A threat actor by the name of LeakBase has shared a database containing personal information allegedly affecting 16 million users of Swachh City, an Indian complaint redressal platform.
Leaked details include usernames, email addresses, password hashes, mobile numbers, one-time passwords, last logged-in times, and IP addresses, among others, according to a report shared by security firm CloudSEK
http://dlvr.it/SZFnL1
Friday, September 30, 2022
Hackers Aid Protests Against Iranian Government with Proxies, Leaks and Hacks
Several hacktivist groups are using Telegram and other tools to aid anti-government protests in Iran to bypass regime censorship restrictions amid ongoing unrest in the country following the death of Mahsa Amini in custody.
"Key activities are data leaking and selling, including officials' phone numbers and emails, and maps of sensitive locations," Israeli cybersecurity firm Check Point said in
http://dlvr.it/SZFn92
http://dlvr.it/SZFn92
Thursday, September 29, 2022
Facebook Shuts Down Covert Political 'Influence Operations' from Russia and China
Meta Platforms on Tuesday disclosed it took steps to dismantle two covert influence operations originating from China and Russia for engaging in coordinated inauthentic behavior (CIB) so as to manipulate public debate.
While the Chinese operation sets its sights on the U.S. and the Czech Republic, the Russian network primarily targeted Germany, France, Italy, Ukraine and the U.K. with themes
http://dlvr.it/SZBL7W
http://dlvr.it/SZBL7W
Wednesday, September 28, 2022
Hacker Behind Optus Breach Releases 10,200 Customer Records in Extortion Scheme
The Australian Federal Police (AFP) on Monday disclosed it's working to gather "crucial evidence" and that it's collaborating with overseas law enforcement authorities following the hack of telecom provider Optus.
"Operation Hurricane has been launched to identify the criminals behind the alleged breach and to help shield Australians from identity fraud," the AFP said in a statement.
The
http://dlvr.it/SZ6vs5
http://dlvr.it/SZ6vs5
Tuesday, September 27, 2022
Google to Make Account Login Mandatory for New Fitbit Users in 2023
Wearable technology company Fitbit has announced a new clause that requires users to switch to a Google account "sometime" in 2023.
"In 2023, we plan to launch Google accounts on Fitbit, which will enable use of Fitbit with a Google account," the Google-owned fitness devices maker said.
The switch will not go live for all users in 2023. Rather, support for Fitbit accounts is
http://dlvr.it/SZ3Wtj
http://dlvr.it/SZ3Wtj
Monday, September 26, 2022
Ukraine Arrests Cybercrime Group for Selling Data of 30 Million People
Ukrainian law enforcement authorities on Friday disclosed that it had "neutralized" a hacking group operating from the city of Lviv that it said acted on behalf of Russian interests.
The group specialized in the sales of 30 million accounts belonging to citizens from Ukraine and the European Union on the dark web and netted a profit of $372,000 (14 million UAH) through electronic payment systems
http://dlvr.it/SZ0L3X
http://dlvr.it/SZ0L3X
Sunday, September 25, 2022
SentinelOne launches $100M fund to invest in enterprise cybersecurity startups - TechCrunch
SentinelOne launches $100M fund to invest in enterprise cybersecurity startups TechCrunch
http://dlvr.it/SYxzNc
http://dlvr.it/SYxzNc
Saturday, September 24, 2022
Researchers Uncover Years-Long Mobile Spyware Campaign Targeting Uyghurs
A new wave of a mobile surveillance campaign has been observed targeting the Uyghur community as part of a long-standing spyware operation active since at least 2015, cybersecurity researchers disclosed Thursday.
The intrusions, originally attributed to a threat actor named Scarlet Mimic back in January 2016, is said to have encompassed 20 different variants of the Android malware, which were
http://dlvr.it/SYwPxj
http://dlvr.it/SYwPxj
Saturday, September 3, 2022
Sebi rejigs panel on cyber security, expands to six members. Read here | Mint - Mint
Sebi rejigs panel on cyber security, expands to six members. Read here | Mint Mint
http://dlvr.it/SXj7gc
http://dlvr.it/SXj7gc
Friday, September 2, 2022
Google Release Urgent Chrome Update to Patch New Zero-Day Vulnerability
Google on Friday shipped emergency fixes to address a security vulnerability in the Chrome web browser that it said is being actively exploited in the wild.
