Tag: CySecurity News – Latest Information Security and Hacking Incidents

In July 2023, we witnessed a large-scale global breakdown impacting over 8.5 million Microsoft users. The reason? A software update that turned into chaos. Leading cybersecurity company CrowdStrike recently published its root cause analysis, providing insights on the incident. Let’s…

Read more →

  The FBI and CISA have alerted organizations about a new ransomware strain known as BlackSuit. This malware is an advanced version of the Royal ransomware, which caused significant disruptions between September 2022 and June 2023. Since becoming active in…

Read more →

  National Public Data, a company specializing in background checks and fraud prevention, has experienced a significant data breach. The data collected by the company has reportedly fallen into the hands of a hacking group known as “USDoD,” which began…

Read more →

  Doxing, a once obscure practice of publishing someone’s private information online without their consent, has evolved into a dangerous and profitable underground industry. The dark world of doxing has grown increasingly sophisticated, with malicious actors exploiting the vast amounts…

Read more →

  As a result of an online mailing list that has been set up without any consent of the Tower Hamlets residents, content that is anti-Israel, anti-Labour and pro-Workers Party of Britain has been distributed without their knowing. In recent…

Read more →

SPRINGFIELD, IL – Illinois has recently amended its Biometric Information Privacy Act (BIPA), essentially reducing the financial risks for companies that mishandle biometric data such as eye scans, fingerprints, and facial recognition information. The changes, signed into law by Governor…

Read more →

In the rapidly changing landscape of cybersecurity dangers, two threats are often in discussion, ransomware and extortionware. While both have some similarities, it is important to understand their differences for efficient defense tactics.  What is Ransomware? Ransomware is a type…

Read more →

  Mobile Guardian, a widely-used digital classroom management platform, has experienced a significant security breach affecting thousands of students globally. The platform, which is a Google for Education partner, offers services such as device management, parental controls, secure web filtering,…

Read more →

  With internet restrictions growing, one of the top VPN services has stepped up its efforts to combat online censorship Virtual private networks (VPNs) are essential tools for people living under stringent censorship because of their IP spoofing capabilities, which…

Read more →

  There have been warnings from South Korea’s cybersecurity authorities regarding North Korea’s attempts to hack into construction and machinery websites to steal data for their development projects. During the past year, the number of hacking attempts by North Korea…

Read more →

  A significant security concern has arisen following the exposure of an estimated 332 million email addresses online, allegedly scraped from the security intelligence platform SOCRadar.io. The massive data dump was reportedly posted on a cybercrime forum by a threat…

Read more →

In a concerning event, North Korean state-sponsored have again displayed their advanced cyber capabilities by abusing flaws in VPN software updates to plant malware. The incident highlights the rising threats from state-sponsored actors in the cybersecurity sector. “The Information Community…

Read more →

  Over 40 museums in France, including the Grand Palais, a key venue for the upcoming Paris Olympics, and the world-famous Louvre, recently fell victim to a discernible ransomware attack. The breach, which occurred over the weekend of August 3rd,…

Read more →

  Microsoft’s end-of-support date for Windows 10 is approaching on October 14, 2025, and the operating system is already facing a serious security threat. With 70% of Windows users still operating Windows 10, the situation in terms of cyber-attacks has…

Read more →

The U.S. Government Accountability Office (GAO) has called on the Environmental Protection Agency (EPA) to urgently formulate a strategy to combat the increasing risk of cyber attacks targeting the country’s drinking and wastewater systems. This recommendation was outlined in a…

Read more →

  A recent ransomware attack on OneBlood, a leading blood supplier in the southeastern United States, has severely impacted the blood supply chain in Florida. This cyberattack has prompted urgent health warnings and a call for donations from Florida health…

Read more →

  In a troubling development for cybersecurity professionals, the Hunters International ransomware group has introduced a sophisticated new remote access trojan (RAT) called SharpRhino. This C#-based malware is specifically designed to target IT workers and breach corporate networks through a…

Read more →

  A rise in technology has also led to an increase in cybersecurity concerns as a result of the rise of technology. It is becoming more and more common for users across the world to fall victim to online scams…

Read more →

  Many organisations tend to focus on immediate threats, prioritising the detection and mitigation of the latest vulnerabilities. However, this approach overlooks a broader issue: many cyberattacks exploit vulnerabilities that have existed for years. In fact, 76% of vulnerabilities targeted…

Read more →

  The Ministry of Corporate Affairs (MCA) is preparing to strike off as many as 400 Chinese companies operating in India due to severe financial irregularities and incorporation-related fraud. These companies, which primarily deal in online loans and job services,…

