyber, privacy and law‑enforcement priorities. New directives such as NSPM‑7 and a FBI cash‑reward program broaden the definition of domestic terrorism to include political dissent, while travel‑screening rules force tourists...
By Krebs on Security
News•Dec 16, 2025
Most Parked Domains Now Serving Malicious Content
Researchers at Infoblox discovered that more than 90% of parked domains now redirect visitors to scams, malware, or unwanted software. The malicious redirects are triggered primarily for users on residential IP addresses, while VPN traffic often receives a harmless parking...
By Krebs on Security