Data of 2.6 Million Duolingo Users Leaked on Hacking Forum
Data from 2.6 million users of Duolingo, a language learning platform with over 74 million monthly users, has been leaked...
News
NIST Publishes Draft Post-Quantum Cryptography Standards
Draft post-quantum cryptography (PQC) standards have been published by the US National Institute of Standards and Technology (NIST). The new...
FBI Flags $40M Crypto Cash-Out Plot By North Korean Hackers
The Federal Bureau of Investigation (FBI) has issued a stark warning to cryptocurrency firms regarding a surge in blockchain activity...
US-CERT Vulnerability Summary for the Week of August 14, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infofoldingathome -- client_advanced_controlAn issue was discovered in FoldingAtHome Client Advanced Control GUI...
DarkGate reloaded via malvertising and SEO poisoning campaigns
In July 2023, we observed a malvertising campaign that lured potential victims to a fraudulent site for a Windows IT management...
WinRAR zero-day exploited since April to hack trading accounts
A WinRar zero-day vulnerability tracked as CVE-2023-38831 was actively exploited to install malware when clicking on harmless files in an...
The MOVEit hack and what it taught us about application security
When a cyberattack like the 2023 MOVEit hack makes global news headlines, attention often focuses on the names of the...
US charges founders of Tornado Cash mixer used by Lazarus hackers
The U.S. Justice Department charged two Tornado Cash founders with helping criminals, including the notorious North Korean Lazarus hacking group,...
Kali Linux 2023.3 released with 9 new tools, internal changes
Kali Linux 2023.3, the third version of 2023, is now available for download, with nine new tools and internal optimizations....
FBI: Lazarus hackers readying to cash out $41 million in stolen crypto
The FBI warned that North Koreans are likely readying to cash out tens of millions worth of stolen cryptocurrency out...
Hosting firm says it lost all customer data after ransomware attack
Danish hosting firms CloudNordic and AzeroCloud have suffered ransomware attacks, causing the loss of the majority of customer data and...
Lapsus$ teen hackers convicted of high-profile cyberattacks
A London jury has found that an 18-year-old member of the Lapsus$ data extortion gang helped hack multiple high-profile companies, stole...
New stealthy techniques let hackers gain Windows SYSTEM privileges
Security researchers have released NoFilter, a tool that abuses the Windows Filtering Platform to elevate a user's privileges to increases...
Discord starts notifying users affected by March data breach
Starting on Monday, Discord has been reaching out to users affected by a data breach disclosed earlier this year to...
Over 3,000 Openfire servers vulnerable to takover attacks
Thousands of Openfire servers remain vulnerable to CVE-2023-32315, an actively exploited and path traversal vulnerability that allows an unauthenticated user...
Bitwarden releases free and open-source E2EE Secrets Manager
Bitwarden, the maker of the popular open-source password manager tool, has released ‘Secrets Manager,’ an end-to-end encrypted secrets manager for...
Cyber-Attack on Australian Utility Firm Energy One Spreads to UK Systems
A cyber-attack on Australian utility company, Energy One Limited (EOL), could have international impact with the firm’s corporate systems in...
MOVEit Exploitation Fallout Drives Record Ransomware Attacks
Ransomware attacks hit record levels in July 2023, driven by the Clop gang’s exploitation of the MOVEit vulnerability, according to...
US ARPA-H Initiative Counters Healthcare Cyber-Threats
In a bid to counter cyber-attacks targeting the US healthcare system, the Advanced Research Projects Agency for Health (ARPA-H), operating...
Scarab Ransomware Deployed Worldwide Via Spacecolon Toolset
Cybersecurity researchers from ESET have uncovered a malicious toolset named Spacecolon that has been deployed to spread variants of the...
TP-Link Smart Bulb Spills Wi-Fi Passwords
Security researchers from Italy and London have discovered several vulnerabilities in a popular brand of smart light bulbs, which could...
Critical Insight Report: 15% Drop in Breaches, 31% Surge in Victims
Cybersecurity-as-a-Service provider Critical Insight has unveiled its 2023 H1 Healthcare Data Breach Report, offering insights into the cybersecurity landscape of...
Experian Pays $650,000 to Settle Spam Claims
Experian Consumer Services has agreed to a permanent injunction and to pay a civil penalty of $650,000 to settle allegations...
XLoader MacOS Malware Variant Returns With OfficeNote Facade
The notorious XLoader malware has resurfaced, posing as a seemingly innocuous office productivity app named “OfficeNote.”Known for its malicious activities...