Read more →

  As part of a collaboration between the Indian Cyber Coordination Centre (I4C) and Microsoft, an anti-cyber fraud agency has banned more than 1,000 Skype accounts that are believed to have been used to intimidate, blackmail, extort and digitally arrest…

Read more →

The City of Columbus faces a major cybersecurity threat due to a hacking group Rhysida’s claims of stealing a massive 6.5 terabytes of sensitive information. The data heist happened after a ransomware attack on July 18 that forced the city…

Read more →

  The malware hidden within the package functioned as a comprehensive information stealer, targeting a wide range of data. This included web browser passwords, cookies, credit card details, cryptocurrency wallets, and information from messaging apps like Telegram, Signal, and Session.…

Read more →

  Keytronic, an electronic manufacturing services supplier, has said that it lost more than $17 million as a result of a ransomware assault in May. The American technology firm established in 1969 as an Original Equipment Manufacturer (OEM) of keyboards…

Read more →

  No matter how cautious you are online, your personal data can still be vulnerable, as demonstrated by a recent data breach that exposed the information of 2.9 billion people. This alarming incident was brought to light as part of…

Read more →

  Punjab and Sind Bank (PSB) recently issued a public notice alerting customers to a new scam involving fraudulent messages and malicious APK files. This scam threatens grave  financial losses if customers do not take proper precautions. How the APK…

Read more →

OpenAI to Release AI Detection Tool OpenAI has been at the forefront of the evolving AI landscape, doing wonders with its machine learning and natural language processing capabilities. One of its best creations, ChatGPT, is known for creating human-like text.…

Read more →

  A widespread Magniber ransomware campaign is currently targeting home users globally, encrypting their devices and demanding ransoms amounting to thousands of dollars for decryption. Launched in 2017 as the successor to the Cerber ransomware operation, Magniber was initially distributed…

Read more →

  The majority of Americans are taking preventative measures to safeguard themselves from those who aim to steal their money or private data as concerns over scams rise. Unfortunately, there are plenty of ways for crooks to trick individuals that…

Read more →

  A Chinese hacking group, known as StormBamboo, has compromised an internet service provider (ISP) to distribute malware through automatic software updates. This cyber-espionage group, also called Evasive Panda, Daggerfly, and StormCloud, has been active since at least 2012, targeting…

Read more →

  A significant glitch in Google Ads recently disrupted advertisers’ access to critical performance data and inadvertently exposed sensitive competitor information, raising concerns about data security and potential unfair business practices. The issue, which began on July 30, 2024, led…

Read more →

  A police radio transmission went silent in Aurora, Colorado, in 2016, and then in Denver, Colorado, in 2019. Many journalists are used to using newsroom scanners to monitor police radio communications to identify any newsworthy events as soon as…

Read more →

  Cybersecurity expert Jeremiah Fowler recently uncovered a concerning data breach involving over 4.6 million voter records and election-related documents. These sensitive files were discovered in 13 unprotected databases managed by a technology contractor based in Illinois. Company Behind the…

Read more →

AI (artificial intelligence) has become an important tool in many spheres of life such as education, jobs, and the field of medical research as well. However, there have been concerns about AI providing medical advice to individual queries of patients…

Read more →

  Cybersecurity researchers have uncovered a significant threat affecting the internet’s Domain Name System (DNS) infrastructure, known as the “Sitting Ducks” attack. This sophisticated method allows cybercriminals to hijack domains without needing access to the owner’s account at the DNS…

Read more →

  Bad news for anyone concerned about their privacy who lives in or plans to visit Indonesia in the near future. As authorities ramp up their efforts to combat illegal online gambling and pornography, online privacy suffers as a result.…

Read more →

  China has initiated trials for its new national digital identification system across more than 80 internet service applications. This move follows the release of draft rules on July 26, with a public review and comment period open until August…

Read more →

  CPCI, the National Payments Corporation of India, has re-established several retail payment connections with banks that currently use C-Edge systems after the technology provider was struck by a ransomware attack on August 1, according to a statement released by…

Read more →

  U.S. and German law enforcement have taken down the domain of Cryptonator, a cryptocurrency wallet platform allegedly used by ransomware groups, darknet marketplaces, and other illegal services. The platform’s operator, Roman Boss, has been indicted on charges of money…

Read more →

  On Friday, Turkey’s Information and Communication Technologies Authority (ICTA) unexpectedly blocked Instagram access across the country. The ICTA, responsible for overseeing internet regulations, did not provide any specific reason for the ban. However, according to reports from Yeni Safak,…

