Security
OpenAI reveals analytics data breach, notifies affected users
OpenAI has confirmed a security incident involving a third-party analytics provider, Mixpanel, which resulted in the exposure of limited user data associated with its API platform. It’s not our fault, the company said. However, it’s not that simple.
Read more about OpenAI reveals analytics data breach, notifies affected users
Hackers hijack US radio stations, listeners subjected to "obscene" messages, fake alerts (VIDEO)
The FCC is warning US radio stations to secure their broadcasting equipment after a string of hacking incidents this week took over live airwaves in Virginia and Texas, subjecting listeners to profanity-laced audio and fake emergency alerts.
Read more about Hackers hijack US radio stations, listeners subjected to "obscene" messages, fake alerts (VIDEO)
Asus urges immediate updates: patches released for millions of computers, routers
Asus has patched a highly severe privilege escalation vulnerability in the MyASUS software, which is common on all company computers, potentially affecting millions of users worldwide.
Read more about Asus urges immediate updates: patches released for millions of computers, routers
Spying on your kids can backfire: hackers claim massive breach of parental apps
SecureTeen, a popular parental app with millions of downloads on the Google Play Store, has been compromised by hackers, who claim to have stolen over a million sensitive records.
Read more about Spying on your kids can backfire: hackers claim massive breach of parental apps
Everest claims Iberia, boasts ability to edit bookings, asks for $6M
Six million dollars – that’s how much the Everest ransomware gang wants Iberia, the Spanish airline, to pay if it doesn’t want the stolen data to be sold to third parties. Crucially, the trove seems to include fully editable booking information.
Read more about Everest claims Iberia, boasts ability to edit bookings, asks for $6M
People who fall for this simple scam lose over $50K: beware of bank impersonators
Cybercriminals are impersonating financial institutions, creating malicious websites, and manipulating them to appear at the top of search results, ultimately compromising user accounts and causing devastating financial losses to victims.
Read more about People who fall for this simple scam lose over $50K: beware of bank impersonators
Android fiction apps expose millions of readers and writers
An unsecured server has exposed 100 million data records of readers and writers using some of the internet’s largest fiction apps.
Read more about Android fiction apps expose millions of readers and writers
How to set up your iPhone and Android for maximum security, according to CISA
Raging spyware and social engineering attacks have prompted the Cybersecurity and Infrastructure Security Agency (CISA) to update its definitive guidance for iPhone and Android users to protect against sophisticated threats.
Read more about How to set up your iPhone and Android for maximum security, according to CISA
Fine art printing users’ bank accounts exposed, attackers claim
Pixtura, an Italy-based fine art printing service provider, was allegedly breached by attackers claiming to have stolen thousands of bank account numbers and ID documents.
Read more about Fine art printing users’ bank accounts exposed, attackers claim
Everest claims Travel Club, Spain’s largest coalition loyalty program
Air Miles España, a company operating Travel club, a well-known coalition loyalty platform, has reportedly fallen victim to a ransomware attack by the Everest group.
Read more about Everest claims Travel Club, Spain’s largest coalition loyalty program
Germany encourages enabling of 2FA by default for webmail providers
The Bundesamt für Sicherheit in der Informationstechnik (BSI), Germany’s cybersecurity agency, argues that providers of email services should enable two-factor authentication (2FA) by default, rather than leaving this up to their users.
Read more about Germany encourages enabling of 2FA by default for webmail providers
Shai-Hulud supply chain attacks back with a vengeance, impacting 28k GitHub repositories
The Shai-Hulud supply chain attack campaign, already responsible for compromising hundreds of CrowdStrike’s NPM packages in September, is back with a vengeance, according to a new warning by cybersecurity firm Aikido.
Read more about Shai-Hulud supply chain attacks back with a vengeance, impacting 28k GitHub repositories
Hackers target WhatsApp, Signal apps with spyware, compromising personal devices, CISA warns
Threat actors have been on a tear, using encrypted messaging apps like WhatsApp and Signal to deliver spyware and phishing attacks – all to compromise the personal devices of high-profile individuals, from government officials to non-profit CEOs.
Read more about Hackers target WhatsApp, Signal apps with spyware, compromising personal devices, CISA warns
Increased security and employee productivity: Why are more companies going with passwordless authentication?
Increased employee productivity is one of the “perks” of passwordless authentication.
Read more about Increased security and employee productivity: Why are more companies going with passwordless authentication?
Crooks breach major US contractor, Amazon data center plans for sale
A threat actor is claiming to have breached Cooper Steel Fabricators, a major Tier-1 structural steel fabricator based in the US. A “complete mirror” of the company’s FTP server has been listed for sale.
Read more about Crooks breach major US contractor, Amazon data center plans for sale
Customer data from Wall Street banks breached, JPMorgan and Citi affected
A hacker attack on SitusAMC, a popular vendor for elite Wall Street banks, may have exposed JPMorgan, Morgan Stanley, Citi, and other financial institutions’ customer details.
Read more about Customer data from Wall Street banks breached, JPMorgan and Citi affected
Another major airline hacked, customer data exposed
Another day, another airline hit. This time, it’s the Spanish flag carrier Iberia notifying customers of a data security incident, allegedly caused by a compromise at one of its suppliers.
Read more about Another major airline hacked, customer data exposed
FCC rolls back ISP cybersecurity rules despite looming threat from China-linked hackers
The Federal Communications Commission (FCC) has rolled back several security measures for internet service providers (ISPs). These measures were implemented after Chinese hackers successfully gained access to ISP networks for several months.
Read more about FCC rolls back ISP cybersecurity rules despite looming threat from China-linked hackers
Millions of Americans exposed after automotive platform breach, hackers say
Cybercrooks claimed an attack on Revolution Parts, alleging they have siphoned details of over 5 million of the company’s customers, including their emails and IP addresses.
Read more about Millions of Americans exposed after automotive platform breach, hackers say
North Korea now targeting applicants to major US AI and crypto firms, and there’s a twist
North Korean agents have created a fake job-application platform picking out applicants to major US AI and crypto firms, researchers said in a new report. Pyongyang has been at it for years, of course, but this time, there’s a catch.
Read more about North Korea now targeting applicants to major US AI and crypto firms, and there’s a twist
