KrebsOnSecurity Celebrates 16 Years of Cybersecurity Reporting
KrebsOnSecurity.com marked its 16th anniversary on December 29, 2025, continuing its focus on in-depth reporting of cybercrime and the entities that enable it. The site, founded by Brian Krebs, has become a trusted resource for security professionals and the general public alike, consistently highlighting vulnerabilities and holding malicious actors accountable.
Focus on Cybercrime Enablers in 2025
Throughout 2025, KrebsOnSecurity’s coverage centered on organizations facilitating complex, globally-dispersed cybercrime services. This included investigations into “bulletproof” hosting providers, financial firms, and the infrastructure supporting phishing and malware campaigns.
Stark Industries Solutions Ltd. And EU Sanctions
In May 2024, KrebsOnSecurity scrutinized Stark Industries Solutions Ltd., a hosting provider that came online shortly before the Russian invasion of Ukraine. The investigation revealed its role as a staging ground for Kremlin cyberattacks and disinformation efforts. While Stark and its co-owners faced sanctions from the European Union in 2025, analysis showed these penalties had limited impact, with the proprietors rebranding and transferring assets to other entities.
Cryptomus and Anti-Money Laundering Violations
KrebsOnSecurity profiled Cryptomus, a Canadian-registered financial firm, in December 2024, identifying it as a key payment processor for Russian cryptocurrency exchanges and websites involved in cybercrime. In October 2025, Canadian financial regulators determined Cryptomus had violated anti-money laundering laws, resulting in a record $176 million fine.
Password Manager Vulnerabilities and Cryptocurrency Heists
Investigations into past breaches continued to yield insights. In September 2023, research highlighted how thieves exploited master passwords stolen from LastPass in 2022, leading to six-figure cyberheists. U.S. Federal agents investigating a $150 million cryptocurrency heist in March 2025 reached the same conclusion.
Phishing and Malware Campaigns
Phishing remained a significant focus, with reports detailing the operations of voice phishing gangs and the proliferation of phishing kits from China-based vendors. Google has taken legal action, filing lawsuits against these groups to disrupt their activities. investigations uncovered a content delivery network, Funnull, supporting gambling and money laundering websites, leading to U.S. Government sanctions.
International Law Enforcement Actions
International law enforcement efforts yielded results, including the arrest of 21 individuals in Pakistan allegedly linked to Heartsender, a phishing and malware dissemination service. These arrests followed earlier seizures of servers and domains associated with the group by the FBI and Dutch police.
Emerging Threats: Kimwolf Botnet
KrebsOnSecurity is currently investigating the Kimwolf botnet, identified by Chinese security firm XLab as the world’s largest and most dangerous collection of compromised machines, with approximately 1.83 million devices under its control as of December 17, 2025. The botnet’s author has demonstrated a particular interest in Brian Krebs, leaving related “easter eggs” within the botnet’s code.
Looking Ahead
KrebsOnSecurity will continue to provide in-depth coverage of emerging cybersecurity threats and hold malicious actors accountable. Readers are encouraged to support the site’s perform by whitelisting its domain in their ad blockers.