Read more →

For the car sector, generative AI (GenAI) has the potential to transform how automobiles run and are maintained. GenAI’s ability to learn from massive volumes of data, make intelligent decisions, and improve processes makes it extremely useful in this industry.…

Read more →

  Attackers can conceal their efforts to execute malicious code by embedding commands into the machine code stored in memory by software interpreters used in many programming languages, such as VBScript and Python. This technique will be demonstrated by a…

Read more →

  Following last year’s takedown of the Qakbot botnet, the Black Basta ransomware group has switched to relying on new custom tools and initial access techniques as part of a shift in strategy, as part of this year’s efforts to…

Read more →

  A dark web actor has claimed responsibility for a data breach affecting ADT, an American security company known for its residential and commercial alarm monitoring services. On August 1, 2024, an individual or group using the alias “netnsher” publicly…

Read more →

  Researchers have raised alarms over cybercriminals increasingly exploiting the Cloudflare Tunnel service in malware campaigns that predominantly distribute remote access trojans (RATs). This malicious activity, first detected in February, utilizes the TryCloudflare free service to disseminate multiple RATs, including…

Read more →

In unexpected turn of events, Google has delayed its plan to replace tracking cookies in its Chrome browser, affecting its three billion users worldwide. The company had intended to transition to new, anonymised tracking methods to enhance user privacy, but…

Read more →

In May, EU member states, lawmakers, and the European Commission — the EU’s executive body — finalized the AI Act, a significant guideline that intends to oversee how corporations create, use, and use AI.  The European Union’s major AI law…

Read more →

  With over 17 billion records breached in 2023, data breaches have reached an all-time high. Businesses are more vulnerable than ever before due to increased ransomware attacks, third-party hacks, and the increasing sophistication of threat actors.  Still, many security…

Read more →

  Malware has long been a significant threat to online security, serving as a backdoor entry for cybercriminals. Despite Google’s efforts to keep the Play Store free of malicious apps and deliver timely Android security patches, some attackers manage to…

Read more →

  An extortion campaign begun early this year by an unknown hacking group to extort money has been characterized as using the Basta ransomware to stop victims from unlocking their files. This campaign was discovered by Google Mandiant, which uses…

Read more →

  C-Edge Technologies, a prominent IT solutions provider for India’s banking and financial sector, has recently faced significant challenges following a major ransomware attack. This incident has severely impacted its systems, leading to disruptions in payment services for nearly 300…

Read more →

  According to Salesforce’s 2024 State of Sales report, sales teams are combining tools and strengthening data security to reap the benefits of AI. Following a global survey of 5,500 sales professionals, the report’s four main findings are as follows: …

Read more →

  Despite an effort by the Georgian government to provide a new web portal that allows Georgians to cancel their voter registration, the website has come under fire after a technical problem caused personal data to be displayed on users’…

Read more →

  Several ransomware groups have been exploiting a vulnerability in VMware ESXi hypervisors that allows them to bypass authentication and rapidly deploy malware across virtual environments. Identified as CVE-2024-37085, this bug has been assigned a “medium” severity rating of 6.8…

Read more →

  The UK’s data privacy watchdog has found that the personal details of millions of UK voters were left exposed to hackers due to poor security practices at the Electoral Commission. The breach occurred because passwords were not changed regularly…

Read more →

  A ransomware outfit launched an assault on New Jersey City University’s computer network, threatening to reveal sensitive private details of students and staff unless $700,000 in Bitcoin is paid by Saturday. The institution notified staff and students of the…

Read more →

  A new report from Picus Security has unveiled a concerning vulnerability in many IT environments: a high risk of complete takeover through escalated privileges.  Simulated attacks revealed that while organizations can typically defend against seven out of ten attacks,…

Read more →

  A person familiar with the matter informed us that hackers stole internal documents from Leidos Holdings Inc., one of the largest IT service providers in the US government, in an attempted breach of security. There has been a recent…

Read more →

In a major development in the tech landscape, SSL/TLS certificate provider “DigiCert” recently announced that it will be revoking around 83,267 certificates. This big step was taken due to a bug in their domain validation process, which dented the integrity…

Read more →

  The rise of artificial intelligence (AI) is becoming a critical trend to monitor, with the potential for malicious actors to exploit the technology as it advances, according to the Cyber Security Agency (CSA) on Tuesday (Jul 30). AI is…

