Security
Microsoft Office alternative Euro-Office could be vulnerable to Russian modifications
Euro-Office is being launched as Europe’s answer to Microsoft Office and Google Docs to reduce reliance on US tech. Yet it could be vulnerable to Russian modifications, according to Cybernews analysis.
Read more about Microsoft Office alternative Euro-Office could be vulnerable to Russian modifications
Hackers hijack Microsoft packages to steal developer logins
Security researchers have discovered credential-stealing malware in dozens of Microsoft open-source software packages.
Read more about Hackers hijack Microsoft packages to steal developer logins
10 million Discord users named in data breach report nobody can explain
A newly filed data breach notice claims more than 10 million Discord users may have been affected, reigniting concerns of a data breach. However, the report that the authorities published looks suspicious.
Read more about 10 million Discord users named in data breach report nobody can explain
Data from 35M OkCupid users leaked online, hackers claim everyone’s exposed
Attackers claim that they gained “privileged access” to the dating site, which allowed them to steal personal information from every single user on the OkCupid platform.
Read more about Data from 35M OkCupid users leaked online, hackers claim everyone’s exposed
A giant Instagram phone number database just surfaced. Should you be worried?
Cybercriminals are distributing phone numbers of Instagram users in a massive dataset, that may turn years-old leaks into a fresh Instagram account takeover.
Read more about A giant Instagram phone number database just surfaced. Should you be worried?
Hidden camera found in ceiling of government building renews UK’s spying fears
A hidden camera discovered inside a UK building in central London has triggered a security investigation and renewed concerns about espionage risks targeting British institutions.
Read more about Hidden camera found in ceiling of government building renews UK’s spying fears
US says major Chinese tech giants like Alibaba are supporting China’s military
The US on Monday added Chinese e-commerce giant Alibaba, internet search provider Baidu, and automakers BYD and Nio to a list of companies it believes are aiding Beijing's military, in a move that could inflame tensions between the countries.
Read more about US says major Chinese tech giants like Alibaba are supporting China’s military
Qilin ransomware claims hack of major New York/New Jersey Shipping Association
The Qilin ransomware gang on Monday claims to have hacked the Shipping Association of New York & New Jersey (SANYNJ), a major maritime industry group responsible for cargo movements at one of North America’s busiest ports.
Read more about Qilin ransomware claims hack of major New York/New Jersey Shipping Association
Meta escalates legal battle with Israeli spyware firm NSO over WhatsApp attacks
Meta said on Monday it is filing a federal court contempt order against Israeli spyware firm NSO Group for violating a permanent injunction that barred it from ever targeting WhatsApp and its users.
Read more about Meta escalates legal battle with Israeli spyware firm NSO over WhatsApp attacks
ShinyHunters dump 400K BCD Travel customers data online
Ransomware extortion group ShinyHunters published the personal information of approximately 396,000 customers of Dutch business travel agency BCD Travel on the dark web in a recent extortion campaign. This move follows the travel company’s failure to meet the attackers’ ransom deadline.
Read more about ShinyHunters dump 400K BCD Travel customers data online
Dark web drug vendor gets 26 years for selling fentanyl and meth
A man from California has been sentenced to 26 years in federal prison for trafficking drugs via a marketplace on the dark web called “Nemesis Market.”
Read more about Dark web drug vendor gets 26 years for selling fentanyl and meth
Belgian banks must reimburse phishing victims as soon as they report a loss, judge says
In Belgium, banks will now be required to immediately compensate victims of phishing attacks for the damages they suffer. Lawyers are calling this a “groundbreaking” precedent.
Read more about Belgian banks must reimburse phishing victims as soon as they report a loss, judge says
Hackers publish hundreds of thousands of Salesforce records from Baker Distributing
A ransomware group has posted company data belonging to US distributor Baker Distributing on its leak site. The data includes hundreds of thousands of Salesforce and SharePoint records that expose employees, clients, and internal operations.
Read more about Hackers publish hundreds of thousands of Salesforce records from Baker Distributing
Leaked aircraft maintenance files spark security fears after alleged Avcon hack
A Russia-linked ransomware group has claimed responsibility for an attack on the European aviation firm Avcon after publishing alleged internal documents on the dark web, raising fresh concerns about aviation security.
Read more about Leaked aircraft maintenance files spark security fears after alleged Avcon hack
Hackers getting an easy ride: misconfigured cloud settings behind growing number of data breaches
The Dutch National Cyber Security Centre (NCSC) is warning organizations that cloud misconfigurations are increasingly leading to data breaches. The conclusion has been drawn after reviewing multiple incidents in recent months where improperly configured systems exposed sensitive information to malicious actors.
Read more about Hackers getting an easy ride: misconfigured cloud settings behind growing number of data breaches
California tech CEO busted for selling forbidden US technology to Iran’s nuclear agency
A California tech CEO with dual US-Iranian citizenship has been arrested for secretly funneling millions of dollars’ worth of US networking and encryption technology to Iran’s nuclear and defense ministries in a sophisticated sanctions-evasion scheme dating back to 2011.
Read more about California tech CEO busted for selling forbidden US technology to Iran’s nuclear agency
US lawmakers push new bill on AI safety, state law limits, worker protections
US House lawmakers on Thursday are proposing AI legislation that would keep advanced AI model development under Washington’s control – all while preempting state laws attempting to regulate the technology, including those laws already on the books.
Read more about US lawmakers push new bill on AI safety, state law limits, worker protections
Chinese spies offer freelancers lucrative side hustles via job networks in hunt for secrets, agencies warn
Five Eyes intelligence agencies say Chinese spies are posing as recruiters on job platforms, using paid research assignments, encrypted messaging apps and cryptocurrency payments to lure targets with access to sensitive information.
Read more about Chinese spies offer freelancers lucrative side hustles via job networks in hunt for secrets, agencies warn
Curl creator who called Mythos a “PR stunt” says AI will not take human jobs, but might kill bug bounties
Curl receives a new AI-generated vulnerability report every 18 hours, and most are accurate. That's the problem.
Read more about Curl creator who called Mythos a “PR stunt” says AI will not take human jobs, but might kill bug bounties
Ultrahuman data breach exposes user info via internal tool
Wearables maker Ultrahuman has informed customers of a data breach after discovering unauthorized access to its systems.
Read more about Ultrahuman data breach exposes user info via internal tool