The issue, assigned the identifier CVE-2022-3075, concerns a case of insufficient data validating in Mojo, which refers to a collection of runtime libraries that provide a platform-agnostic mechanism for inter-process communication (IPC).
An
http://dlvr.it/SXhsXP
http://dlvr.it/SXhsXP
Prynt Stealer Contains a Backdoor to Steal Victims' Data Stolen by Other Cybercriminals
Researchers discovered a private Telegram channel-based backdoor in the information stealing malware, dubbed Prynt Stealer, which its developer added with the intention of secretly stealing a copy of victims' exfiltrated data when used by other cybercriminals.
"While this untrustworthy behavior is nothing new in the world of cybercrime, the victims' data end up in the hands of multiple threat
http://dlvr.it/SXghxd
http://dlvr.it/SXghxd
New Evidence Links Raspberry Robin Malware to Dridex and Russian Evil Corp Hackers
Researchers have identified functional similarities between a malicious component used in the Raspberry Robin infection chain and a Dridex malware loader, further strengthening the operators' connections to the Russia-based Evil Corp group.
The findings suggest that "Evil Corp is likely using Raspberry Robin infrastructure to carry out its attacks," IBM Security X-Force researcher Kevin Henson
http://dlvr.it/SXg9kp
http://dlvr.it/SXg9kp
Breaking down silos and adopting a 'whole-of-state' cybersecurity approach - StateScoop
Breaking down silos and adopting a 'whole-of-state' cybersecurity approach StateScoop
http://dlvr.it/SXfDyR
http://dlvr.it/SXfDyR
Google Chrome Bug Lets Sites Silently Overwrite System Clipboard Content
A "major" security issue in the Google Chrome web browser, as well as Chromium-based alternatives, could allow malicious web pages to automatically overwrite clipboard content without requiring any user consent or interaction by simply visiting them.
The clipboard poisoning attack is said to have been accidentally introduced in Chrome version 104, according to developer Jeff Johnson.
While the
http://dlvr.it/SXfDZj
http://dlvr.it/SXfDZj
Thursday, September 1, 2022
Stop Worrying About Passwords Forever
So far 2022 confirms that passwords are not dead yet. Neither will they be anytime soon. Even though Microsoft and Apple are championing passwordless authentication methods, most applications and websites will not remove this option for a very long time.
Think about it, internal apps that you do not want to integrate with third-party identity providers, government services, legacy applications,
http://dlvr.it/SXcY9Z
http://dlvr.it/SXcY9Z
Infra Used in Cisco Hack Also Targeted Workforce Management Solution
The attack infrastructure used to target Cisco in the May 2022 incident was also employed against an attempted compromise of an unnamed workforce management solutions holding company a month earlier in April 2022.
Cybersecurity firm Sentire, which disclosed the findings, raised the possibility that the intrusions could be the work of a criminal actor known as mx1r, who is said to be a member of
http://dlvr.it/SXc1Bw
http://dlvr.it/SXc1Bw
Microsoft Discover Severe ‘One-Click’ Exploit for TikTok Android App
Microsoft on Wednesday disclosed details of a now-patched "high severity vulnerability" in the TikTok app for Android that could let attackers take over accounts when victims clicked on a malicious link.
"Attackers could have leveraged the vulnerability to hijack an account without users' awareness if a targeted user simply clicked a specially crafted link," Dimitrios Valsamaras of the Microsoft
http://dlvr.it/SXb2cv
http://dlvr.it/SXb2cv
Subscribe to:
Posts (Atom)
Cybersecurity needs AI as much as AI needs cybersecurity - Techzine Europe
Cybersecurity needs AI as much as AI needs cybersecurity Techzine Europe http://dlvr.it/TDY1dr
-
Cybersecurity needs AI as much as AI needs cybersecurity Techzine Europe http://dlvr.it/TDY1dr
-
Supply chain cyberattacks threaten healthcare. Here’s how the industry can work together to limit disruption. Healthcare Dive http://dlvr...
-
This statistic presents a ranking of the countries with the highest commitment to cyber security based on the Global Cybersecurity Index (GC...