Tag: CySecurity News – Latest Information Security and Hacking Incidents

  jThe U.S. government has acknowledged that several federal agencies have been targeted in cyberattacks that exploit a security vulnerability found in a popular file transfer tool. The Cybersecurity and Infrastructure Security Agency (CISA) confirmed the intrusions in a statement…

Read more →

On Wednesday, a group of seven countries, including the United States, Canada, Britain, France, Germany, Australia, and New Zealand, collectively identified the primary ransomware threat worldwide as the criminal organization known as “LockBit.” This digital extortion gang operates under the…

Read more →

  In recent days, BreachForums, one of the most well-known dark web hacking forums on the dark web, was reported to be shut down after one of its top administrators was arrested by United States federal authorities, including the Federal…

Read more →

ESET researchers have recently discovered a new Android malware campaign, apparently infecting devices with an updated version of GravityRAT, distributed via messaging apps BingeChat and Chitaco. The campaign has been active since August 2022. According to ESET researcher Lukas Stenfanko…

Read more →

  Internal strife is common among ransomware gangs. They argue, they fight, and they establish allies only to rapidly break them. Take, for instance, the leak of malware code from Babuk, which was compromised in 2021 by hackers enraged at…

Read more →

The rise of deepfake technology has ushered in a new era of concern and vulnerability for individuals and organizations alike. Recently, the Federal Bureau of Investigation (FBI) issued a warning regarding the increasing threat of deepfake crimes, urging people to…

Read more →

  Trend Micro has issued a warning about the effectiveness of a tool called BatCloak, which is designed to conceal batch files and has enabled malicious BAT files to evade detection by antivirus engines with an impressive success rate of…

Read more →

  The mortgage lending sector is experiencing a significant revolution driven by advanced technologies like artificial intelligence (AI) and machine learning. These cutting-edge technologies hold immense potential to revolutionize the lending process.  However, alongside the benefits, there are also valid…

Read more →

  After protesters used various mobile file-sharing services such as AirDrops and Bluetooth to evade censorship, spread protest messages, and impose more restrictions on their use, China is restricting the use of these services to impose more restrictions and expand…

Read more →

A critical vulnerability has recently been discovered in the WooCommerce Gateway plugin for WordPress. Apparently, it has compromised sensitive customer information related to their orders to unauthorized data. On WordPress e-commerce sites, the plugin supported payment processing for over 900,000…

Read more →

  Self replication, once the stuff of science fiction, is now a reality thanks to artificial intelligence, and the recently unveiled AI twin product Doppl is changing the game in terms of our digital selves.  Doppl will create AI twins—very…

Read more →

  According to a report from The Identity Defined Security Alliance (IDSA), organizations are still struggling with incidents related to identity, with a concerning 90% of them reporting such incidents within the past year. This marks a 6% increase compared…

Read more →

  During Oracle’s recent earnings call, company founder Larry Ellison made an exciting announcement, confirming the launch of a new generation AI service in collaboration with Cohere. This partnership aims to deliver powerful generative AI services for businesses, opening up…

Read more →

Today, Salesforce unveiled AI Cloud, an enterprise AI solution designed to enhance productivity throughout its suite of applications. This innovative platform integrates multiple Salesforce technologies, including Einstein, Data Cloud, Tableau, Flow, and MuleSoft, to deliver real-time generative AI capabilities that…

Read more →

  A new data breach has been reported by Have I Been Pwned, revealing that Zacks, a prominent financial research and analysis firm, has suffered a massive security incident that has impacted approximately 8 million users. The breach highlights the…

Read more →

  A company’s SharePoint Online environment has been successfully targeted by the Omega ransomware group to extort money from it. This is instead of using compromised endpoints, the most common method of launching such attacks. The threat group appears to…

Read more →

  The FBI is alerting email users regarding a potentially harmful fraud. Victims may get into major legal difficulties with their employers or experience bank account theft.  This fraud, known as the “Business Email Compromise,” allows thieves to steal hundreds…

Read more →

  Vietnamese public companies are facing an ongoing targeted campaign involving the SPECTRALVIPER backdoor. This backdoor, previously undisclosed and in the x64 variant, offers a range of capabilities such as manipulating files, impersonating tokens, and loading PE files. Elastic Security…

Read more →

According to an American Enterprise Institute (AEI) study, threat actors have been targeting high profile companies, that are exceptionally profitable, hold high value and have generous spending on advertisings, since year 1999. FBI confirmed that the potential losses from cybercrime…

