Air India suffered a data breach, 4.5 million customers impacted
Air India disclosed a data breach that impacted roughly 4.5 million of its customers, two months after its Passenger Service...
Security
Report: how cybercriminals abuse API keys to steal millions
CyberNews researchers found that crooks could abuse cryptocurrency exchange API keys and steal cryptocurrencies. Original post available here: https://cybernews.com/security/report-how-cybercriminals-abuse-api-keys-to-steal-millions/ CyberNews...
Indonesia ‘s government confirms social security data breach for some citizens
Indonesia has launched an investigation into a possible security incident that caused the leak of social security data for more...
Yam – 13,258,797 breached accounts
In June 2013, the Taiwanese website Yam.com suffered a data breach which was shared to a popular hacking forum in...
Livpure – 269,552 breached accounts
In August 2020, the Indian retailer Livpure suffered a data breach which exposed over 1 million customer purchases with 270...
DarkSide Affiliates Claim Gang’s Bitcoin Deposit
Multiple associates have protested about not being charged for past services since the DarkSide ransomware operation was shut down a...
Experts reported a twofold increase in the activity of ransomware hackers in Russia
The authors of the study called the growth "staggering." Since the beginning of April, experts have been monitoring ransomware attacks...
Scammers Employ ‘Vishing’ Technique to Steal Personal Details of Online Shoppers
Scammers are using a unique methodology called ‘vishing’ to trick online customers. In a vishing attack, the fraudster impersonates someone...
Cyber Attackers Hijacked Google and Microsoft Services for Malicious Phishing Emails
Over recent months, the cybersecurity industry has seen a huge increase in malicious attackers exploiting the networks of Microsoft and...
Blind SQL Injection Flaw in WP Statistics Affected 600K+ Sites
According to researchers from Wordfence Threat Intelligence, WP Statistics has a Time-Based Blind SQL Injection vulnerability which is a WordPress...
DivideAndScan – Divide Full Port Scan Results And Use It For Targeted Nmap Runs
Divide Et Impera And Scan (and also merge the scan results) DivideAndScan is used to efficiently automate port scanning routine...
AutoPentest-DRL – Automated Penetration Testing Using Deep Reinforcement Learning
AutoPentest-DRL is an automated penetration testing framework based on Deep Reinforcement Learning (DRL) techniques. The framework determines the most appropriate...
Insurance giant CNA Financial paid a $40 million ransom
The US insurance giant CNA Financial reportedly paid a $40 million ransom to restore access to its files following a...
Bitcoins of DarkSide ransomware gang still locked in hacker forum’s escrow
After DarkSide ransomware gang shut down operations, multiple affiliates have complained about not receiving the payments for successful breaches. The...
Microsoft SimuLand, an open-source lab environment to simulate attack scenarios
Microsoft released SimuLand, an open-source tool that can be used to build lab environments to simulate attacks and verify their...
STRRAT RAT spreads masquerading as ransomware
Microsoft warns of a malware campaign that is spreading a RAT dubbed named STRRAT masquerading as ransomware. Microsoft Security Intelligence...
Daily Quiz – 8,032,404 breached accounts
In January 2021, the quiz website Daily Quiz suffered a data breach that exposed over 8 million unique email addresses....
IIMJobs – 4,216,063 breached accounts
In December 2018, the Indian job portal IIMJobs suffered a data breach that exposed 4.1 million unique email addresses. The...
Apple confirms Macs get malware
Anyone following the court case between Epic and Apple is undoubtedly already aware of the “bombshell” dropped by Apple’s Craig...
Android patches for 4 in-the-wild bugs are out, but when will you get them?
In the Android Security Bulletin of May 2021, published at the beginning of this month, you can find a list...
A doctor reveals the human cost of the HSE ransomware attack
“It’s cracking, the whole thing.” The words were delivered quickly, but in a thoughtful and measured way. As if the...
The youngest crypto millionaire Mr. Buterin destroyed almost $7 billion worth of Shiba tokens donated to him
Creator of Ethereum, crypto millionaire Vitalik Buterin destroyed more than 410 trillion Shiba tokens, the total value of which CoinDesk...
Windows API Used as a Doorway in a MountLocker Ransomware Operation
Threat actors are now using MountLocker ransomware via ‘Windows Active Directory enterprise APIs’ to target website developers and organizations. MountLocker...
TeamTNT: New Credential Harvester Targets Cloud Services and other Software
Secrets must be kept confidential in order for networks to be protected and supply-chain attacks to be avoided. Malicious actors...
