Lazarus Hackers Targeting Apple Mac Users With Fake Job Posts
North Korea-based notorious Lazarus hacking group is targeting Apple Mac users with fake job emails that contain malicious files. Researchers at cyber-security firm ESET posted a screenshot on Twitter that showed fake job listings from leading crypto exchange Coinbase by Lazarus, famous for spreading the...
Bijay Pokharel,
August 22, 2022
2 min read
Defendant In ‘Grandparent Scam’ Network Sentenced For Rico Conspiracy Targeting Elderly Americans
A California man was sentenced today to 46 months in prison for his participation in a large-scale “grandparent scam.” According to court documents, Jack Owuor, 25, of Paramount, California, was part of a network of individuals who, through extortion and fraud, induced elderly Americans across...
Bijay Pokharel,
August 18, 2022
4 min read
New Mailchimp Breach Exposed DigitalOcean Customer Email Addresses
DigitalOcean is warning customers that a recent MailChimp security breach exposed the email addresses of some customers. The company says they first learned of the breach after MailChimp disabled their account without warning on August 8th. DigitalOcean used this MailChimp account to send email confirmations,...
Bijay Pokharel,
August 17, 2022
2 min read
Signal Alerts 1,900 Users About Security Breach From Twilio Hackers
As part of the breach at communications giant Twilio, end-to-end encrypted messaging app Signal said that hackers accessed the phone numbers and SMS verification codes of 1,900 users. The US-based Cloud communications company, which provides Signal with phone number verification services, notified the messaging platform...
Bijay Pokharel,
August 16, 2022
1 min read
Zoom Fixes Most Dangerous Meeting Bug On Apple macOS
Zoom has fixed the most dangerous bug on Apple macOS that could allow hackers to take control of users’ operating systems when they open the meeting app. The company said in a security update that the Zoom client for meetings for macOS, starting with version...
Bijay Pokharel,
August 15, 2022
1 min read
Zoom Installer Flaw Can Give Attackers Root Access To Mac: Report
A security researcher has found a way that an attacker could leverage the macOS version of Zoom to gain access to the entire operating system. According to The Verge, details of the exploit were released in a presentation by Mac security specialist Patrick Wardle at...
Bijay Pokharel,
August 14, 2022
2 min read
US Govt Will Pay You $10 Million For Info On Conti Ransomware Members
The U.S. State Department announced a $10 million reward for information on Conti ransomware members, including showing the face of one of the members for the first time. Conti is extremely damaging ransomware due to the speed with which encrypts data and spreads to other...
Bijay Pokharel,
August 12, 2022
1 min read
Microsoft Fixes 141 Bugs, Including 2 Zero-Day Vulnerabilities
Microsoft has released patches for 141 bugs in its August 2022 Patch update, including two previously undisclosed (zero-day) flaws, of which one is actively being exploited. The total patch count for the August 2022 Patch update includes 20 flaws in Edge that Microsoft had previously...
Bijay Pokharel,
August 11, 2022
1 min read
Hackers Exploited Crypto Platform Renbridge To Launder $540 Million
More than half a billion dollars have been laundered in crypto assets originating from theft, fraud, ransomware and various other types of criminal activity since 2020, a new report has revealed. The report by Blockchain analysis group Elliptic said one cross-chain bridge in particular —...
Bijay Pokharel,
August 11, 2022
2 min read
Chinese Hackers Attack Govt Ministries, Military Plants Globally
China-based hackers attacked military-industrial plants, research institutes, government agencies, and ministries in several countries and were able to even hijack the IT infrastructure of some, taking control of systems used to manage security solutions, a new report has revealed. Researchers at cyber-security firm Kaspersky detected...
Bijay Pokharel,
August 9, 2022
2 min read
Enterprise Software Vendor Twilio Hacked In Phishing Attack
US-based enterprise software vendor company Twilio on Monday said it has been hacked as someone gained “unauthorized access” to information related to its customer accounts. Twilio has more than 150,000 customers, including Facebook and ride-hailing major Uber. “On August 4, 2022, Twilio became aware of...
