Archive
Speaking at Infosecurity ISACA North America Expo and Conference in New York, Marc Keating, senior sales engineer at Arctic Wolf Networks, outlined steps organizations can take to gauge whether or not they have suffered a data compromise. Keating said that
The anti-virus industry has teamed up with victim support groups in a new anti-stalkerware alliance focused on shutting down the malicious surveillance apps. The Coalition Against Stalkerware features Kaspersky, Norton, Avira, G Data and Malwarebytes alongside the Electronic Frontier Foundation
New malspam email campaign discovered with fake windows updater and its Builder, through which hackers launching Cyborg Ransomware to encrypt the compromised systems files. A spam email claims to be from Microsoft and email body urges the victims to Install
New data leak threatens the world of finance after the Panama Papers, hackers published 2TB of the Cayman National bank’s confidential data. The Cayman Islands are a fiscal paradise that attracts money of questionable origin from all over the world,
Ransomware accounted for over half of all malicious mailings in H1 2019, Troldesh aka Shade being the most popular tool among cybercriminals. Group-IB, a Singapore-based cybersecurity company: ransomware accounted for over half of all malicious mailings in H1 2019, detected
Android Camera Bug Let Hackers Spy on 100 Million+ Android Users Camera by Taking Video’s & Photo’s
Researchers discovered a critical vulnerability in the Android Camera app that allows hackers to remotely control the camera to take photos and/or record video using the malicious app without app permission. This Android camera vulnerability considers being a serious concern
PayMyTab Exposes Data of US Restaurant Goers
A mobile payments provider exposed the data of thousands of US restaurant goers for 16 months by failing to follow security protocols. PayMyTab didn’t change the security settings to “private” on an Amazon Web Services (AWS) S3 bucket that the
Macy’s Online Customers Hit by Magecart Breach
Macy’s is notifying some of its online customers that their card details have been skimmed as part of another Magecart data breach. According to the breach notice, the firm only found out about the incident around a week after it
A major ransomware attack on Louisiana state IT infrastructure yesterday forced multiple services offline, including government websites, email and internal applications. The incident was revealed by Louisiana governor John Bel Edwards in a series of tweets on Monday afternoon, local
Cybersecurity and technology firms have revealed plans to create 2,000 new jobs in Chicago, Illinois, next year. The encouraging news was revealed yesterday when representatives of 15 different businesses joined the Chicago mayor, Lori Lightfoot, to celebrate the city’s third
Macy’s has started notifying some of its customers that crooks used a software skimmer to steal their personal and financial information. Macy’s has started notifying some of its customers that discovered a software skimmer on its website used by crooks
Multi-Platform Malware ACBackdoor Attack Both Windows & Linux Users PC by Executing Arbitrary Code
Researchers discovered a previously undetected multi-platform malware called ACbackdoor that has both Linux and Windows Variant to infect the respective users and steal sensitive information. Dubbed ACbackdoor Linux variant has a completely no detection rate while the Windows variant has
Cybercriminals registered more than 100,000 look-alike domains that closely mimic the legitimate websites of popular retail websites. As the growth of e-commerce increases year after year attackers tend to register more malicious look-alike domains that aimed to steal customer sensitive
Hacked Disney+ Accounts on Sale for $1
Disney’s new video-on-demand streaming service has been compromised within a week of its being launched, with hacked Disney+ accounts offered for sale online for just $1. According to The Daily Dot, the hugely popular Disney+ service, which amassed over 10
Cyber security firm Venafi announced it has uncovered lookalikedomains with valid TLS certificates that appear to target major retailers. Venafi, Inc. is a private cybersecurity company that develops software to secure and protect cryptographic keys and digital certificates. Ahead of
Security experts are warning of a newly discovered phishing campaign targeting Office 365 administrators and using legitimate sender domains to bypass reputation filters. PhishLabs said it saw malicious emails being sent out as part of the campaign across a wide