Preventing sophisticated phishing attacks aimed at employees
[ This article was originally published here ] The content of this post is solely the responsibility of the author. AT&T does not adopt or…
Month: May 2023
Beware Of Employment Scams, WhatsApp Fraud Targeting Job Seekers
Employment scams are on the rise. Scammers are creating misleading schemes to tempt innocent victims into disclosing their personal information, resulting in the loss of…
My Career Just Got Hacked: Rana Robillard Joins HackerOne
My career just got hacked.. and I couldn’t be more excited about it. Turns out, getting your career hacked* can be exactly what you need…
One Password can cause huge damage to reputation of an Individual and Company
According to an expert from ESET, a single password can cause more damage than expected. Security specialist Jake Moore suggests that cyber criminals can easily…
Private Code Signing Keys Leaked on the Dark Web
May 08, 2023Ravie LakshmananData Breach / Software Security The threat actors behind the ransomware attack on Taiwanese PC maker MSI last month have leaked the…
CAPTCHA does not prevent cross-site request forgery (CSRF)
In our dialogues with customers, we often come across cross-site request forgery (CSRF) findings marked as False Positives due to having CAPTCHA implemented. There is a…
QR codes used in fake parking tickets, surveys to steal your money
As QR codes continue to be heavily used by legitimate organizations—from Super Bowl advertisements to enforcing parking fees and fines, scammers have crept in to…
Western Digital Confirms Customer Data Stolen by Hackers in March Breach
May 08, 2023Ravie LakshmananData Breach / Ransomware Digital storage giant Western Digital confirmed that an “unauthorized third party” gained access to its systems and stole…
Iranian hacking groups join Papercut attack spree
Microsoft says Iranian state-backed hackers have joined the ongoing assault targeting vulnerable PaperCut MF/NG print management servers. These groups are tracked as Mango Sandstorm (aka Mercury…
SideCopy Using Action RAT and AllaKore RAT to infiltrate Indian Organizations
May 08, 2023Ravie LakshmananCyber Espionage / Threat Intel The suspected Pakistan-aligned threat actor known as SideCopy has been observed leveraging themes related to the Indian…
Live hacking the U.S. Air Force, UK Ministry of Defence and Verizon Media in Los Angeles at h1-213
On November 6th, over 60 hackers descended on the City of Angels for the final HackerOne flagship live hacking event of 2019, h1-213. For the…
Detecting data theft with Wazuh, the open-source XDR
Data theft is the act of stealing data stored in business databases, endpoints, and servers. The stolen data can include credentials, credit card numbers, personal…