Security
Hugging Face partners with Wiz on AI security
Cybersecurity firm Wiz partners with Hugging Face to patch up vulnerabilities in the AI cloud provider’s architecture that could have put its customer data at risk.
Read more about Hugging Face partners with Wiz on AI security
Parental control app exposes live GPS locations of kids on internet
KidSecurity, a popular parental control app, has leaked sensitive information about children for the second time, this time exposing GPS locations and private messages on minors’ devices.
Read more about Parental control app exposes live GPS locations of kids on internet
US cyber board faults Microsoft for Chinese hack of gov officials
A US Cyber Safety Review Board blames Microsoft for the 2023 Chinese hack of top US government officials' emails citing 'preventable' cybersecurity lapses and deliberate lack of transparency.
Read more about US cyber board faults Microsoft for Chinese hack of gov officials
Airlines apps might know more than you think
Cybernews research reveals that the most popular airline apps might have sensitive access to travelers' devices.
Read more about Airlines apps might know more than you think
YouTube being used to distribute malware
Information stealer malware is being delivered via YouTube in the guise of pirated software and video game cracks, cybersecurity firm Proofpoint warns.
Read more about YouTube being used to distribute malware
Cancer treatment center City of Hope breached, 827K people exposed
Cancer treatment and research organization the City of Hope has reported a data breach affecting 827,149 individuals, with their names, Social Security numbers, and medical records leaked.
Read more about Cancer treatment center City of Hope breached, 827K people exposed
PandaBuy data breach exposes 1.3 million people
Malicious threat actors claim to have breached PandaBuy, a popular global shopping platform for products from China. The hackers posted more than three million rows of data on an illicit forum, with researchers identifying 1.3 million unique accounts.
Read more about PandaBuy data breach exposes 1.3 million people
Cybercriminals selling new tool weaponizing Raspberry Pi
Threat actors have come up with a new solution called Geobox that transforms the mini-computer Raspberry Pi into a Swiss-army knife type of hacking device for fraudsters and other criminals.
Read more about Cybercriminals selling new tool weaponizing Raspberry Pi
Popular new-age spirituality platform leaks its followers' data
The email addresses of more than 270,000 spiritual healing seekers were made public due to cybersecurity neglect.
Read more about Popular new-age spirituality platform leaks its followers' data
Spyware vendors outpace state-sponsored actors in zero-day exploits
Commercial spyware vendors such as NSO Group, Intellexa, Candiru, and Cy4Gate were the most productive in discovering new exploits to target users on Windows, Android, iOS, and browsers on various machines. Google believes in expanding sanctions and restrictions on such companies.
Read more about Spyware vendors outpace state-sponsored actors in zero-day exploits
17,000+ Microsoft Exchange servers in Germany 'highly vulnerable'
At least 17,000, or 37%, of all Microsoft Exchange servers in Germany are highly vulnerable to cyberattacks, authorities have warned.
Read more about 17,000+ Microsoft Exchange servers in Germany 'highly vulnerable'
European cyber agency shares top ten threats: skill shortage on the rise
A skill shortage, vulnerable supply chains, and unpatched systems are among the ten cyber threats that will have the most impact by 2030, the European Union Agency for Cybersecurity (ENISA) foresees.
Read more about European cyber agency shares top ten threats: skill shortage on the rise
Cloudflare blocked 3.4 billion unwanted emails last year
That would be 9.3 million emails per day, 6,500 per minute, and 108 per second.
Read more about Cloudflare blocked 3.4 billion unwanted emails last year
Invasion of the infostealers: meet the malware stealing your cookies
Threat actors are leveraging a new tactic to help them access your credentials without knowing them already or launching a multi-factor authentication challenge.
Read more about Invasion of the infostealers: meet the malware stealing your cookies
Rent Go exposes over 160K customer passports, driver’s licenses
The Turkey-based car rental service left an open Azure Blob Storage, revealing hundreds of thousands of document images that customers submitted to use the company’s service.
Read more about Rent Go exposes over 160K customer passports, driver’s licenses
Shopify plugins leaked data from nearly 2K stores
A vast amount of sensitive data of unsuspecting shoppers was exposed to threat actors by the e-commerce giant’s plugin developer, with millions of orders being leaked.
Read more about Shopify plugins leaked data from nearly 2K stores
Privacy consultant convicted of cyberstalking
A federal jury has convicted a former computer privacy consultant from Seattle for a cyberstalking campaign threatening sexual assault and other violence against multiple victims.
Read more about Privacy consultant convicted of cyberstalking
Alarming: researchers can fingerprint and block eight out of ten top VPN providers
OpenVPN, a widely used open-source VPN software for secure and private connections, can “be reliably detected and blocked at scale by network-based adversaries,” research has found.
Read more about Alarming: researchers can fingerprint and block eight out of ten top VPN providers
M-series Macs can leak secrets due to inherent vulnerability
A feature that makes Apple M-series processors faster also leaves them vulnerable to a new side-channel attack that cannot be patched, according to research. Hackers, in theory, could extract secret encryption keys and then access sensitive data.
Read more about M-series Macs can leak secrets due to inherent vulnerability
Millions of hotel doors vulnerable to attack, researchers find
Security researchers have discovered vulnerabilities in dormakaba’s Saflok electronic locks, which would allow hackers access to rooms and residences in a matter of seconds.
Read more about Millions of hotel doors vulnerable to attack, researchers find
