Teen Chatting App Wizz Removed from Apple and Google Stores for Sextortion Concerns
Wizz, a growing social media app among US teenagers, was removed from the Apple App Store and the Google Play...
cybersecurity
Purplefox Malware Infects Thousands Of Computers In Ukraine
The Computer Emergency Response Team in Ukraine (CERT-UA) is warning about a PurpleFox malware campaign that has infected at least...
Cisa Orders Federal Agencies To Disconnect Ivanti Vpn Appliances By Saturday
CISA has ordered U.S. federal agencies to disconnect all Ivanti Connect Secure and Policy Secure VPN appliances vulnerable to multiple...
Ftc Orders Blackbaud To Boost Security After Massive Data Breach
Blackbaud has settled with the Federal Trade Commission after being charged with poor security and reckless data retention practices, leading...
More Android Apps Riddled With Malware Spotted On Google Play
An Android remote access trojan (RAT) known as VajraSpy was found in 12 malicious applications, six of which were available...
New Windows Event Log Zero Day Flaw Gets Unofficial Patches
Free unofficial patches are available for a new Windows zero-day flaw dubbed EventLogCrasher that lets attackers remotely crash the Event Log...
Cloudflare Hacked Using Auth Tokens Stolen In Okta Attack
Cloudflare disclosed today that its internal Atlassian server was breached by a suspected 'nation state attacker' who accessed its Confluence...
Fbi Disrupts Chinese Botnet By Wiping Malware From Infected Routers
The FBI has disrupted the KV Botnet used by Chinese Volt Typhoon state hackers to evade detection during attacks targeting...
Cisa Warns Of Patched Iphone Kernel Bug Now Exploited In Attacks
CISA warned today that a patched kernel security flaw affecting Apple iPhones, Macs, TVs, and watches is now being actively...
Exploit Released For Android Local Elevation Flaw Impacting 7 Oems
A proof-of-concept (PoC) exploit for a local privilege elevation flaw impacting at least seven Android original equipment manufacturers (OEMs) is...
Europcar Denies Data Breach Of 50 Million Users Says Data Is Fake
Car rental company Europcar says it has not suffered a data breach and that shared customer data is fake after...
Cisa Vendors Must Secure Soho Routers Against Volt Typhoon Attacks
CISA has urged manufacturers of small office/home office (SOHO) routers to ensure their devices' security against ongoing attacks attempting to hijack...
Ivanti Warns Of New Connect Secure Zero Day Exploited In Attacks
Today, Ivanti warned of two more vulnerabilities impacting Connect Secure, Policy Secure, and ZTA gateways, one of them a zero-day...
Hackers Push Usb Malware Payloads Via News Media Hosting Sites
A financially motivated threat actor using USB devices for initial infection has been found abusing legitimate online platforms, including GitHub,...
Johnson Controls Says Ransomware Attack Cost 27 Million Data Stolen
Johnson Controls International has confirmed that a September 2023 ransomware attack cost the company $27 million in expenses and led...
Pawn Storm’s Stealthy Net-NTLMv2 Assault Revealed
Pawn Storm, an advanced persistent threat (APT) actor also known as APT28, has been targeting high-value entities globally, employing a...
EU Launches First Cybersecurity Certification for Digital Products
The EU has adopted its first Cybersecurity Certification scheme as part of efforts to boost cybersecurity of IT products and...
Citibank Sued Over Failure To Defend Customers Against Hacks Fraud
New York Attorney General Letitia James sued Citibank over its alleged failure to defend customers against hacks and scams and...
Police Disrupt Grandoreiro Banking Malware Operation Make Arrests
The Federal Police of Brazil and cybersecurity researchers have disrupted the Grandoreiro banking malware operation, which has been targeting Spanish-speaking...
Vastaamo Hacker Traced Via Untraceable Monero Transactions Police Says
Julius Aleksanteri Kivimäki, the suspect believed to be behind an attack against one of Finland's largest psychotherapy clinics, Vastaamo, was...
A Mishandled Github Token Exposed Mercedes Benz Source Code
A mishandled GitHub token gave unrestricted access to Mercedes-Benz's internal GitHub Enterprise Service, exposing source code to the public. Mercedes-Benz...
Us Charges Two More Suspects With Draftking Account Hacks
The U.S. Department of Justice arrested and charged two more suspects for their involvement in the hacking of almost 68,000 DraftKings accounts in...
Microsoft Teams Phishing Pushes Darkgate Malware Via Group Chats
New phishing attacks abuse Microsoft Teams group chat requests to push malicious attachments that install DarkGate malware payloads on victims'...
Online Ransomware Decryptor Helps Recover Partially Encrypted Files
CyberArk has created an online version of 'White Phoenix,' an open-source ransomware decryptor targeting operations using intermittent encryption. The company announced...
