Category: CYBER SECURITY

Iranian nation-state threat actor Peach Sandstorm (HOLMIUM) has been using password spray attacks to gain access to thousands of organizations in the satellite, defense, and pharmaceutical sectors around the globe.

Global cryptocurrency exchange CoinEx announced that hackers stole large amounts of digital assets from its hot wallets on September 12, 2023. The stolen cryptocurrency is worth an estimated $53 million.

Mozilla has released emergency security updates for its Firefox web browser and Thunderbird email client to patch a critical zero-day vulnerability that is being exploited in attacks.

A massive “cybersecurity issue” at MGM Resorts has forced the hotel and casino company to shut down its slot machines and ATMs.

A cybersecurity firm, Kaspersky, has discovered several malicious Telegram clones for Android on Google Play.

The Ragnar Locker ransomware group has claimed responsibility for an attack on Mayanei Hayeshua, a hospital in Bnei Brak, Israel.

Cybersecurity researchers have discovered a new malware campaign that targets Mac users through malicious ads for Google searches, tricking them into installing the "Atomic Stealer (AMOS)" malware, a new report has said.

A new ransomware group known as Dunghill Leak has claimed that it is the one that hacked the systems of global travel booking giant Sabre.

In April 2021, hackers stole a Microsoft signing key from a Windows crash dump. The key was used to sign malicious software that was used to attack government email accounts.

Atlas VPN has confirmed a zero-day vulnerability that could allow malicious actors to disconnect users' VPN connections and leak their real IP addresses.

Chipmaker NXP Semiconductors has admitted a data breach, alerting customers about a recent incident involving their personal data.

About 83 percent of Indian organizations experienced a cybersecurity incident in the past year, with 48 percent revealing they experienced 10 or more, causing million-dollar losses, a new report said on Tuesday.

Hackers have withdrawn nearly $41 million from cryptocurrency gambling site Stake likely via a stolen private key.

The German Federal Financial Supervisory Authority (BaFin) website has been disrupted by a distributed denial-of-service (DDoS) attack since Friday, September 2, 2023.

Swedish insurance company Trygg-Hansa has been fined $3 million for exposing the personal data of 650,000 customers on its online portal.

Freecycle, a nonprofit organization that facilitates the exchange of used goods, has confirmed a massive data breach that impacted over 7 million users.

Cybersecurity researchers have discovered malicious Signal and Telegram Android apps distributed via the Google Play Store and Samsung Galaxy Store designed to deliver the China-linked "BadBazaar" spyware, a new report has revealed.

A security researcher has discovered serious vulnerabilities in a company that manufactures an internet-controlled chastity device for males that exposed users’ email addresses, plaintext passwords, home addresses, and IP addresses, and -- in some cases -- GPS coordinates.

A team of researchers from the University of Wisconsin-Madison has found that Chrome extensions can steal plaintext passwords from websites. The researchers created a proof-of-concept extension that can extract passwords from the source code of websites.