Google Workspace Bug Allows Untraceable Data Theft From Drive Files
Cybersecurity researchers have discovered a significant forensic security deficiency in Google Workspace that enables a hacker to exfiltrate data in Google Drive without any trace.
Bijay Pokharel,
June 5, 2023
1 min read
Cybercriminals Exploit Legitimate Websites As Hosts For Credit Card Stealer Scripts
Cybersecurity researchers at Akamai have made a concerning discovery, unearthing a new Magecart-style web skimmer campaign that poses a serious threat to digital commerce websites.
Bijay Pokharel,
June 5, 2023
1 min read
Google Removes Malicious Chrome Extensions With 75 Million Installs From Web Store
Google has removed 32 malicious extensions from the Chrome Web Store, totaling 75 million downloads, that could alter search results and push spam or unwanted ads.
Bijay Pokharel,
June 4, 2023
1 min read
Russia Says US Hacked Thousands Of iPhones In Spy Plot
Russian cybersecurity firm Kaspersky said it had uncovered an American espionage operation that compromised thousands of iPhones using an iOS vulnerability that installed malware via iMessage zero-click exploits.
Bijay Pokharel,
June 2, 2023
1 min read
Managed Care of North America (MCNA) Data Breach Exposes 9 Million Patients’ Info
The personal information of nearly nine million people in the US has been compromised in an apparent ransomware attack on one of the country's largest dental health insurers.
Bijay Pokharel,
June 1, 2023
2 min read
Toyota Admits Another Data Leak Exposing 2.6k Car Owners’ Info
Toyota has admitted another incident in which data of around 260,000 car owners was exposed to the internet for a decade.
Bijay Pokharel,
June 1, 2023
1 min read
Privilege Escalation Vulnerability Patches In ReviewX WordPress Plugin
This vulnerability makes it possible for authenticated attackers to grant themselves administrative privileges via a user meta update.
Bijay Pokharel,
June 1, 2023
3 min read
Facebook Users Put On Alert Over New ‘Look Who Just Died’ Scam
Billions of Facebook users in Australia have been warned about a new scam called "Look who just died", which is designed to steal personal information and money by claiming the death of someone they know.
Bijay Pokharel,
May 31, 2023
2 min read
Critical Jetpack Patch Forcefully Installed on 5 Million WordPress Sites
Automattic has started force installing a security patch on millions of websites today to address a critical vulnerability in the Jetpack WordPress plug-in.
Bijay Pokharel,
May 31, 2023
1 min read
LinkedIn Scams Via Fake Job Offers, Phishing On The Rise: Report
Fake job offers and phishing scams are on the rise on LinkedIn and half of the businesses (56 percent) globally experienced at least one LinkedIn scam this year, a report has shown.
Bijay Pokharel,
May 30, 2023
2 min read
48 US States Sue Telecom Company Over Billions Of Illegal Robocalls
At least 48 US states have sued a telecom company called Avid Telecom for allegedly routing 7.5 billion illegal and spoofed robocalls to millions of residents on the 'Do Not Call Registry'.
Bijay Pokharel,
May 29, 2023
2 min read
Russia-Linked New Malware Can Cause Electric Power Disruption Globally
Cyber-security researchers have spotted a new Russia-linked malware that is designed to cause electric power disruption by attacking critical infrastructure systems and electric grids.
Bijay Pokharel,
May 26, 2023
2 min read
Tesla Leak Exposes Thousands Of Full Self-Driving Safety Complaints
A Tesla whistleblower has leaked 100GB of data to the German outlet Handelsblatt containing thousands of customer complaints that raise serious concerns about the safety of Tesla’s Full Self-Driving (FSD) features.
Bijay Pokharel,
May 26, 2023
1 min read
Android Recording App With 50k Installs Stole Microphone Recordings, Files
Cyber-security researchers have identified a trojanised Android app that was available on the Google Play store with over 50,000 installs, extracted microphone recordings and stole files with specific extensions from the users.
Bijay Pokharel,
May 26, 2023
2 min read
Chinese State-Sponsored Hackers Targets US Critical Infrastructure: Microsoft
Microsoft has uncovered stealthy and targeted malicious activity focused on post-compromise credential access and network system discovery aimed at critical infrastructure organizations in the United States.
Bijay Pokharel,
May 25, 2023
5 min read
Hackers Target 1.5M WordPress Sites With Cookie Consent Plugin Exploit
The vulnerability offers unauthenticated attackers the ability to add malicious JavaScript to a website, potentially allowing redirects to malvertizing sites as well as the creation of malicious admin users, both of which are appealing use cases for attackers.
Bijay Pokharel,
May 25, 2023
2 min read
SuperVPN Data Breach Exposed 360 Million Records Online
Cybersecurity security researcher Jeremiah Fowler discovered non-password protected database containing over 360 million records associated with SuperVPN. The publicly exposed records contained email addresses, device information, and even references to sites that the user visited.
Bijay Pokharel,
May 24, 2023
5 min read
W3 Eden Addresses Authenticated Stored XSS Vulnerability in Download Manager WordPress Plugin
Cross-Site Scripting (XSS) vulnerability patched in W3 Eden’s Download Manager plugin, which is actively installed on more than 100,000 WordPress websites.
Bijay Pokharel,
May 24, 2023
1 min read
Hackers Stole About $400 Million From Crypto Projects In Q1 2023: Report
Hackers stole over $400 million from crypto projects in 40 attacks in the first quarter (Q1) of 2023 in the US, a new report has shown.
Bijay Pokharel,
May 23, 2023
1 min read
Satellite TV Firm Dish Confirms Ransomware Attack, Loses Data Of 300k Workers
Dish has confirmed that hackers stole the personal information of about 3,00,000 employees in a ransomware attack in February.
Bijay Pokharel,
May 23, 2023
1 min read





