Security
Russian hackers target US and allies to disrupt Ukraine aid, warns NSA
State-sponsored hackers from the Russian military intelligence service GRU have been carrying out cyberattacks on armed forces, departments, and companies in Western countries since 2022. The main objective was to disrupt aid efforts to Ukraine.
Read more about Russian hackers target US and allies to disrupt Ukraine aid, warns NSA
Multiple French govt institutions’ emails, passwords exposed, hackers claim
Multiple emails and passwords attributed to numerous France-based organizations and institutions were posted on a dark web forum run by a prominent ransomware cartel.
Read more about Multiple French govt institutions’ emails, passwords exposed, hackers claim
US votes to bar Chinese labs deemed security risks from testing US electronics
The Federal Communications Commission (FCC) voted on Thursday (4-0) to finalize rules barring Chinese labs deemed risks to US national security from testing electronic devices such as smartphones, cameras, and computers for use in the United States.
Read more about US votes to bar Chinese labs deemed security risks from testing US electronics
Major data leak exposed 184M Facebook, Snapchat, Roblox logins and passwords
The unprotected database contained tens of millions of account credentials, exposing Microsoft products, access to multiple social media and banking platforms. The database was most likely owned by cybercriminals, and the data was stolen.
Read more about Major data leak exposed 184M Facebook, Snapchat, Roblox logins and passwords
iOS sleep management app leaked personal user details online
An iPhone app to battle insomnia, Sleep Journey: Insomnia Helper, exposed tens of thousands of users, revealing their names, alcohol habits, and other private data.
Read more about iOS sleep management app leaked personal user details online
Coca-Cola data breach exposes company employees - hackers
Nearly a thousand soft drink makers’ employees had their details exposed alongside confidential internal documents, the ransomware gang behind the alleged breach claims.
Read more about Coca-Cola data breach exposes company employees - hackers
Lumma malware threat disrupted as DOJ and Microsoft takedown over 2300 malicious domains
The US Justice Department and Microsoft on Wednesday announced the takedown of over 2300 malicious domains, disrupting the central infrastructure of one of the most popular info-stealing malware tools used by cybercriminals today – the LummaC2 Infostealer.
Read more about Lumma malware threat disrupted as DOJ and Microsoft takedown over 2300 malicious domains
Hackers claim Godzilla creator breach, researchers think otherwise
The company behind the recent Oscar winner Godzilla Minus One, Toho, was posted on a dark web site cybercriminals use to showcase their latest victims.
Read more about Hackers claim Godzilla creator breach, researchers think otherwise
Hackers advertise fake AI video generator on Facebook – users get malware
Cybercriminals are running malicious campaigns revolving around generative artificial intelligence (AI) services. Fraudulent websites impersonate the generative video service, Kling AI, by running fake ads on Facebook. When users try to generate content, they download malware instead.
Read more about Hackers advertise fake AI video generator on Facebook – users get malware
Near record DDoS attack hits KrebsOnSecurity – blog withstands it
KrebsOnSecurity, a blog covering cybersecurity, has experienced a near-record distributed denial of service (DDoS) attack, reaching a 6.3 terabit per second data rate.
Read more about Near record DDoS attack hits KrebsOnSecurity – blog withstands it
Major Facebook data leak reveals 1.2 billion user records, hacker claims
A massive 1.2 billion user record database was scraped from the Meta-owned Facebook by abusing one of the social media platform‘s APIs.
Read more about Major Facebook data leak reveals 1.2 billion user records, hacker claims
This is how much money you should keep in your pocket in case of a cyberattack
What if the payment system is down and payment terminals aren’t working? How much cash should you have in your pocket when this scenario occurs? De Nederlandsche Bank (DNB), commercial banks, consumer organizations, retail associations, the Dutch Ministry of Finance, and other institutions united in the National Forum on the Payment System (NFPS) have the answer.
Read more about This is how much money you should keep in your pocket in case of a cyberattack
Hundreds of passport applications exposed at diplomatic institution
Half a thousand passport applications exposed at the Libyan Consulate in Stockholm left an unprotected instance accessible to the public.
Read more about Hundreds of passport applications exposed at diplomatic institution
American student housing developer breached, hackers claim
Landmark Properties, a real estate developer with over $15 billion in assets under management, allegedly had its systems breached, with cybercriminals claiming to have stolen over a terabyte of data.
Read more about American student housing developer breached, hackers claim
Coinbase reveals almost 70K customers affected in data breach
Coinbase says 69,461 customers were affected by a data breach caused by insider wrongdoing. The data thieves have been abusing access to the company’s systems since December 26th last year.
Read more about Coinbase reveals almost 70K customers affected in data breach
Companies are increasingly limiting access to AI tools: millions of DNS queries blocked
Companies are increasingly disrupting traffic to generative artificial intelligence (AI) tools so that their employees cannot reach Notion, ChatGPT, Claude, or other assistants. DNSFilter, a protected Domain Name System (DNS) service, said it has already blocked 60 million visits.
Read more about Companies are increasingly limiting access to AI tools: millions of DNS queries blocked
Over 100 malicious Chrome extensions detected: disguised as AI tools, VPNs, and crypto utilities
In over a year, a single cybercriminal spawned over 100 fake malicious Chrome extensions with dual functionalities, capable of tracking users and stealing their access tokens. The hacker bypasses Google’s defenses by injecting malicious scripts remotely, after the extension is installed.
Read more about Over 100 malicious Chrome extensions detected: disguised as AI tools, VPNs, and crypto utilities
Retailer Tesco, Aldi’s supplier, hit with ransomware
Peter Green Chilled, a UK-based logistics firm working with major retailers Tesco, Aldi, and Sainsbury’s, had some of its systems encrypted, not a month after the devastating cyberattack on Marks & Spencer.
Read more about Retailer Tesco, Aldi’s supplier, hit with ransomware