Security
Hackers target online shoppers in new Adobe e-commerce malware campaign
A new malware campaign that steals payment information from online shoppers is discovered lurking in dozens of e-commerce sites that use Adobe’s Magento platform, Malwarebytes said.
Read more about Hackers target online shoppers in new Adobe e-commerce malware campaign
Google Cloud leak linked to Shark Tank contestant exposes 83,000
A leaking Google Cloud Storage bucket linked to Alice’s Table, a Shark Tank contestant offering virtual floral arrangement classes, has exposed the personal data of over 83,000 customers.
Read more about Google Cloud leak linked to Shark Tank contestant exposes 83,000
Security flaws in Dahua cameras being actively exploited, CISA warns
The US Cybersecurity and Infrastructure Security Agency (CISA) has warned about two critical vulnerabilities affecting Dahua IP cameras and related products.
Read more about Security flaws in Dahua cameras being actively exploited, CISA warns
Android and iOS users targeted with novel banking app phishing campaign
It looks just like a banking app, but it’s actually a malicious website. Threat actors are bypassing iOS and Android defenses in novel ways, with a new campaign affecting users in Eastern Europe.
Read more about Android and iOS users targeted with novel banking app phishing campaign
Donating to your political party could cost you, cyber experts warn
Online political donation sites have become a prime target for cybercrooks looking to take advantage of US voters who throw money at their favorite candidates, a new DataDome report warned on Tuesday.
Read more about Donating to your political party could cost you, cyber experts warn
Prominent Jewish rabbi targeted by Iranian phishers masquerading as podcasters
Iranian threat actor TA453, known for going to great lengths in its spear-phishing campaigns, recently attempted to target a well-known religious figure in Israel. They set up a trap by inviting the rabbi to join a podcast about “Jewish life in the Muslim world.”
Read more about Prominent Jewish rabbi targeted by Iranian phishers masquerading as podcasters
Al-Anon member details and chats exposed in data breach
Sensitive information, including full names, encrypted passwords, emails, phone numbers, and private chats of members of Al-Anon, a support group for the friends and families of alcoholics, has been exposed in a recent data breach.
Read more about Al-Anon member details and chats exposed in data breach
Macs in danger due to vulnerabilities in Microsoft Office apps
Six Microsoft applications on macOS are vulnerable to outside hackers, security researchers at Cisco Talos have discovered. Attackers can exploit flaws to access sensitive information, send emails, and record video and audio without any user interaction.
Read more about Macs in danger due to vulnerabilities in Microsoft Office apps
Russian hackers under the spotlight: 4000 malicious domains, IPs revealed
Researchers have dealt a significant blow to the notorious Russian cyber gang FIN7, exposing a network of over 4,000 malicious domains and dozens of IP addresses across Russia and Estonia.
Read more about Russian hackers under the spotlight: 4000 malicious domains, IPs revealed
OpenAI bans Iran ChatGPT accounts for generating fake US election content
Iranian accounts using ChatGPT to generate false content about US elections and other world events were kicked off the platform, the chatbot’s creator OpenAI said on Friday.
Read more about OpenAI bans Iran ChatGPT accounts for generating fake US election content
National Public Data confirms breach affecting Social Security numbers of nearly all Americans
National Public Data (NPD), a background check and personal lookup company, has acknowledged that it was breached. Hackers have been disseminating 2.7 billion records for free, including names, Social Security numbers, addresses, and other personal information.
Read more about National Public Data confirms breach affecting Social Security numbers of nearly all Americans
Pre-installed app on millions of Pixel devices is making them vulnerable to attack
The potential vulnerability made Palantir Technologies switch from Pixel to iPhone devices.
Read more about Pre-installed app on millions of Pixel devices is making them vulnerable to attack
Cybercrime consolidation: the big fish are getting bigger
In the first half of 2024, cybercriminals grabbed $16.7 billion of illicit funds, marking a 20% drop from last year and the fourth consecutive decline year-over-year. Despite that, the big players are thriving.
Read more about Cybercrime consolidation: the big fish are getting bigger
TP-Link routers made in China are national security risk, US lawmakers say
US lawmakers are calling for an investigation into routers manufactured by Chinese-owned TP-Link Technologies and sold in the US – over concerns the company’s WiFi devices can be used by China to launch state-sponsored hacking campaigns.
Read more about TP-Link routers made in China are national security risk, US lawmakers say
Data of more than half of Chile’s population exposed in massive leak
Caja Los Andes, Chile’s largest pension and social security fund, has exposed the sensitive data of half of the country’s population, Cybernews researchers have found.
Read more about Data of more than half of Chile’s population exposed in massive leak
New email phishing campaign targets Russian dissidents worldwide
Russian intelligence-backed hackers have launched a new email phishing campaign targeting critics of the Kremlin around the world, according to new research by digital rights groups Citizen Lab and Access Now..
Read more about New email phishing campaign targets Russian dissidents worldwide
More hackers want to bite Apple: new malware in high demand
With a rising market share, macOS devices are increasingly being targeted by cybercrime gangs. Intel 471, a cyber threat intelligence company, has observed more than 40 threat actors interested in malware and other exploits.
Read more about More hackers want to bite Apple: new malware in high demand
There’s a new ransomware gang on the block, and it’s exploiting the human element
A new threat actor dubbed "Mad Liberator” appeared in mid-July and is already stirring trouble for companies. According to researchers, the ransomware gang relies on social engineering tactics and sometimes doesn’t even bother to encrypt the data after it’s been stolen.
Read more about There’s a new ransomware gang on the block, and it’s exploiting the human element
Bob and Maria most breached male, female names
If your name is Bob or Maria, double-check your email security. A new study has found that these are the top two most commonly breached male and female names.
Read more about Bob and Maria most breached male, female names
Americans’ personal data posted online for free: over 2.7 billion records leaked
Millions of Americans' personal records, stolen from National Public Data (NPD), a background check and the personal lookup company, have appeared on illicit web forums for free. Experts warn that exposed Social Security numbers can lead to an increase in cybercrime, such as phishing and fraud.
Read more about Americans’ personal data posted online for free: over 2.7 billion records leaked