Read more →

A mother, in America, heard a voice in her phone that seemed chillingly real – it was her daughter apparently sobbing, following which a man’s voice took over that demanded a ransom amount. However, the girl in the phone was…

Read more →

  ESET’s cybersecurity researchers have recently uncovered a relatively new hacker outfit that has had great success targeting organisations all around the world.  The researchers are still unsure of the group’s eventual goal, which goes by the name of Asylum…

Read more →

  Artificial intelligence (AI) is a subject that sparks divergent opinions among experts, who generally fall into one of two camps: those who believe it will significantly enhance our lives and those who fear it may lead to our demise. …

Read more →

  Extreme Networks has revealed that it has fallen victim to the rapidly evolving MOVEit cyber attack. As a consequence, customers who rely on the network hardware and services provided by Extreme Networks may face the potential threat of having…

Read more →

  Amidst concerns over a potential data breach in India’s CoWIN app, the Union Minister, Rajeev Chandrasekhar, has stated that the app or its database does not appear to have been directly breached. The CoWIN app has been widely used…

Read more →

    The Health Sector Cybersecurity Coordination Center (HC3) has issued a warning to healthcare providers in its new analyst note regarding the MedusaLocker ransomware, the latest variant used to encrypt healthcare systems.  Interestingly, while the Medusa operation was launched…

Read more →

  Internet of Things (IOT) devices are increasingly emerging as the preferred targets of attackers due to their lack of built-in security and persistent default password usage. It should come as no surprise that hackers choose to target IoT devices…

Read more →

  Nvidia, a leading technology company known for its advancements in artificial intelligence (AI) and graphics processing units (GPUs), has recently come under scrutiny for potential security vulnerabilities in its AI software. The concerns revolve around the potential exposure of…

Read more →

Two weeks following a cyberattack on May 29, Idoha Falls’ Mountain View Hospital is apparently still running in order to resolve their issue. Even while it has been difficult for staff to deal with the situation and for people to…

Read more →

  Phishing is the most common and dangerous type of online threat. It involves hackers pretending to be trustworthy companies to trick people into sharing their account information or downloading harmful files. That’s why it’s crucial to learn how to…

Read more →

  In one of the earliest, biggest, and most widely publicized bitcoin robberies in the world, in the case of the collapsed cryptocurrency exchange Mt. Gox, the United States charged two Russian nationals.  A criminal complaint was filed by the…

Read more →

  There is talk that Meta, the Mark Zuckerberg company, is working on developing a rival for Twitter shortly since it has been announced that it wants public figures to join it, including the Dalai Lama and Oprah Winfrey, who…

Read more →

Fortinet’s FortiGuard Labs, in their recent reports, discovered that ransomware threats are still at the top of the list in terms of cyber threat, with the cases only growing on a global level. Likewise, Fortinet discovered that in 2022, 84%…

Read more →

  A suspected Belarusian hacking group has targeted Ukraine; ‘Unusual’ crime cross-over. According to security researchers, a hacker gang aligned with Belarusian government interests appears to be combining cybercrime with cyberespionage. The group, known as Asylum Ambuscade, since 2020 has…

Read more →

  A trial is happening at Aberdeen Royal Infirmary to test if artificial intelligence (AI) can help radiologists review many mammograms each year. In the trial, AI helped detect early-stage breast cancer in June, who is a healthcare assistant and…

Read more →

  Srikanth Nadhamuni, who formerly held the position of chief technology officer (CTO) of Aadhar between 2009 and 2012, believes that the tremendous improvement we are seeing in the field of artificial intelligence, particularly generative AI, poses a clear and…

Read more →

  In a show of protest against Reddit’s new pricing policy, thousands of subreddits are planning to go private for 48 hours starting on Monday. This move aims to bring attention to concerns about the platform’s recent changes and their…

Read more →

Think of a drastic surge in advanced persistent threats (APTs), malware attacks, and organizational data breaches. An investigation on the case scenario revealed that these attacks are actually developed by threat actors who have access to generative AI. However, it…

Read more →

The annual Verizon Data Breach Investigations Report (DBIR) has revealed a significant increase in social engineering breaches, which have resulted in a surge in ransomware costs. The report highlights the growing threat landscape and the urgent need for organizations to…

Read more →

  In a recent report by TechCrunch, it was revealed that a technology vendor experienced a significant cyber incident that led to the theft of approximately 500,000 personal health records. This breach, which occurred earlier this year, has raised serious…

Read more →

  Security experts have uncovered shocking evidence that the notorious Clop ransomware group has been spending extensive amounts of time testing zero-day vulnerabilities on the popular MOVEit platform since 2021, according to recent reports. This study has raised a lot…

