People in the UK are being targeted by a new phishing scam designed to trick victims into handing over details of their HSBC bank account. The scam, discovered by litigation specialists Griffin Law, begins with a bogus text message that

Attackers are creating fake links for the video-sharing application TikTok, which contain malware to capture user’s data. According to Money Control, police in India have issued a warning about TikTok links, after links were sent through WhatsApp and SMS. The

The Joker malware detected in early June 2019, it employs several tactics to bypass GooglePlay protection and to perform several malicious activities. The malware used to hide inside different apps and once users downloaded to the phone they got infected

The privacy regulators of the UK and Australia have announced a joint investigation into controversial facial recognition firm Clearview AI. “The Office of the Australian Information Commissioner (OAIC) and the UK’s Information Commissioner’s Office (ICO) have opened a joint investigation

Security researchers are warning of a new phishing campaign that uses malicious emails from legitimate SurveyMonkey domains in a bid to bypass security filters. The phishing emails in question are sent from a real SurveyMonkey domain but crucially have a

Palo Alto Networks addressed a new severe vulnerability in the PAN-OS GlobalProtect portal that impacts PAN next-generation firewalls. Recently Palo Alto Network addressed a critical vulnerability, tracked as CVE-2020-2021, affecting the PAN-OS operating system that powers its next-generation firewall. The flaw could

A number of inactive websites have been compromised and are redirecting visitors to unwanted URLs, many of which are malicious. This is according to a new study by Kaspersky, which uncovered over 1000 inactive domains that send users to second-hand

New research indicates that more than 15 billion username and passwords are circulated on the dark web. This exposed credentials would result in account compromise. Account Takeover (known as ATO) is a malicious activity in which attackers take over legitimate

New research has found that the British public are in favor of increased regulation and more accountability in the field of Artificial Intelligence (AI). An independent survey of 2,000 adults in the UK by AI firm Fountech.ai discovered that 64%

Malicious bot mitigation and detection company BotRx has announced the appointment of cybersecurity veteran Peter Christou as its new EVP of global sales to lead the firm’s expansion into EMEA and other global markets. US-based BotRx uses moving target defense

Citrix patched 11 security flaws with Citrix ADC, Citrix Gateway, and Citrix SD-WAN WANOP edition. Out of that four bugs can be exploited by an unauthenticated, remote attacker. Successful exploitation of the attack leads to an unauthenticated attack to the

An unsecured Elasticsearch database has been leaking data on millions of global gambling app users, according to researchers at vpnMentor. The group discovered the unsecured database hosted on AWS as part of a broader web mapping project. It was quickly

The North American arm of a Portuguese energy giant has confirmed that it was also affected by a data-stealing ransomware attack on the firm earlier this year. The filing with Vermont’s Attorney General’s Office (AGO) last week doesn’t add a

Security researchers have uncovered a Magecart group that has infected over 570 e-commerce sites around the world over the past three years, enhancing its scale and sophistication over this time. The “Keeper” group was identified and named by Gemini Advisory

Cerberus Android banking malware found on Google play targeting Android users, particularly in Spain. Cerberus spotted first in the year 2019, it is known for stealing various sensitive information. It is capable of stealing of logging all keystrokes and stealing

UK cyber-startups have raised GBP496m in funding during the first half of 2020, already close to eclipsing the record GBP521m invested in these companies last year, according to the London Office for Rapid Cybersecurity Advancement (LORCA)’s new study, The LORCA