2 million job seekers targeted by data thieves
A cybercriminal group known as ResumeLooters has infiltrated 65 job listing and retail websites, compromising the personal data of over two million job seekers. The…
Month: February 2024
Why open data is needed in the battle to address homelessness
During February’s State of Open Con 24 London conference, delegates were given a real-world example of the importance of opening up data to tackle the…
[tl;dr sec] #217 – Bypassing AWS CloudTrail, Usable Security at Netflix, Augmenting Humans with AI
I hope you’ve been doing well! 📺️ Usable Security at Netflix How do you build security tooling & processes that your colleagues actually adopt? I…
Data breaches at Viamedis and Almerys impact 33 million in France
Data breaches at two French healthcare payment service providers, Viamedis and Almerys, have now been determined to impact over 33 million people in the country.…
Critical Cisco Expressway Flaw Let Remote Execute Arbitrary Code
Cisco released patches to address multiple vulnerabilities in the Cisco Expressway Series that might allow an attacker to do arbitrary operations on a vulnerable device.…
North Korea raked $3 billion from Ransomware and US offers $10m for Hive
Recent estimates suggest that North Korea has amassed approximately $3 billion through a series of ransomware attacks targeting businesses and other cyber-attacks on cryptocurrency trading…
LassPass is not LastPass: Fraudulent app on Apple App Store
A fraudulent app named “LassPass Password Manager” that mimics the legitimate LastPass mobile app can currently be found on Apple’s App Store, the password manager…
Warning from LastPass as fake app found on Apple App Store
Password Manager LastPass has warned about a fraudulent app called “LassPass Password Manager” which it found on the Apple App Store. The app closely mimics…
Researchers Decode the Latest Evasion Methods
Feb 08, 2024NewsroomEndpoint Security / Cyber Threat The threat actors behind a loader malware called HijackLoader have added new techniques for defense evasion, as the…
Hunting Down The Top 5 Most Common Price Manipulation Vulnerabilities in E-Commerce Websites
E-commerce stores can lose out on a lot of revenue if price manipulation vulnerabilities get actively exploited by bad actors. These are often security vulnerabilities…
2054, Part IV: A Nation Divided
Wisecarver stepped across the threshold. “Good morning, Mr. President.” He gave a little nod. Beneath his arm he carried a single binder. “Good morning, Trent.”…
Akira, LockBit actively searching for vulnerable Cisco ASA devices
Akira and Lockbit ransomware groups are trying to breach Cisco ASA SSL VPN devices by exploiting several older vulnerabilities, security researcher Kevin Beaumont is warning.…