Browser lockers: extortion disguised as a fine
Browser lockers (aka browlocks) are a class of online threats that prevent the victim from using the browser and demand...
News
Conti Ransomware gang demanded $40 million ransom to Broward County Public Schools
Ransomware gang demanded a $40,000,000 ransom to the Broward County Public Schools district, Florida. It is just the last attack...
Airlift Express Fixes Vulnerabilities in Its E-commerce Store
PrivacySavvy experts discovered an OTP vulnerability in Airlift Express, which could lead to account hacks and exploits by cybercriminals. A...
DHS CISA requires federal agencies to assess their Microsoft Exchange servers by April 5
The DHS CISA has issued a supplemental directive that requires all federal agencies to identify vulnerable Microsoft Exchange servers in...
Man indicted for tampering with public water system in Kansas
The United States Department of Justice (DoJ) charged a Kansas man, for accessing and tampering with a public water system....
VMware fixes authentication bypass in Carbon Black Cloud Workload appliance
VMware has addressed a critical authentication bypass vulnerability in the VMware Carbon Black Cloud Workload appliance. VMware has addressed a...
Video game cheat mod malware demonstrates risks of unlicensed software
Activision reported finding postings on hacking forums on YouTube by a threat actor promoting a Remote Access Trojan that can...
Android “System Update” malware steals photos, videos, GPS location
A newly discovered piece of Android malware shares the same capabilities found within many modern stalkerware-type apps—it can swipe images...
Relax. Internet password books are OK
Passwords are a hot topic on social media at the moment, due to the re-emergence of a discussion about good...
WordPress Websites Infected with Malware Via Fake jQuery Files
Cybersecurity experts discovered fake variants of the jQuery Migrate plugin inserted in various sites that had unclear codes to launch...
Medical Professionals of U.S. and Israel Targeted in a ‘BadBlood’ Phishing Campaign
Email security firm, Proofpoint has exposed a hacking group linked with the Iranian government targeting nearly two-dozen medical researchers in...
Cyberextortion Threat Evolves as Clop Ransomware Attacked 6 U.S Universities Data Security
Malicious actors are now using novel ways to extract universities' data, and are threatening to share stolen data on dark...
Shell’s Employees’ Visas Dumped Online as part of Extortion Attempt
Royal Dutch Shell became the latest corporation to witness an attack by the Clop ransomware group. The compromised servers were...
US Based, Ubiquiti Inc. covers up a Catastrophic Data Breach, Claims a Whistle-blower
Ubiquiti Inc., a major provider of cloud-enabled Internet of Things (IoT) equipment such as routers, network video recorders, and surveillance...
DeepDotWeb admin pleads guilty to money laundering conspiracy
One of the administrators for the DeepDotWeb dark web portal pleads guilty to receiving kickbacks from the operators of the...
VMware fixed flaws in vROps that can be chained to compromise organizations
VMware addressed two vulnerabilities in its vRealize Operations (vROps) product that can expose organizations to a significant risk of attacks...
Akamai dealt with an 800Gbps ransom DDoS against a gambling company
Akamai has recently involved in the mitigation of two of the largest known ransom DDoS attacks, one of them peaked...
Ubiquiti security breach may be a catastrophe
The data breach disclosed by Ubiquiti in January could be just the tip of the iceberg, a deeper incident could...
US CISA warns of DoS flaws in Citrix Hypervisor
Citrix addressed vulnerabilities in Hypervisor that could be exploited by threat actors to execute code in a virtual machine to...
North Korea-linked hackers target security experts again
Researchers from Google’s Threat Analysis Group (TAG) reported that North Korea-linked hackers are targeting security researchers via social media. The...
The npm netmask vulnerability explained so you can actually understand it
The popular npm netmask library recently encountered a serious problem, explained as follows: The npm netmask package incorrectly evaluates individual...
IRS Warned of an Ongoing IRS-Impersonation Scam
The Internal Revenue Service (IRS) has cautioned of ongoing phishing assaults impersonating the IRS and targeting educational establishments. The assaults...
Here’s How to Safeguard Against Mobikwik Data Breach
Cybersecurity researchers claimed that the KYC data of as many as 11 crores Mobikwik users had been leaked and put...
Data Leak of 10cr Users: ‘The Largest KYC Data Leak in History’
According to cybersecurity researcher Rajshekahar Rajaharia, mobile payment app Mobikwik came under attack after the data of 10 crores of...
