Zoom Installer Flaw Can Give Attackers Root Access To Mac: Report
A security researcher has found a way that an attacker could leverage the macOS version of Zoom to gain access to the entire operating system. According to The Verge, details of the exploit were released in a presentation by Mac security specialist Patrick Wardle at…
US Govt Will Pay You $10 Million For Info On Conti Ransomware Members
The U.S. State Department announced a $10 million reward for information on Conti ransomware members, including showing the face of one of the members for the first time. Conti is extremely damaging ransomware due to the speed with which encrypts data and spreads to other…
Microsoft Fixes 141 Bugs, Including 2 Zero-Day Vulnerabilities
Microsoft has released patches for 141 bugs in its August 2022 Patch update, including two previously undisclosed (zero-day) flaws, of which one is actively being exploited. The total patch count for the August 2022 Patch update includes 20 flaws in Edge that Microsoft had previously…
Hackers Exploited Crypto Platform Renbridge To Launder $540 Million
More than half a billion dollars have been laundered in crypto assets originating from theft, fraud, ransomware and various other types of criminal activity since 2020, a new report has revealed. The report by Blockchain analysis group Elliptic said one cross-chain bridge in particular —…
Chinese Hackers Attack Govt Ministries, Military Plants Globally
China-based hackers attacked military-industrial plants, research institutes, government agencies, and ministries in several countries and were able to even hijack the IT infrastructure of some, taking control of systems used to manage security solutions, a new report has revealed. Researchers at cyber-security firm Kaspersky detected…
Enterprise Software Vendor Twilio Hacked In Phishing Attack
US-based enterprise software vendor company Twilio on Monday said it has been hacked as someone gained “unauthorized access” to information related to its customer accounts. Twilio has more than 150,000 customers, including Facebook and ride-hailing major Uber. “On August 4, 2022, Twilio became aware of…
Twitter Confirms July Data Breach That Affects 5.4 Million Accounts
The microblogging site Twitter has confirmed a recent data breach was caused by a now-patched zero-day vulnerability used to link email addresses and phone numbers to users’ accounts, allowing a threat actor to compile a list of 5.4 million user account profiles. While Twitter is forthcoming…
EPFO Pension Scheme Holders’ Data Exposed Online, Claims Security Researcher
A Ukraine-based cybersecurity researcher and journalist has claimed that about 288 million personal records, containing the full name, bank account number, and nominee information of the Employees’ Pension Scheme (EPS) holders in the Employees’ Provident Fund Organisation (EPFO), were exposed online before being taken off…
Indian Govt Blocked 348 Apps For Collecting Users’ Info
Amid rising complaints against mobile apps, the Centre has identified and blocked 348 apps developed by various countries, including China, for allegedly collecting user information for profiling citizens and transmitting it overseas in an unauthorized manner, the Parliament was told on Wednesday. “The Ministry of…
US Man Made $25 Million By Unlocking Smartphones With Stolen Passwords
A former owner of a T-Mobile store in the US, guilty of using stolen credentials to unlock “hundreds of thousands of cellphones”, made around $25 million from the illegal scheme. According to the US Department of Justice, Argishti Khudaverdyan, 44, has been found guilty by…
Hackers Using Malicious Gmail, Microsoft Edge Extension To Spy On Emails
A group of hackers from North Korea is using a malicious Google Chrome or Chromium-based Microsoft Edge extension to spy on user email accounts. The malicious extension by the hacker group titled ‘SharpTongue’ is capable of stealing email content from Gmail and AOL, according to…
Scam Robotexts Are Rising Threat: FCC
The FCC’s Robocall Response Team is alerting consumers to the rising threat of robotexts. Substantial increases in consumer complaints to the FCC, reports by non-government robocall and robotext blocking services, and anecdotal and news reporting make it clear that text messages are increasingly being used…
Microsoft Catches Spyware Group Targeting Customers Using Windows Bugs
Microsoft has caught an Austrian company selling spyware based on multiple Windows and Adobe zero-day exploits to attack its customers. The Microsoft Threat Intelligence Center (MSTIC) and the Microsoft Security Response Center (MSRC) found that the spyware developer — officially named DSIRF and codenamed KNOTWEED…
Paytm Denies Data Breach Affecting 3.4 Million Users’ Info
Firefox Monitor claimed that Paytm suffered a massive data breach that may have exposed the data of over 3.4 million users. However, the digital payments leader said on Wednesday that the data of its users is “completely safe”. A Paytm Mall spokesperson said that the…
Hackers Steal $6 Million From Blockchain Music Platform Audius
The decentralized music streaming platform Audius was hacked over the weekend, with threat actors stealing over 18 million AUDIO tokens worth approximately $6 million. Hello everyone – our team is aware of reports of an unauthorized transfer of AUDIO tokens from the community treasury. We…
Hacker Selling Data Of 5.4 Million Twitter Users For 30k
A threat actor known as ‘devil’ is selling database containing phone numbers and email addresses belonging to 5.4 million twitter accounts for $30,000. The database contains info about various accounts, including celebrities, companies, and random users. “Hello, today I present you data collected on multiple…
T-Mobile Agrees To $350 Million Settlement Over Its Massive 2021 Data Breach
T-Mobile has agreed to pay $500 million to settle a class-action lawsuit stemming from the 2021 hack that it says exposed around 76.6 million US residents’ data. According to the proposed agreement filled on Friday, T-Mobile will put $350 million into a settlement fund to…
Neopets Data Breach Exposes 69 Million Members’ Personal Info
Neopets has suffered a data breach that exposed the personal information of over 69 million members. Neopets is a virtual pet website. Users can own virtual pets (“Neopets”) and buy virtual items for them using one of two virtual currencies. One currency, called Neopoints, can…
Justice Department Seizes and Forfeits Approximately $500,000 From North Korean Ransomware Actors
The Justice Department today announced a complaint filed in the District of Kansas to forfeit cryptocurrency paid as ransom to North Korean hackers or otherwise used to launder such ransom payments. In May 2022, the FBI filed a sealed seizure warrant for the funds worth…
6 Bugs In Popular Chinese GPS Tracker Put 1.5 Million Vehicles At Tracking Risk
Cyber-security researchers have discovered six severe vulnerabilities in a popular Chinese-built vehicle GPS tracker, potentially allowing hackers to track individuals without their knowledge, remotely disable fleets of corporate supply and emergency vehicles, abruptly stop civilian vehicles on dangerous highways, and more. Cyber-security company BitSight said…
Latest Posts
Advertisement
Editor's Choice
Subscribe
Cybersecurity Newsletter
You have Successfully Subscribed!
Sign up for cybersecurity newsletter and get latest news updates delivered straight to your inbox. You are also consenting to our Privacy Policy and Terms of Use.
Stay connected