Nearly 2 Million Terrorist Watchlist Records Leaked Online
Security researcher Bob Diachenko says he discovered a terrorist watchlist on July 19th that included information like the name, date of birth, and passport number of those listed in the database. The cluster also included “no-fly” indicators.
Bijay Pokharel,
August 17, 2021
1 min read
XSS Vulnerability Patched In WordPress Plugin ‘SEOPress’
The flaw made it possible for an attacker to inject arbitrary web scripts on a vulnerable site which would execute anytime a user accessed the “All Posts” page.
Bijay Pokharel,
August 17, 2021
2 min read
SEC Charges Pearson $1M For Misleading Investors About Cyber Breach
The Securities and Exchange Commission announced that Pearson plc, a London-based public company that provides educational publishing and other services to schools and universities, agreed to pay $1 million to settle charges that it misled investors about a 2018 cyber intrusion involving the theft of...
Bijay Pokharel,
August 17, 2021
2 min read
Hacker Claims To Steal Data Of 100 Million T-Mobile Customers
The stolen data allegedly contains the data for approximately 100 million T-Mobile customers and can include customers' IMSI, IMEI, phone numbers, customer names, security PINs, Social Security numbers, driver's license numbers, and date of birth.
Bijay Pokharel,
August 16, 2021
1 min read
Hacker Returns Stolen Crypto Worth Over $610 Million
Hackers behind one of the biggest ever digital coin heists have now returned over half of the $610 million-plus they stole, the cryptocurrency platform targeted by the hack said on Thursday.
Bijay Pokharel,
August 13, 2021
1 min read
Kaseya’s Universal REvil Decryption Key Leaked On A Dark Web
Kaseya's Universal REvil Decryption Key Leaked On A Dark Web
Bijay Pokharel,
August 11, 2021
2 min read
Hackers Reportedly Threaten To Leak Data From Gigabyte Ransomware Attack
The hackers who claim to have carried out the attack are reportedly threatening to release data from the company, including confidential documents from Intel, AMD, and American Megatrends.
Bijay Pokharel,
August 10, 2021
1 min read
Threat Actor Leaks One Million Stolen Credit Cards To The Deep Web
Last week, the D3Lab team of analysts spotted an underground forum called 'AllWorld Cards' on the deep web where a file containing one million credit cardholder records was shared for free.
Bijay Pokharel,
August 10, 2021
1 min read
FlyTrap Android Malware Hijacks Thousands Of Facebook Accounts
t least 140 countries since March 2021 and has spread to over 10,000 victims through social media hijacking, third-party app stores, and sideloaded applications.
Bijay Pokharel,
August 10, 2021
3 min read
Freshly Disclosed Vulnerability CVE-2021-20090 Bypass Authentication On Millions Of Routers
CVE-2021-20090 is a path traversal vulnerability that leads to an authentication bypass. When exploited, the attacker can take over control of the affected device.
Bijay Pokharel,
August 7, 2021
2 min read
Taiwanese Motherboard Manufacturer GIGABYTE Hit By RansomEXX Ransomware
Gigabyte, a Taiwanese manufacturer and distributor of computer hardware has been hit by the RansomEXX ransomware gang.
Bijay Pokharel,
August 7, 2021
1 min read
CISA Launches New Initiative To Combat Ransomware
The Cybersecurity and Infrastructure Security Agency (CISA) has officially unveiled the Joint Cyber Defense Collaborative (JCDC), a new effort to combat ransomware attacks by expanding info sharing between the public and private sectors, with Amazon, Google and Microsoft all signing onto the initiative.
Bijay Pokharel,
August 6, 2021
1 min read
Ransomware Attacks Hit Record 300 Million In 1st Half Of 2021: SonicWall
A new report from SonicWall found that attempted ransomware attacks skyrocketed in the first half of 2021, with 304.7 million attempted attacks seen by the company.
Bijay Pokharel,
August 1, 2021
1 min read
Multiple Vulnerabilities Patched In WordPress Download Manager
The Wordfence Threat Intelligence Team found two separate vulnerabilities, including a sensitive information disclosure as well as a file upload vulnerability which could have resulted in Remote Code Execution in some configurations on WordPress Download Manager, a WordPress plugin installed on over 100,000 sites.
Bijay Pokharel,
August 1, 2021
2 min read
NSA Issues Guidance On Securing Wireless Devices In Public Settings
the Cybersecurity Information Sheet, “Securing Wireless Devices in Public Settings” today to help National Security System (NSS), Department of Defense (DoD), and Defense Industrial Base (DIB) teleworkers identify potential threats and minimize risks to their wireless devices and data.
Bijay Pokharel,
July 30, 2021
1 min read
No More Ransom Saves Nearly €1 Billion In Ransomware Payments In 5 Years
The No More Ransom project celebrates its fifth anniversary after helping over six million ransomware victims recover their files and saving them almost €1 billion in ransomware payments.
Bijay Pokharel,
July 27, 2021
1 min read
Clubhouse Denied Data Breach Exposing Users Phone Number
The company also said that it continues to invest in industry-leading security practices as privacy and security are of the utmost importance to Clubhouse.
Bijay Pokharel,
July 25, 2021
1 min read
Nearly 4 Million Phone Number Of Clubhouse Users Allegedly Leaked On Hackers Forum
Nearly four million phone numbers of Clubhouse users have been allegedly leaked and are 'up for sale' on the Dark Web.
Bijay Pokharel,
July 24, 2021
1 min read
Kaseya Obtains Universal Decryptor For REvil Ransomware Victims
it's unclear how Kaseya got the decryptor, but the company said it was obtained from a “trusted third party.” Cybersecurity company Emsisoft verified the decryptor and confirmed that it works properly, Kaseya said.
Bijay Pokharel,
July 23, 2021
1 min read
What Is Pegasus And How Does It Hack Phones?
Pegasus is a remote access tool (RAT) with spyware capabilities. It is developed by the Israeli cyberarms firm NSO Group that can infiltrate Android devices and certain versions of Apple's iOS.
Bijay Pokharel,
July 23, 2021
3 min read
Recent Posts
Subscribe
Cybersecurity Newsletter
You have Successfully Subscribed!
Sign up for cybersecurity newsletter and get latest news updates delivered straight to your inbox. You are also consenting to our Privacy Policy and Terms of Use.