The FTC enacts a ban against InMarket Media for selling consumers’ location data without consent, reinforcing privacy rights.
FTC Bans InMarket Media for Unauthorized Location Data Sale
read more
Data Breaches
Crypto Mining Malware Targets Docker Services
Cybercriminals exploit vulnerable Docker services, deploying cryptocurrency mining and traffic generation malware to hijack computer resources.
macOS Backdoors Hidden in Pirated Apps Expose Digital Security Risks
Experts discover macOS backdoors in pirated apps, posing serious digital security risks. Learn how to protect against these sophisticated cyber threats.
UNC3886 Exploits Critical VMware Vulnerability: CVE-2023-34048 Spotlighted
China-nexus group UNC3886 exploits critical VMware vCenter Server vulnerability CVE-2023-34048, impacting global cybersecurity.
Malicious ‘oscompatible’ Trojan Discovered in npm Registry
A sophisticated trojan named ‘oscompatible’ infiltrated the npm registry, highlighting the risks of deprecated packages in the open-source software ecosystem.
Researchers Uncover Critical PoS Terminal Vulnerabilities
A team of cyber forensics researchers exposed critical vulnerabilities in PAX Technology’s PoS terminals, crucial for safeguarding global banking transactions.
Iranian Hackers Pose as Journalists in Cyber Attacks Against Israel
Iranian hackers masquerade as journalists to penetrate Israeli networks, compounding the cyber warfare challenges amid ongoing Middle Eastern conflicts.
AndroxGh0st Botnet Threatens Cloud Credentials
The AndroxGh0st Botnet preys on cloud service credentials, compromising tens of thousands of devices globally.
Critical Security Flaws Hit Citrix, VMware, and Atlassian
Citrix, VMware, and Atlassian face critical vulnerabilities, urging users to apply patches for cybersecurity maintenance.
Taming the Cookie Privacy Monster with Reflectiz
Discover how Reflectiz is shaping the future of cookie consent and cybersecurity, offering proactive solutions for retail giants in the digital space.
Inferno Drainer Malware Heist Unmasked: How Cybercriminals Stole $87 Million
Unveiling the devious tactics of Inferno Drainer malware, which swindled $87 million by mimicking cryptocurrency services.
Phemedrone Stealer Exploits Patched Windows Flaw
A sophisticated new malware, Phemedrone Stealer, targets browsers, wallets, and apps by exploiting a Windows vulnerability.
Opera Browser Flaw Patched: The MyFlaw Bug Explained
A serious vulnerability within the Opera browser, known as the MyFlaw bug, was recently patched, reinforcing the importance of regular updates and cybersecurity vigilance.
Cybersecurity Alert: Vulnerabilities in IoT Devices
Discovering serious vulnerabilities in IoT devices like thermostats and industrial tools alerts us to the urgent need for robust cybersecurity measures.
FTC Bans Data Broker Outlogic from Selling Sensitive Location Data
The U.S. FTC has issued a ban against data broker Outlogic from selling users’ sensitive location data, marking a significant move for privacy rights.
Uncovering the Cyberattacks on Denmark’s Energy Sector
The report by Forescout reveals surprising insights into the cyberattacks against Denmark’s energy sector, challenging initial suspicions and underlining the necessity for enhanced cyber vigilance.
GitLab Addresses Two Critical Cybersecurity Flaws
GitLab has swiftly mitigated two critical cybersecurity threats, releasing important security updates to protect users globally.
Significant Arrest in Ukraine Deals Blow to Cryptojacking Operations
A Ukrainian national’s arrest in January 2024 highlights a critical strike against sophisticated cryptojacking activities targeting cloud resources.
Critical Juniper Networks RCE Vulnerability Alert: Update Now
A critical 9.8 CVSS score RCE vulnerability in Juniper Networks equipment prompts urgent updates.
UNC5221 Cyber Campaign Exploits Ivanti VPN Vulnerabilities
UNC5221 leverages zero-day vulnerabilities in Ivanti Connect Secure VPN appliances, signaling a strategic and targeted cyber offensive.
Critical Apache OFBiz RCE Vulnerability Patched
A critical remote code execution vulnerability in Apache OFBiz has been patched, but newer exploits call for immediate updates and vigilance.
Cisco Strengthens Security with Vulnerability Patches
Cisco addresses critical vulnerabilities including CVE-2024-20272 in Unity Connection software, reinforcing cybersecurity defenses.
Mandiant’s Cybersecurity Breach Exposes Industry Weaknesses
Mandiant faces a cybersecurity breach, underlining the need for unwavering security measures in the digital realm.
Chinese Hackers Exploit Zero-Days in Global Cyberespionage Campaign
Experts uncover Chinese hackers’ use of zero-days targeting Ivanti and Barracuda software, signaling a systematic cyberespionage effort with serious security consequences.
CISA Warns of New Vulnerabilities Under Attack
CISA highlights six newly exploited vulnerabilities urging immediate action to secure systems.
