LATEST POST
US charges five in ‘Scattered Spider’ hacking scheme
U.S. prosecutors unveiled criminal charges on Wednesday against five alleged members of Scattered Spider, a community of young hackers suspected of breaking into dozens of U.S. companies to steal confidential information and cryptocurrency. Reuters reports: Martin Estrada, the U.S. Attorney in Los Angeles, said the defendants conducted phishing attacks by sending bogus but real-looking mass […]
Update now! Apple releases software to patch critical security flaws
No joke — update promptly because these vulnerabilities are being actively exploited. Apple is urging users to promptly apply the iOS 18.1.1, macOS Sequoia 15.1.1, and the older iOS 17.7.2 updates across all devices in the Apple ecosystem. NewsBytes summarizes the issues: In a move to protect its users, Apple has pushed critical security updates for its macOS and iOS platforms, […]
One Million Websites Vulnerable To Dangerous Sitting Duck Cyber Attacks
As Forbes reports, hijacking internet domains is nothing new, but a new Infoblox report reveals how the threat has evolved into an ongoing attack methodology. Forbes explains: The sitting duck cyber attacks are, Infoblox said, “easy to execute for actors, hard to detect for security teams.” To understand why you need to look at what vulnerability […]
Germany: Compensation for Facebook data breach victims
DW reports that Germany’s Federal Court of Justice (BGH), which is Germany’s highest civil court, has ruled that victims of a Facebook data breach could be entitled to compensation: The court in the southwestern city of Karlsruhe, Germany’s highest court for civil cases, said that the basic loss of control over data online was grounds for […]
Hackers are exploiting Microsoft 365 to send extortion emails
PCWorld reports that in the past week, a number of people have started receiving extortion demands that were sent via emails from the Microsoft 365 Message Center. These emails are demanding users to pay $2,000 worth of cryptocurrency to a specific address, under the threat of stealth nude webcam photos of them being leaked to […]
Five Eyes infosec agencies list 2024’s most exploited software flaws
The cyber security agencies of the UK, US, Canada, Australia, and New Zealand have issued their annual list of the 15 most exploited vulnerabilities. The Register reports: The top two spots on the list go to Citrix, which topped the chart with a remote code execution bug in versions 12 and 13 of NetScaler ADC and Gateway. […]
Bitfinex Hacker Sentenced in Money Laundering Conspiracy Involving Billions in Stolen Cryptocurrency (Updated)
Ilya Lichtenstein was sentenced today to five years in prison for his involvement in a money laundering conspiracy arising from the hack and theft of approximately 120,000 bitcoin from Bitfinex, a global cryptocurrency exchange. His sentencing was announced by the U.S. Department of Justice. According to court documents, Lichtenstein, 35, hacked into Bitfinex’s network in […]
Majority of firms using generative AI experience related security incidents – even as it empowers security teams
How many times do we read about something new and think, “What can possibly go wrong, right?” Some new research by the Capgemini Research Institute found that 97% of organizations using generative AI were affected by data breaches or security concerns linked to generative AI, and most do not have an adequate budget to deal with […]