TikTok owner ByteDance pushed a pro-China agenda to Americans, say former employees
Controversy over supposed pro-China messaging in apps from TikTok owner Bytedance continues to grow. Tales are emerging relating to a...
News
“Orwellian in the extreme” food store installs facial recognition cameras to stop crime, faces backlash
A convenience shop chain is under fire and facing legal charges for installing cameras with facial recognition software in 35...
Radioactivity monitoring and warning system hacked, disabled by attackers
The Spanish police arrested two people under the accusation of tampering with the Red de Alerta a la Radiactividad (RAR)....
Malware-laced npm packages used to target Discord users
Threat actors used multiple npm packages to target Discord users with malware designed to steal their payment card data. A...
LofyLife: malicious npm packages steal Discord tokens and bank card data
On July 26, using the internal automated system for monitoring open-source repositories, we identified four suspicious packages in the Node...
APT trends report Q2 2022
For five years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of advanced persistent...
Akamai blocked the largest DDoS attack ever on its European customers
This month Akamai blocked the largest distributed denial-of-service (DDoS) attack that hit an organization in Europe. On July 21, 2022,...
LibreOffice fixed 3 flaws, including a code execution issue
LibreOffice maintainers addressed three security flaws in their productivity software, including an arbitrary code execution issue. LibreOffice is an open-source office...
Threat actors use new attack techniques after Microsoft blocked macros by default
Threat actors are devising new attack tactics in response to Microsoft’s decision to block Macros by default. In response to...
ENISA provides data related to major telecom security incidents in 2021
ENISA published a report that includes anonymised and aggregated information about major telecom security incidents in 2021. ENISA published a...
European firm DSIRF behind the attacks with Subzero surveillance malware
Microsoft linked a private-sector offensive actor (PSOA) to attacks using multiple zero-day exploits for its Subzero malware. The Microsoft Threat...
Anti-vaxxer dating site exposes user data
An anti-vax dating site has been revealed as shockingly easy to compromise by security researchers. Many major aspects of the...
In post-Roe US, experts share how to keep your data private
In the weeks since the Supreme Court of the United States removed a nationwide right to choose to have an...
T-Mobile agrees to pay customers $350 million in settlement over data breach
T-Mobile has agreed to pay $350 million to settle class action claims related to a 2021 cyberattack which impacted around...
Spain police arrested two men accused of cyber attacks on radioactivity alert network (RAR)
The Spanish police arrested two individuals accused to have hacked the country’s radioactivity alert network (RAR) in 2021. The Spanish...
PrestaShop warns of vulnerability: Update your stores now!
A vulnerability affecting open source e-commerce platform PrestaShop could spell trouble for servers running PrestaShop websites. The 15-year-old organisation’s platform...
Attackers increasingly abusing IIS extensions to establish covert backdoors
Threat actors are increasingly abusing Internet Information Services (IIS) extensions to maintain persistence on target servers. Microsoft warns of threat...
DUCKTAIL operation targets Facebook’s Business and Ad accounts
Researchers uncovered an ongoing operation, codenamed DUCKTAIL that targets Facebook Business and Ad Accounts. Researchers from WithSecure (formerly F-Secure Business)...
The strange similarities between Lockbit 3.0 and Blackmatter ransomware
Researchers found similarities between LockBit 3.0 ransomware and BlackMatter, which is a rebranded variant of the DarkSide ransomware. Cybersecurity researchers have...
Microsoft clamps down on RDP brute-force attacks in Windows 11
It wasn’t so long ago that we were wondering what improvements Windows 11 would make in the security stakes. Well,...
Trend Micro Joins AWS Marketplace Vendor Insights
Streamlining and enhancing security in the cloud with AWS and Trend Micro If you like the site, please consider joining...
US-CERT Bulletin (SB22-206):Vulnerability Summary for the Week of July 18, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
U.S. increased rewards for info on North Korea-linked threat actors to $10 million
The U.S. State Department increased rewards for information on any North Korea-linked threat actors to $10 million. In April 2020,...
Threat actors leverages DLL-SideLoading to spread Qakbot malware
Qakbot malware operators are using the Windows Calculator to side-load the malicious payload on target systems. Security expert ProxyLife and Cyble...