Read more →

A new encryptor named BlackSuit is currently being tested by the notorious Royal ransomware gang. This encryptor bears striking resemblances to their customary encryption tool, suggesting it may be an evolved version or a closely related variant.  In January 2023,…

Read more →

  Security professionals are alerting users regarding a vulnerability in the Microsoft Visual Studio installer that enables hackers to distribute harmful extensions to application developers while posing as a trusted software vendor. From there, they may sneak into development environments…

Read more →

  For a Windows local privilege escalation vulnerability that was patched as part of the May 2023 Patch Tuesday, researchers have published a proof-of-concept (PoC) exploit.  The Win32k subsystem (Win32k.sys kernel driver) controls the operating system’s window manager and handles…

Read more →

  According to a recent blog post by Elliptic, a blockchain intelligence firm, users of Atomic Wallet may have been targeted by Lazarus, the notorious hacking group from North Korea. The post highlights that Atomic Wallet users could have potentially…

Read more →

A recent study by the data watchdogs describes how organizations in future may as well use employee or potential employees’ brain-monitoring technology. However, the Information Commissioner’s Office warns that if “neurotech” is not created and applied correctly, there is a…

Read more →

  British consumers who purchase crypto assets from October 1st will be entitled to a mandatory 24-hour “cooling-off” period, to strengthen consumer protections. As a consequence, consumers will have a better chance of avoiding cryptocurrency scams.  Reuters reports that the…

Read more →

  A cybercriminal group, known as Clop ransomware, claims to have erased the sensitive personal data of up to 100,000 Nova Scotians that was in their possession. However, cybersecurity experts advise the province to be skeptical of this assertion.  According…

Read more →

In today’s interconnected world, the Internet has become an indispensable resource, particularly for the younger generation. Gone are the days of flipping through encyclopedias or visiting travel agencies to book flights or hotels. The Internet has revolutionized the way we…

Read more →

  In the last few days, several distributed denial-of-service (DDoS) attacks have been launched against Microsoft Outlook, one of the world’s leading email providers. Anonymous Sudan, a hackers’ collective, has launched DDoS attacks against Microsoft Outlook. The attacks, which aim…

Read more →

  Google stated last month that Gmail users would start noticing blue tick marks next to brand logos for senders taking part in the program’s Brand Indicators for Message Identification. BIMI and its blue tick mark were intended to take…

Read more →

In today’s digital age, preserving privacy and security while verifying information is an ongoing challenge. Fortunately, zero-knowledge proofs (ZKPs) have emerged as a promising solution.  ZKPs enable the verification of sensitive information without revealing any underlying data, ensuring a higher…

Read more →

  According to a recent study conducted by Salesforce, marketing professionals are optimistic about the potential impact of generative AI. However, they are still in the process of investigating and learning about the most effective ways to use this technology…

Read more →

Over 60,000 adware apps disguised as cracked versions of popular apps have been discovered, posing a significant threat to Android device users. These malicious apps have been circulating for the past six months, secretly installing adware and compromising user privacy.…

Read more →

Zellis Cyberattacks Exploiting MOVEit British Airways (BA), Boots, and BBC have recently been investigating an alleged cyber incident. The attack, apparently carried out by a Russia-based criminal gang, included the theft of the personal data of the companies’ employees. BA…

Read more →

  As a result of a continuing major attack, more than 100,000 people have been alerted that their personal information is in the hands of cybercriminals. Among the firms whose employees have been affected by the MoveIt data leak are…

Read more →

  During this year’s WWDC, Apple announced its latest privacy and security innovations. This reaffirms the company’s commitment to respecting individual privacy as one of mankind’s foundational rights. As part of these updates, Safari Private Browsing has been significantly improved.…

Read more →

  A rising number of organisations, including the BBC, British Airways, Boots, and Aer Lingus, are being impacted by a widespread attack. Staff members have received warnings that personal information, including social security numbers and, in some circumstances, bank information,…

Read more →

In March, 3CX disclosed a supply chain attack that surprised researchers investigating it. They discovered that the attack had an unusual and alarming origin: another company’s supply chain attack. This revelation in the “Inception” attack has caused concern among information…

Read more →

A recent software breach in Nova Scotia has raised concerns as the extent of the attack remains unknown. Microsoft has identified the ransomware gang known as Clop as the primary culprit behind the breach, highlighting the ever-growing threat of cybercriminals…

