Transacting in Person with Strangers from the Internet

Communities like Craigslist, OfferUp, Facebook Marketplace and others are great for finding low- or no-cost stuff that one can pick up directly from a nearby seller, and for getting rid of useful things that dont deserve to end up in a landfill. But when dealing with strangers from the Internet,...

Attackers Hijack Craigslist Emails to Bypass Security, Deliver Malware

Musical instruments, motorcycle parts and now malware — Craigslist really does have it all. The Craigslist internal email system was hijacked by attackers this month to deliver convincing messages, ultimately aimed at avoiding Microsoft Office security controls in order to deliver malware. Sent...

Podcast: Behind-the-Scenes Look at Scattered Canary BEC Cybergang

LONDON, U.K. – At Infosecurity Europe, Threatpost caught up with Agari researchers to discuss their threat research unveiled at the show about a newly-unveiled business email compromise BEC cybergang. The cybercriminal group, which researchers called Scattered Canary, has been evolving for over 1...

Newly-Identified BEC Cybergang Targets U.S. Enterprise Victims

LONDON, U.K. – Researchers have identified a highly-sophisticated Nigerian business email compromise gang targeting U.S enterprises and government institutions. The cybercrime group, dubbed Scattered Canary, has evolved over the past 10 years from a one-man shop working Craigslist scams into a...

EFF Sues to Repeal Controversial Online Sex Trafficking FOSTA Law

The Electronic Frontier Foundation on Thursday announced it is suing to invalidate a recently passed law that is meant to fight online sex trafficking. The Allow States and Victims to Fight Online Sex Trafficking Act of 2017 FOSTA, which was passed 97-2 by Congress in March and signed into law in...

A Sobering Look at Fake Online Reviews

In 2016, KrebsOnSecurity exposed a network of phony Web sites and fake online reviews that funneled those seeking help for drug and alcohol addiction toward rehab centers that were secretly affiliated with the Church of Scientology. Not long after the story ran, that network of bogus reviews...

ICClassifieds 1.1 - SQL Injection

Exploit Title: Classifieds Software Script Like Craigslist 1.1 - SQL Injection Dork: N/A Date: 13.09.2017 Vendor Homepage: http://www.icloudcenter.com/ Software Link: http://www.icloudcenter.com/craigslist-like-classifieds-script.htm Demo: http://icloudcenter.net/demos/icclassifieds/ Version: 1.1...

craigslist.org XSS vulnerability

Vulnerable URL: http://www.craigslist.org/about/best/all?lang=en=us=" onclick=alert"OPENBUGBOUNTY" src=a" Details: Description| Value ---|--- Patched:| Yes, at 01.07.2016 Latest check for patch:| 01.07.2016 20:13 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 7...

craigslist.org Browsing Detected

Binary data 9167.prm...

Craigslist Back Online Following DNS Hijack

The popular classifieds website Craigslist is back online today following a DNS attack that forced it offline for several hours Sunday evening. According to a blogpost Sunday night by Craigslist’s CEO Jim Buckmaster, DNS records maintained at one of Craigslist’s domain registrars were compromised...

Craigslist Gold - SQL Injection Vulnerability

No description provided by source. Exploit Title: Craigslist Clone Gold SQL injection Vulnerability Date: 04/05/2013 Author: Fallaga Team: FaLLaGa Tunisian Hackers Script url: http://www.scriptcopy.com/craigslist-clone-script/Craiglist-Gold-4444.html Version: N/A Tested on: Demo CVE : EXPL0!T...

Adobe Photo Loader Malware Posts Craigslist Spam

An attacker is going to a lot of trouble to post spam messages to Craigslist. Researchers at Solera Networks have come across an attack where malware is using compromised machines to post poorly worded ads for an Android application marketed at parents for the purposes of monitoring the activitie...

Craigslist Gold SQL Injection

Exploit Title: Craigslist Clone Gold SQL injection Vulnerability Date: 04/05/2013 Author: Fallaga Team: FaLLaGa Tunisian Hackers Script url: http://www.scriptcopy.com/craigslist-clone-script/Craiglist-Gold-4444.html Version: N/A Tested on: Demo CVE : EXPL0!T...

Craigslist Gold - SQL Injection Vulnerability

Exploit for php platform in category web applications http://exemple/classifieds2/?view=ads&catid=-1+union+select+concatemail,0x3a,code+from+clfads-- 0day.today 2018-01-01...

Craigslist Gold - SQL Injection

Exploit Title: Craigslist Clone Gold SQL injection Vulnerability Date: 04/05/2013 Author: Fallaga Team: FaLLaGa Tunisian Hackers Script url: http://www.scriptcopy.com/craigslist-clone-script/Craiglist-Gold-4444.html Version: N/A Tested on: Demo CVE : EXPL0!T...

Craigslist Gold - SQL Injection

Craigslist Gold - SQL Injection Exploit Title: Craigslist Clone Gold SQL injection Vulnerability Date: 04/05/2013 Author: Fallaga Team: FaLLaGa Tunisian Hackers Script url: http://www.scriptcopy.com/craigslist-clone-script/Craiglist-Gold-4444.html Version: N/A Tested on: Demo CVE : EXPL0!T...

Fake Automated Craigslist Email Notifications Link to Blackhole Exploit Kit

UPDATE: A big wave of emails purporting to be Craigslist notifications but containing links to websites hosting the Black Hole exploit kit hit the Internet yesterday, a day that already was filled with drama surrounding the LinkedIn password dump. The malicious emails, 150,000 of which were caugh...

craigslist.org Personals Access Detection

Binary data 6409.prm...

Cyber crime Complaints in US Fell by 10% in 2010 !

The U.S. agency that tracks complaints of criminal activity on the Internet reported Thursday that fewer people complained about Internet fraud in 2010 than in the previous year. The Internet Crime Complaint Center IC3 runs a Web site where victims can report details of any cyberfraud. It shares...