Let’s Encrypt has revealed that over one million of its HTTPS certificates containing a bug in its automatic validation code will not be revoked by the March 5 deadline, despite being non-compliant. The free TLS certificate organization discovered the flaw

J.Crew has informed customers that their accounts and personal information may have been compromised by an unauthorized third party, in what appears to be a credential stuffing attack. The popular US clothing retailer claimed the hacker obtained customer usernames and

A critical zero-day vulnerability that affected Verisign and multiple IaaS services companies such as Google, Amazon and DeigitalOcean let attackers register t homograph domain names ( .com and .net). Successfully register these Homograph domains looks like the same well-known domains,

A Chinese security firm revealed a shocking report that says, the U.S based Central Intelligence Agency (CIA) has continuously launched a cyber attack on China between 2008- 2019. In these 11 years of period, the CIA targets several industries in

For the first time in cybercrime’s history, more attacks have been waged against mobile devices than have been hurled at desktops. This seminal shift in attack strategy was recorded by researchers at LexisNexis Risk Solutions during the creation of their

Two cruise lines operated by Carnival Corp have fallen victim to a cyber-attack. Carnival announced on Monday that Princess Cruises and the Holland America Line had both been hit by cyber-criminals in late May last year. Investigations into the incident

The UK’s National Cyber Security Centre (NCSC) has been forced to issue new guidance on how smart home users can protect their connected cameras from being hijacked. The public-facing GCHQ body warned that live feeds from such cameras, and smart

Let’s Encrypt is going to revoke over 3 million certificates today due to a flaw in the software used to verify users and their domains before issuing a certificate. Let’s Encrypt certificate authority (CA) is going to revoke over 3

UK supermarket giant Tesco is issuing 600,000 customers with new loyalty cards after some accounts were compromised by an unauthorized third party. Although Tesco’s own IT systems were not compromised, it’s believed the hackers used a combo list of breached

A UK-based fintech was hit by a “sophisticated” cyber-attack last month, compromising the payment information and personal details of its customers. The firm, which helps customers improve their credit score by taking out and repaying loans with it, revealed the

Chinese security firm Qihoo 360 revealed that the US CIA has hacked Chinese organizations in various sectors for the last 11 years. Chinese security firm Qihoo 360 is accusing that the US Central Intelligence Agency (CIA) of having hacked Chinese organizations for the last

Google patches a critical vulnerability with MediaTek rootkit chips that affect millions of devices with chipsets from MediaTek. MediaTek is a large Taiwanese chip design company that provides chips for wireless communications, High-definition television, and devices like smartphones and tablets.

As the value of data increases, those with top-level access are fast becoming the target of choice. Here’s how, why, and what to do about it… In the digital era, data is big business. Recent studies have shown that just

The operators behind the Nemty ransomware set up a data leak site to publish the data of the victims who refuse to pay ransoms. Nemty ransomware first appeared on the threat landscape in August 2019, the name of the malware comes after the

An aerospace and industrial manufacturer has become the latest firm to have sensitive internal documents published online by ransomware attackers. Visser Precision, which makes parts for Tesla and SpaceX as well as defense contractors Boeing and Lockheed Martin, was hit

Researchers observed a new wave of infamous Trickbot Malware campaign via a dozen of malicious documents and infect the Windows users by abusing Remote Desktop ActiveX Control. TrickBot is one of the top modular banking malware that primarily targets financial