Tag: Featured

January 4, 2023

In April 2021, Dutch supermarkets faced a food shortage. The cause wasn’t a drought or a sudden surge in the demand for avocados. Rather, the reason was a ransomware attack. In the past years, companies, universities, schools, medical facilities and […]

January 4, 2023

A new phishing campaign has been discovered targeting cybersecurity professionals and hacking aficionados with the idea of stealing their cryptocurrency and obtaining sensitive identity(opens in new tab) information. At the center of this attack is Flipper Zero – a portable […]

January 3, 2023

Huawei smartphones and other devices ran Android until 2019, when the US government barred American companies from selling software and technology to the Chinese firm. Later that year, Huawei unveiled its new HarmonyOS operating system, which works on a wide […]

January 3, 2023

Financial and insurance sectors in Europe have been targeted by the Raspberry Robin worm, as the malware continues to evolve its post-exploitation capabilities while remaining under the radar. “What is unique about the malware is that it is heavily obfuscated […]

December 29, 2022

A regional community healthcare system consisting of several facilities, LCMHS identified the cyberattack on October 25 and started informing the impacted patients of the incident on December 23. In a notification on its website, LCMHS says that ‘an unauthorized third […]

December 28, 2022

North Korean state-sponsored threat actors have been observed using ransomware against companies and organizations in neighboring South Korea for the first time, police have reported. According to the South China Morning Post, the South Korean National Police Agency said threat […]

December 28, 2022

The third quarter of 2022, APWG observed 1,270,883 total phishing attacks — is the worst quarter for phishing that APWG has ever observed. The total for August 2022 was 430,141 phishing sites, the highest monthly total ever reported to APWG. […]

December 27, 2022

A Chicago construction and engineering firm that designs power grids is telling consumers it detected “unauthorized activity” that resulted in the theft of names and Social Security numbers. According to a report by CNN, a memo distributed to members of […]

December 27, 2022

Meta Platforms, the parent company of Facebook, Instagram, and WhatsApp, has agreed to pay $725 million to settle a long-running class-action lawsuit filed in 2018. The legal dispute sprang up in response to revelations that the social media giant allowed […]

December 21, 2022

At a surface level, APIs help businesses to connect applications and share data with one another. This creates an easier, more seamless experience for customers and users. If you have ever used your Google account to log into multiple sites […]

December 20, 2022

The Russia-linked Gamaredon group attempted to unsuccessfully break into a large petroleum refining company within a NATO member state earlier this year amid the ongoing Russo-Ukrainian war. The attack, which took place on August 30, 2022, is just one of […]

December 20, 2022

Microsoft has disclosed details of a now-patched security flaw in Apple macOS that could be exploited by an attacker to get around security protections imposed to prevent the execution of malicious applications. The shortcoming, dubbed Achilles (CVE-2022-42821, CVSS score: 5.5), […]

December 19, 2022

Google has become the latest company to roll out an encryption upgrade, revealing it Gmail email service is set to get full end-to-end encryption (E2EE) support, but not all users will be able to get it. In an update on […]

December 19, 2022

A Rust variant of a ransomware strain known as Agenda has been observed in the wild, making it the latest malware to adopt the cross-platform programming language after BlackCat, Hive, Luna, and RansomExx. Agenda, attributed to an operator named Qilin, […]

December 14, 2022

It’s the most wonderful time of the year, but that sadly doesn’t mean that cyberthreats are any less prevalent. This Christmas, hackers and scammers will be looking to capitalise on the latest threats to find an angle that may let […]

December 13, 2022

The social media giant revealed in August that a vulnerability patched in January was exploited to obtain user data before a fix was rolled out. The admission came following reports that the flaw had been exploited to collect data on […]

December 13, 2022

Veracode has acquired Crashtest Security to enhance the existing DAST capabilities available as part of Veracode’s Continuous Software Security Platform and broaden customer access globally. Web applications are fast becoming the most exploited attack vector for cyber threat actors looking […]

December 12, 2022

Targeting Windows computers, these are typical ransomware families that encrypt victim files and demand a ransom payment in exchange for a decryption key. This new ransomware has been used in an increasing number of attacks. Aerst was seen appending to […]

December 12, 2022

A high-risk stack overflow vulnerability (CVE-2022-20968) may allow attackers to DoS or possibly even execute code remotely on Cisco 7800 and 8800 Series IP phones, the company has confirmed. Cisco‘s PSIRT is also aware that proof-of-concept exploit code is available […]

December 7, 2022

Bitwarden has unveiled a new passwordless authentication feature that makes it easier and faster for users to access their Bitwarden vaults. This latest announcement reinforces the Bitwarden commitment to help customers protect sensitive information at every point of their passwordless […]