Read more →

  Coinbase, a prominent cryptocurrency exchange, acknowledges the profound potential of artificial intelligence (AI) in the realm of digital currencies. Being at the forefront of the industry, Coinbase recognizes the considerable influence AI can wield in transforming the utilization, comprehension,…

Read more →

   As a result of a global data breach, some Nova Scotians’ personal information has been taken. Colton LeBlanc, Minister of Cyber Security and Digital Solutions, made the alarming announcement during a last-minute video news briefing on Sunday afternoon. “The…

Read more →

  In a recent Magecart credit card theft campaign, legitimate websites are taken over and used as “makeshift” command and control (C2) servers to inject and conceal skimmers on selected eCommerce sites. An online store breached by hackers to insert…

Read more →

In recent times, Facebook scams and fraud have been on the rise, with scammers finding new ways to exploit the platform for their malicious activities. The latest attention-grabbing scam to hit Facebook is the “Look who died” scam, which targets…

Read more →

  Security consultants say hackers can steal information from Google Drive accounts through a method known as password mining. It is all done to conceal the fact that they have taken away a lot of information without leaving any trace…

Read more →

Google has recently issued a warning to its 1.8 billion Gmail users following a security flaw that was discovered in one of its latest security functions. The feature, Gmail checkmark system was introduced to assist users distinguish between certified businesses…

Read more →

The rapid advancement of artificial intelligence (AI) technology has opened up a world of exciting possibilities, but it also brings to light important concerns regarding privacy and security. One such emerging issue is the creation of AI clones based on…

Read more →

Disabling Read Receipts: Taking Control of Your Email Privacy In today’s fast-paced tech-dominated world, the pressure to respond to emails and messages immediately can be overwhelming. But what if you want to reclaim your time and manage it on your…

Read more →

Online sellers have become the latest targets of a new information-stealing malware campaign that aims to compromise their sensitive data. Security researchers have discovered a strain of malware called Vidar being deployed in this campaign, with attackers using various methods…

Read more →

  Some of the largest mental health support organisations in Britain gave Facebook information about private web browsing for its targeted advertising system.  The data was delivered via a monitoring mechanism installed in the charities’ websites and includes details of…

Read more →

US-based legal technology platform, Casepoint has apparently investigated a potential cybersecurity incident following claims of threat actors, who have hacked the platform claiming terabytes of sensitive data. Casepoint offers legal advice for governmental organizations, businesses, and law firms in litigation,…

Read more →

  Corporate strategies are being transformed by ESG considerations – which are now becoming a permanent feature of the economic services sector as they transform corporate strategies. A change in ESG practices cannot be brought about by internal or external pressures if…

Read more →

  Elliptic, a cryptocurrency analytics firm, is incorporating artificial intelligence into its toolkit for analyzing blockchain transactions and risk identification. The company claims that by utilizing OpenAI’s ChatGPT chatbot, it will be able to organize data faster and in larger…

Read more →

  In a recent study, Indian analysts discovered a powerful malware known as DogeRAT. This malware infects several devices and targets a wide range of industries. Social media apps spread this malicious software by pretending to be popular Android applications…

Read more →

  Security experts are raising the alarm after hackers were detected using a recently identified vulnerability in a well-known file transfer tool that is used by thousands of organisations to start a new wave of massive data exfiltration assaults.  The…

Read more →

The recent Future Combat Air & Space Capabilities Summit hosted by the Royal Aeronautical Society in London brought together experts, industry leaders, and military personnel worldwide to discuss the future of combat air and space capabilities.  The two-day conference covered…

Read more →

Ransomware has been a persistent and highly lucrative threat in the cybersecurity landscape, and one group that has garnered significant attention is Conti. Known for their sophisticated tactics and high-profile attacks, Conti has left a lasting impact on the cybersecurity…

Read more →

Reserved Bank of India (RBI), India’s central bank and regulatory body is all set to enhance the safety and security of digital payments amidst the raising cyber risks, the draft regulations for payment system operators (PSOs) announced on Friday. The…

Read more →

  Spyboy, a threat actor, has been actively advertising the “Terminator” tool on a hacking forum predominantly used by Russian speakers. The tool supposedly possesses the ability to disable various antivirus, XDR, and EDR platforms. However, CrowdStrike has dismissed these…

Read more →

Netflix’s recent ban on password sharing may have initially appeared as a step forward for cybersecurity. However, emerging data suggest that this policy change has led some users to explore alternative streaming options on the Dark Web. In addition to…

Read more →

  Since the early days of the music industry, musicians, writers, and other creatives have spoken out about the unfairness of royalty share payments. This is when their works are played on Spotify and Apple Music. There will be a…