Read more →

  HealthEquity, a leading provider of Health Savings Accounts (HSAs), has confirmed a significant data breach affecting potentially 4.3 million customers. The breach, discovered in March but only confirmed in June, involved unauthorized access to a data repository containing sensitive…

Read more →

The cyberspace landscape changes frequently, sometimes the change is good, while sometimes we stumble across challenges.  One such problem surfaced recently when Salt Labs experts found OAuth (Open Authorization) implementation flaws and cross-site scripting (XSS) vulnerabilities in the Hotjar service,…

Read more →

  In the dynamic landscape of the digital world, the concept of digital sovereignty has become increasingly significant for governments around the globe. India, with its rapidly expanding internet user base, is part of this dialogue, striving to assert control…

Read more →

  In a time where digital devices influence our daily lives, it is normal for households to have multiple smart home devices. Statistics show that each person owns at least three devices, with North Americans owning an average of nine.…

Read more →

  Cicada3301, a notorious ransomware group attacking Singapore-based Tri-Star Display Pte Ltd to extort payment, has claimed responsibility for a significant data breach at the firm. Following the dark web shame site of the group, more than 95GB has been…

Read more →

< div> The web browsers of your Android devices, whether it’s Google Chrome, Mozilla Firefox, or Samsung Internet, stores a variety of files, images, and data from the websites you visit. While this data can help load sites faster and…

Read more →

  Amazon has sent an urgent new email to all customers amid a warning that they should remain on alert. According to the message, customers in the UK should beware of phishing emails, texts, or phone calls that claim to…

Read more →

  In the dynamic landscape of private equity, the Chief Information Security Officer (CISO) has emerged as a critical player. Beyond safeguarding digital assets, the CISO is instrumental in driving business growth and ensuring regulatory compliance. The CISO’s role extends…

Read more →

Google says “sorry” after a bug stopped Windows users from finding or saving their passwords. The issue began on 24th July and stayed till 25th July, before it was fixed. The problem, google said was due to “a change in…

Read more →

  Today, AI can help with a variety of tasks, like making personalised food plans and offering dating advice, as well as fixing image flaws and optimising workflow. However, AI technology has also opened the door to more controversial apps,…

Read more →

  In 2023, Google pledged its support for Messaging Layer Security (MLS), a protocol designed to provide practical interoperability across various messaging services while scaling efficiently to accommodate large groups. This move marks a significant step towards enhancing security and…

Read more →

  As cloud technologies become integral to business operations, organisations face not only opportunities but also pertaining challenges. The widespread use of cloud services has created a complex environment involving multiple providers and regions, each with its own regulations and…

Read more →

  Cryptocurrency exchange Gemini has issued a warning about a data breach incident that resulted from a cyberattack at its Automated Clearing House (ACH) service provider. The identity of the attacker was kept confidential. On June 26, 2024, the American…

Read more →

The ubiquitous nature of online platforms has led to an increased risk of privacy breaches and data exploitation. While providing false information can serve as a protective measure against unwanted intrusions, it is essential to discern when such a strategy…

Read more →

Google is preparing to drastically improve its Phone app with a potent new weapon against fraudulent calls. An APK deconstruction revealed that the tech behemoth is creating an AI-powered scam detection feature that could be released shortly. About the feature…

Read more →

  The topic of cybersecurity has undoubtedly become one of the most pressing issues on the business agenda over the last few years. Despite the many technological advancements, malicious attacks are constantly on the rise as a result of the…

Read more →

On July 23, 2024, a massive cyberattack launched by Ukrainian hackers targeted Russian financial institutions, disrupting ATM services across the country. According to a source within Ukrainian intelligence, the attack is “gaining momentum” as it continues to cripple banking services.…

Read more →

Navigating the different types of VPNs can be overwhelming, especially for beginners. VPN protocols might seem like random combinations of letters and numbers without any clear meaning. To simplify things, I’ll explain the key differences between the protocols used by…

Read more →

  Financial Business and Consumer Solutions (FBCS), a debt collection agency, has announced that a data breach in February 2024 has now affected 4.2 million people in the U.S. This is a drastic rise from previous reports and underscores the…

Read more →

Indian Government to Enforce Robust Cybersecurity Measures < div> The Indian Government has done it again, reinforcing its main strategies to improve cyber defenses and protect its citizens in the digital space. In April 2024, the Indian government released a…

Read more →

  Google Cloud’s Mandiant cyber researchers have upgraded Andariel, also known as Onyx Sleet, Plutonium, and Silent Chollima, to an official advanced persistent threat (APT) group, alerting that it is targeting extremely sensitive atomic secrets and technology as North Korea…

