Phishing campaign via fake domains A highly advanced phishing campaign targeted maintainers of packages on the Python Package Index (PyPI), utilizing domain confusion methods to obtain login credentials from unsuspecting developers. The campaign leverages fake emails made to copy authentic…
Tag: EN
FBI Warns Against Screen Sharing Amid Rise in “Phantom Hacker” Scam
The Federal Bureau of Investigation (FBI) has issued an urgent alert about a fast-spreading scam in which cybercriminals gain access to victims’ devices through screen-sharing features, allowing them to steal money directly from bank accounts. Known as the “phantom…
Discord Data Breach: Hackers Access IDs, Billing Details and Support Chats
Discord confirms a data breach via a third-party vendor, exposing government-issued photo IDs, names, emails, and limited billing data of users who contacted customer support. Learn the full risk. This article has been indexed from Hackread – Latest Cybersecurity, Hacking…
U.S. CISA adds Smartbedded Meteobridge, Samsung, Juniper ScreenOS, Jenkins, and GNU Bash flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Smartbedded Meteobridge, Samsung, Juniper ScreenOS, Jenkins, and GNU Bash flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Smartbedded Meteobridge, Samsung, Juniper ScreenOS, Jenkins, and GNU…
Event startup Partiful wasn’t stripping GPS locations from user-uploaded photos
The event planning startup, which has raised over $27M from a16z and others, fixed the bug after TechCrunch found that Partiful was not removing granular location data from users’ profile photos. This article has been indexed from Security News |…
CometJacking: One Click Can Turn Perplexity’s Comet AI Browser Into a Data Thief
Cybersecurity researchers have disclosed details of a new attack called CometJacking targeting Perplexity’s agentic AI browser Comet by embedding malicious prompts within a seemingly innocuous link to siphon sensitive data, including from connected services, like email and calendar. The sneaky…
Sam Altman Pushes for Legal Privacy Protections for ChatGPT Conversations
Sam Altman, CEO of OpenAI, has reiterated his call for legal privacy protections for ChatGPT conversations, arguing they should be treated with the same confidentiality as discussions with doctors or lawyers. “If you talk to a doctor about your…
Google Warns of Cl0p Extortion Campaign Against Oracle E-Business Users
Google Mandiant and the Google Threat Intelligence Group are tracking a suspected extortion campaign by the Cl0p ransomware group targeting executives with claims of stealing Oracle E-Business Suite data. The hackers have demanded ransoms reaching up to $50 million,…
Microsoft Cuts Unit 8200’s Cloud Access, Exposing Gaps in Israel’s Digital Sovereignty
An unprecedented development has rattled Israel’s national security establishment. Reports suggest that Microsoft has cut off access to certain Azure cloud and AI services used by the Israel Defense Forces’ elite intelligence branch, Unit 8200. The move follows allegations…
New CometJacking Attack Let Attackers Turn Perplexity Browser Against You in One Click
A groundbreaking cybersecurity vulnerability has emerged that transforms Perplexity’s AI-powered Comet browser into an unintentional collaborator for data theft. Security researchers at LayerX have discovered a sophisticated attack vector dubbed “CometJacking” that enables malicious actors to weaponize a single URL…
New Study Warns Several Free iOS and Android VPN Apps Leak Data
A Zimperium zLabs analysis of 800 free Android and iOS VPN apps exposes critical security flaws, including the Heartbleed bug, excessive system permissions, and non-transparent data practices. Learn how these ‘privacy’ tools are actually major security risks, especially for BYOD…
The Role of Cybersecurity in Effective Business Continuity Planning
Business continuity integrates both people and technology to help organizations anticipate, manage, and recover from disruptions to regular business operations. While business continuity planning includes disaster recovery—the process of restoring IT services after an unexpected outage—its scope extends beyond that.…
Apple and Google Pull ICE-Tracking Apps, Bowing to DOJ Pressure
Plus: China sentences scam bosses to death, Europe is ramping up its plans to build a “drone wall” to protect against Russian airspace violations, and more. This article has been indexed from Security Latest Read the original article: Apple and…
Scanning Activity on Palo Alto Networks Portals Jump 500% in One Day
Threat intelligence firm GreyNoise disclosed on Friday that it has observed a spike in scanning activity targeting Palo Alto Networks login portals. The company said it observed a nearly 500% increase in IP addresses scanning Palo Alto Networks login portals…
Healthcare, Banking and Industry in India Struggle Amid Rising Cyber Attacks
The Indian economy today stands at a crossroads of a profound digital transformation, in which technology has seamlessly woven its way into the fabric of everyday life, in both cities and remote villages. Smartphones and internet connectivity are transforming…
Discord Data Breach – Customers Personal Data and Scanned Photo IDs leaked
A data breach at a third-party customer service provider has exposed the personal data of some Discord users, including names, email addresses, and a small number of scanned government-issued photo IDs. The incident did not compromise Discord’s main systems, and…
October Cybersecurity Month in Review: Insider Threats, AI’s Role, and Cybercrime Trends
In this episode of ‘Cybersecurity Today: Our Month in Review,’ host Jim welcomes a panel including Tammy Harper from Flair, Laura Payne from White Tuque, and David Shipley, CEO of Beauceron Securities. The discussion kicks off with an overview of…
Artists&Clients – 95,351 breached accounts
In August 2025, the “marketplace that connects artists to prospective clients” Artists&Clients, suffered a data breach and subsequent ransom demand of US$50k. The data was subsequently leaked publicly and included 95k unique email addresses alongside usernames, IP addresses and bcrypt…
Hack The Box introduces Threat Range for cyber incident simulation
Hack The Box (HTB), has announced the launch of HTB’s Threat Range, a team-based cyber incident simulation software that offers operational insights for executives and board members. With AI at its core, the company says this new environment extends HTB’s…
Scam Compound Operators: Members of The Four Great Families sentenced to death in China
(photo from BBC article “China sentences 11 members of mafia family to death“) On Monday this week, Chinese authorities sentenced to death 16 members of “The Four Families” for the multitude of crimes they committed while operating scam compounds in…