Read more →

Apparently, it has turned out that what is known to be the world’s smallest country has also been named the most literate in terms of cybersecurity: Vatican City. As per the National Privacy Test carried out by one of the…

Read more →

  In 2023, the Dark Pink APT cyber group has been spotted targeting government, military, and education organisations in Indonesia, Brunei, and Vietnam. The threat group has been active since at least mid-2021, primarily targeting companies in the Asia-Pacific region,…

Read more →

  Netflix made a policy error last month that might provide consumers with long-term security benefits. For other business-to-consumer (B2C) firms wishing to enhance client account security, this unintentional pro-customer safety action may serve as a lesson.  On May 23,…

Read more →

Scandinavian Airlines (SAS) is currently facing a severe cybersecurity threat as the hacktivist group Anonymous Sudan continues its relentless distributed denial-of-service (DDoS) attacks. The group recently raised its ransom demand from an initial $3,500 to a staggering $3 million. These…

Read more →

  Scandinavian Airlines (SAS) has recently become the target of a series of Distributed Denial of Service (DDoS) attacks, resulting in a $3 million ransom demand from a hacker group called Anonymous Sudan. This incident highlights the increasing sophistication and…

Read more →

  Harvard Pilgrim Health Care, one of the largest health insurance providers in the United States, has recently experienced a major ransomware attack that has affected approximately 2.5 million individuals. The incident has raised serious concerns about data security and…

Read more →

  India is going digital as more and more individuals use the internet to shop, order food, and complete other activities. According to a Times of India (TOI) report, in March 2023, Unified Payment Interface (UPI) transactions reached a record…

Read more →

  A recent incident has shed light on the alarming misuse of artificial intelligence (AI) through the deployment of advanced ‘deepfake’ technology, in which a man was deceived into losing a substantial amount of money exceeding Rs 5 crore. Deepfakes,…

Read more →

  As online financial transactions became simpler and easier to conduct, the number of fraudulent transactions involving digital financial transactions also increased. Taking advantage of the increased sophistication of the fraudsters does not seem to be a problem. Cybercriminals, especially…

Read more →

Meta, in a recent report, stated how its inability to transfer data “between countries and regions,” where the company operates, may alter its ability to provide services to its users. The company added that this issue may further affect its…

Read more →

  In yet another instance of a cyberattack affecting healthcare facilities in the United States, a hospital representative has confirmed to CNN that an Idaho-based hospital has been redirecting ambulances to alternative medical facilities for over 24 hours. This diversion…

Read more →

  ChatGPT, a popular AI language model developed by OpenAI, has gained widespread usage in various industries for its conversational capabilities. However, it is essential for users to be cautious about the information they share with AI models like ChatGPT,…

Read more →

  Over the last few years, companies in the Middle East have faced a series of targeted attacks using an open-source tool used by threat actors as kernel drivers. Fortinet researchers discovered a sample of the so-called Donut tool while…

Read more →

  The Information Commissioner’s Office (ICO), the data watchdog, has stated that it has received around 90 reports regarding possible breaches connected to Capita.  In the realm of data protection in the UK, the Information Commissioner’s Office (ICO) takes on…

Read more →

Varonis Threat Lab researchers recently discovered that Salesforce ‘ghost sites,’ that are no longer in use, if improperly deactivated and unmaintained may remain accessible and vulnerable of being illicitly used by threat actors. They noted how by compromising the host…

Read more →

  Most people have an image of hackers in their minds. In our minds, imagery from motion pictures depicting skilled cybercriminals breaking into guarded networks practically instantly while typing at breakneck speeds come to mind. These are not Script kids,…

Read more →

  A ransomware attack may have compromised nearly nine million individuals’ personal information in the United States. This is due to the harm caused by an apparent attack on a dental health insurer — one of the country’s largest. According…

Read more →

Cybercriminals are increasingly targeting health organizations of all sizes. The rise in healthcare-related cyberattacks suggests that smaller healthcare providers are experiencing a higher rate of cybercrime incidents.  Recently Food and Drug Administration has disclosed that ransomware attacks targeting medical facilities…

Read more →

  In accordance with a new survey from Palo Alto Networks, an increasing proportion of CEOs are realizing that cyberattacks pose a greater existential danger than economic instability.  Palo Alto Research discovered, based on a poll of 2,500 CEOs from…

Read more →

  Since ChatGPT’s inception in November of last year, it has consistently shown to be helpful, with people all around the world coming up with new ways to use the technology every day. The strength of AI tools, however, means…

Read more →