Read more →

  PNP Anti-Cybercrime Group has again issued an advisory urging the public, particularly the elderly, to be vigilant about fraudulent phone calls made by falsely claiming to be bank employees, who attempt to trick them into giving them credit card…

Read more →

  Several major Russian banks experienced distributed denial-of-service (DDoS) attacks, disrupting their online services and mobile apps. On Wednesday, local media reported that state-owned VTB Bank was among those affected. The bank informed the state news agency TASS that an…

Read more →

  American cybersecurity firm KnowBe4 recently discovered that a new hire, brought on as a Principal Software Engineer, was actually a North Korean state actor. This individual attempted to install data-stealing malware on the company’s devices, but the threat was…

Read more →

  On Wednesday, July 24, Union Minister of State for Communications Chandra Shekar Pemmasani revealed the breach at state-owned telecom operator Bharat Sanchar Nigam Limited (BSNL) in the Lok Sabha. The breach occurred on May 20, the Minister stated in a…

Read more →

A Minnesota-based spyware company has been hacked, exposing thousands of devices worldwide under its covert surveillance, TechCrunch has learned. A source familiar with the breach provided TechCrunch with files from the company’s servers, detailing device activity logs from phones, tablets,…

Read more →

In recent years, Latin America (LATAM) has become a favourite target for threat actors, especially those attacking financial organizations. The recent report by Security Intelligence titled “Unveiling the Latest Banking Threats in LATAM,” explains the changing scenario of banking Trojans…

Read more →

  According to Maharashtra Cyber, which reported the recovery of 31.89 crores out of 40 crores allegedly fraudulently transferred from IndusInd Bank to 20 different mule accounts on Friday, the agency said. As a result of the fraud, more than…

Read more →

  Federal prosecutors announced the indictment of Rim Jong Hyok, a North Korean military intelligence operative, for his role in a conspiracy to hack into American healthcare providers, NASA, U.S. military bases, and international entities.  The indictment, unveiled on July…

Read more →

Aims to reach 1 Billion followers: Telegram founder Telegram, a famous messaging app crossed 900 million active users recently, it will aim to cross the 1 billion milestone by 2024. According to Pavel Durov, the company’s founder, it also plans…

Read more →

  A search warrant has been issued for the house of a sixteen-year-old teen who has been implicated in hacking multiple government and private organisation websites by the Philippine National Police’s Anti-Cybercrime Group (PNP-ACG). Brig. Gen. Ronnie Cariaga, director of…

Read more →

  Recent reports have suggested that employee data belonging to Piramal Group, including names and email addresses of both current and former staff members, may have been compromised and offered for sale on the dark web. These allegations have understandably…

Read more →

  Several pharmacy groups joined several healthcare providers in suing Change Healthcare over the March cyberattack on their system that left it vulnerable to cyberattacks. There is an allegation that some healthcare providers will still have to wait for delayed…

Read more →

  On Friday, a critical software update by cybersecurity firm CrowdStrike led to a massive outage, affecting around 8.5 million Windows machines globally. This incident serves as a stark reminder of the importance of preparedness for IT disruptions. Experts from…

Read more →

Positive trend: AI and vulnerability management We are in a fast-paced industry, and with the rise of technological developments each day, the chances of cyber attacks always arise. Hence, defense against such attacks and cybersecurity becomes paramount.  The latest research into…

Read more →

  A recent zero-day vulnerability in Telegram for Android, dubbed ‘EvilVideo,’ has been exploited by attackers to send malicious Android APK payloads disguised as video files. This significant security flaw was first brought to light when a threat actor named…

Read more →

  In a surprising announcement, Google confirmed that it will not be eliminating tracking cookies in Chrome, impacting the browsing experience of 3 billion users. The decision came as a shock as the company struggled to find a balance between…

Read more →

  Last Friday, a glitch in the tech firm led to a global disruption impacting cross-sector activities. Hospitals, health clinics, and banks were impacted; airlines grounded their planes; broadcasting firms were unable to broadcast (Sky News went off the air);…

Read more →

  A leading Enterprise Resource Planning (ERP) company based in Mexico inadvertently left an unsecured database online, exposing sensitive information on hundreds of thousands of users. This was discovered by cybersecurity researcher Jeremiah Fowler, who reported his findings to Website…

Read more →

  It has been reported that the computer system at the largest trial court in this country has been infected by ransomware, causing the system to crash. Superior Court officials said they were investigating the incident. As soon as the court…

Read more →