Security

Beware: someone’s trying to log in to your Facebook account
by  Justinas Vainilavičius
2
Users report receiving emails from a legitimate Facebook address with password recovery codes they did not ask for.
Read more
Facebook_password_1219

BMW dealer at risk of takeover by cybercriminals
by  Paulina Okunytė
By neglecting to set a password, a BMW dealer in India has jeopardized the entire network of car dealerships in the country and put its clients at risk.
Read more
bmw india

Info stealers and how to protect against them
by  Mantas Kasiliauskis
Info stealers, the type of malware with its purpose in the name, can cripple businesses and everyday users alike. So, how do you protect against them?
Read more
Info stealers

The latest malicious activity and how to deal with it
by  Mantas Kasiliauskis
Malware developers never rest. To cut through the noise, the Cybernews research team has looked at some recent malicious activity examples and analyzed them.
Read more
Malware

Data of over a million crypto exchange users exposed
by  Vilius Petkauskas
GokuMarket, a centralized crypto exchange owned by ByteX, left an open instance, revealing the details of virtually all of its users, the Cybernews research team has discovered.
Read more
GoKu market leak

Millions of Amazon reviews fake, study finds
by  Justinas Vainilavičius
Product reviews can be a deal breaker when shopping online, but many are fake, an analysis of over 33 million reviews on Amazon has shown.
Read more
amazon_reviews_1213

Major leak exposes users from Russian crypto exchanges
by  Ernestas Naprys
Customers at nine crypto exchanges in Russia have had their anonymity shattered, with private user data being exposed for more than two months now, the Cybernews Research team has discovered.
Read more
Russia crypto exchange breach

Attackers prey on leaked crypto leads
by  Mantas Kasiliauskis
While crypto leads are essential for businesses, attackers may use leaked crypto-related data to perform a variety of attacks.
Read more
Leaked crypto leads

Dubai’s largest taxi app exposes 220K+ users
by  Vilius Petkauskas
The Dubai Taxi Company (DTC) app, which provides taxi, limousine, and other transport services, left a database open to the public, exposing sensitive customer and driver data.
Read more
DTC app leak

Leaked nudes emerging as top cyber risk of 2024
by  Justinas Vainilavičius
Dark web forums are abuzz with discussions centering around nude images and videos leaked from platforms like OnlyFans and Instagram.
Read more
phone_hands_1207

Android barcode scanner app exposes user passwords
by  Vilius Petkauskas
An Android app with over 100k Google Play downloads and a 4.5-star average rating has let an open instance go unchecked, leaving sensitive user data up for grabs.
Read more
Barcode Scanner leak

Green Card Lottery agency exposes applicants’ data
by  Ernestas Naprys
Thousands of applicants for the Diversity Immigrant Visa Program, widely known as Green Card Lottery, got their private data leaked by the US GREEN CARD OFFICE LIMITED (USGCO), a limited liability company registered in the UK that helps to prepare the documents, the Cybernews research team has found.
Read more
Green card data leak

Adobe’s InDesign exploited in new wave of phishing attacks
by  Stefanie Schappert
Hackers are getting creative, literally, by utilizing Adobe’s popular graphic design program, InDesign, to target corporations in the latest surge of phishing attacks, new research shows.
Read more
Adobe Creative Cloud

Beware: predatory Android loan apps spy, harass, and blackmail users
by  Ernestas Naprys
Deceptive loan apps charging excessive interest rates can also be malicious. SpyLoan apps circumvent Google Play requirements to track their users’ data and then use it to blackmail them.
Read more
Fraudulent app

GST Invoice Billing Inventory exposes sensitive data to threat actors
by  Jurgita Lapienytė
A business accounting app for small and medium businesses with over 1M downloads has left a database open, exposing sensitive personal and corporate data up for grabs.
Read more
Android app

Russian state-sponsored hackers exploiting Outlook vulnerability, Microsoft warns
by  Ernestas Naprys
Microsoft is urging Outlook users to patch and update their systems to mitigate a new threat from Russia. Hackers associated with the Kremlin’s military intelligence agency GRU are exploiting the vulnerability to access victim’s emails.
Read more
Microsoft Outlook outage

The future of phone scams: bots that sound like your loved ones
by  Ernestas Naprys
Every fifth unknown call in the US is spam. Despite a meager success rate, millions fall victim to fraudsters due to the sheer volume of attempts. Now, scammers have a dangerous new innovation that will make them even more productive and convincing.
Read more
robocall

Bluetooth connections no longer private with new BLUFFS attacks
by  Ernestas Naprys
Bluetooth, a low-power wireless technology connecting our devices, has a new vulnerability to iron out. Attackers in the middle could easily snoop on your communications using a new BLUFFS attack.
Read more
Bluetooth

Hacktivism and its impacts on mental health
by  Jesse William McGraw
I get it. Like me, you’re wired in. Maybe your vice is social media or gaming. Perhaps you’re an Infosec researcher, or a hacker, or OSINT investigator. Whatever your function is, what began as a romance with technology ultimately evolves into a bitter love/hate relationship, taking a toll on your emotions and your overall psychological well-being.
Read more
Hacktivism mental health

Fortune-telling website exposes 13M+ user records
by  Vilius Petkauskas
WeMystic, a website on astrology, numerology, tarot, and spiritual orientation, left an open database exposing 34GB of sensitive data about the platforms' users.
Read more
WeMystic data leak