Bijay Pokharel,
August 9, 2022
1 min read
Twitter Confirms July Data Breach That Affects 5.4 Million Accounts
The microblogging site Twitter has confirmed a recent data breach was caused by a now-patched zero-day vulnerability used to link email addresses and phone numbers to users’ accounts, allowing a threat actor to compile a list of 5.4 million user account profiles. While Twitter is forthcoming...
Bijay Pokharel,
August 8, 2022
2 min read
EPFO Pension Scheme Holders’ Data Exposed Online, Claims Security Researcher
A Ukraine-based cybersecurity researcher and journalist has claimed that about 288 million personal records, containing the full name, bank account number, and nominee information of the Employees’ Pension Scheme (EPS) holders in the Employees’ Provident Fund Organisation (EPFO), were exposed online before being taken off...
Bijay Pokharel,
August 4, 2022
2 min read
Indian Govt Blocked 348 Apps For Collecting Users’ Info
Amid rising complaints against mobile apps, the Centre has identified and blocked 348 apps developed by various countries, including China, for allegedly collecting user information for profiling citizens and transmitting it overseas in an unauthorized manner, the Parliament was told on Wednesday. “The Ministry of...
Bijay Pokharel,
August 3, 2022
1 min read
US Man Made $25 Million By Unlocking Smartphones With Stolen Passwords
A former owner of a T-Mobile store in the US, guilty of using stolen credentials to unlock “hundreds of thousands of cellphones”, made around $25 million from the illegal scheme. According to the US Department of Justice, Argishti Khudaverdyan, 44, has been found guilty by...
Bijay Pokharel,
August 3, 2022
1 min read
Hackers Using Malicious Gmail, Microsoft Edge Extension To Spy On Emails
A group of hackers from North Korea is using a malicious Google Chrome or Chromium-based Microsoft Edge extension to spy on user email accounts. The malicious extension by the hacker group titled ‘SharpTongue’ is capable of stealing email content from Gmail and AOL, according to...
Bijay Pokharel,
July 31, 2022
1 min read
Scam Robotexts Are Rising Threat: FCC
The FCC’s Robocall Response Team is alerting consumers to the rising threat of robotexts. Substantial increases in consumer complaints to the FCC, reports by non-government robocall and robotext blocking services, and anecdotal and news reporting make it clear that text messages are increasingly being used...
Bijay Pokharel,
July 31, 2022
3 min read
Microsoft Catches Spyware Group Targeting Customers Using Windows Bugs
Microsoft has caught an Austrian company selling spyware based on multiple Windows and Adobe zero-day exploits to attack its customers. The Microsoft Threat Intelligence Center (MSTIC) and the Microsoft Security Response Center (MSRC) found that the spyware developer — officially named DSIRF and codenamed KNOTWEED...
Bijay Pokharel,
July 28, 2022
2 min read
Paytm Denies Data Breach Affecting 3.4 Million Users’ Info
Firefox Monitor claimed that Paytm suffered a massive data breach that may have exposed the data of over 3.4 million users. However, the digital payments leader said on Wednesday that the data of its users is “completely safe”. A Paytm Mall spokesperson said that the...
Bijay Pokharel,
July 27, 2022
1 min read
Hackers Steal $6 Million From Blockchain Music Platform Audius
The decentralized music streaming platform Audius was hacked over the weekend, with threat actors stealing over 18 million AUDIO tokens worth approximately $6 million. Hello everyone – our team is aware of reports of an unauthorized transfer of AUDIO tokens from the community treasury. We...
Bijay Pokharel,
July 27, 2022
1 min read
Recent Posts
Subscribe
Cybersecurity Newsletter
You have Successfully Subscribed!
Sign up for cybersecurity newsletter and get latest news updates delivered straight to your inbox. You are also consenting to our Privacy Policy and Terms of Use.