U.S. Dept of Justice Targets xDedic Dark Web Market
The U.S. Department of Justice charges 19 individuals linked to the xDedic dark web marketplace, showcasing the strength of international law enforcement against cybercrime.
Confronting Cyberthreats with Zero Trust Architecture
Exploring the surge in cyberthreats and the strategic application of Zero Trust architecture to safeguard against sophisticated attacks.
Ukrainian Telecom Breach: A Glimpse Into Cyber Espionage
Ukrainian authorities exposed Sandworm’s attack on telecom giant Kyivstar, shedding light on state-sponsored cyber espionage tactics.
Orange Spain Suffers Major BGP Traffic Hijack Incident
Threat actor Ms_Snow_OwO compromises Orange Spain’s network operations, causing major disruptions and highlighting cybersecurity vulnerabilities.
New ‘SpectralBlur’ macOS Malware Linked to North Korean Hackers
Cybersecurity experts uncover a new macOS backdoor, SpectralBlur, with connections to North Korean hackers, posing a heightened threat to users.
Unmasking UAC-0050’s Latest Phishing Schemes
Highlighting UAC-0050’s evolution in cybercrime, with their unique method of distributing the Remcos RAT via sophisticated phishing schemes.
Mandiant’s Twitter Compromised for Crypto Scam
Cybersecurity giant Mandiant’s Twitter account was hijacked for a cryptocurrency scam, raising questions about their security measures.
Google MultiLogin Exploit Uncovered
Security experts have discovered a sophisticated malware exploiting Google OAuth to hijack sessions, affecting multiple users globally.
Barracuda ESG Under Siege by UNC4841 Exploiting Zero-Day Vulnerability
UNC4841 has exploited a zero-day in Barracuda’s ESG, affecting global information systems and raising serious cybersecurity concerns.
Albanian Telecom and Assembly Under Cyber Attack
Albania’s National Assembly and One Albania telecom experience significant cyber attacks, exposing national vulnerabilities and prompting a swift security response.
Google Cloud Mitigates Kubernetes Security Flaw
Google Cloud has recently addressed a new vulnerability in its Kubernetes platform, with a fix deployed to secure data and operations.
Microsoft Toughens Security Against Malware
Microsoft disables ‘ms-appinstaller’ protocol to prevent malware attacks via MSIX packages, reinforcing its defense against cybercriminals.
Operation Triangulation: Uncovering Spyware on iOS Devices
A detailed look into Operation Triangulation’s sophisticated spyware targeting iOS devices and its implications on global cybersecurity.
Critical Apache OfBiz ERP Vulnerability Exposed: CVE-2023-51467
A new zero-day security flaw, CVE-2023-51467, has been discovered in Apache OfBiz ERP, posing significant authentication risks.
New Xamalicious Malware Threatens Android Users
Discovery of Xamalicious Android malware, developed using Xamarin and already impacting over 327,000 devices, raises serious cybersecurity concerns.
Unveiling Rhadamanthys: The Shapeshifting Menace Stealing Data
Exploring the evolving threat of Rhadamanthys malware, renowned for its data theft across multiple platforms, from web browsers to crypto wallets.
Cloud Atlas Cyber Espionage Threat Analysis
Cloud Atlas, also known as ‘Inception’, targets sectors globally in a cyber-espionage campaign with recent attacks in Russia and Norway.
Global Triumph: HAECHI-IV Police Operation Arrests Thousands, Seizes Millions
Operation HAECHI-IV marks a significant victory in global efforts to combat financial cybercrime, resulting in 3,500 arrests and the seizure of $300 million in assets.
New Wave of Nim-based Malware Menaces Digital Security
An examination of the emerging threat from Nim-based malware, posing challenges to cybersecurity with nefarious decoy documents.
Rogue WordPress Plugin Threatens E-Commerce Security
A rogue WordPress plugin part of a Magecart campaign is injecting malicious JavaScript to steal credit card details, posing serious threats to e-commerce security.
Microsoft Warns of ‘FalseFont’ Malware by APT33 Group
Microsoft reveals the ‘FalseFont’ backdoor malware campaign by APT33 targeting the global Defense Industrial Base.
The Rising Cost of Data Breaches and How to Counteract
The “Cost of a Data Breach Report 2023” reveals staggering financial consequences of cyber threats, with the U.S., the Middle East, and Canada facing the highest costs. Learn how AI, automation, and Zero Trust can mitigate these impacts.
Hackers Exploit Old Microsoft Excel Vulnerability to Spread Agent Tesla Malware
Agent Tesla malware exploits an old vulnerability in Microsoft Excel, posing severe risks for users with outdated systems. Learn how to protect yourself.
Fourth of July REvil Ransomware Attack Rocks Global Companies
REvil’s brazen ransomware assault against over 1,000 global companies calls for a stringent reassessment of cybersecurity defenses.
Matveev’s Ransomware Empire: A Global Cybercrime Threat
An exploration into Matveev’s Ransomware Empire, delving into their precision tactics and impact on global cybersecurity.