DeFi exchange dYdX v3 website hacked in DNS hijack attack
Decentralized finance (DeFi) crypto exchange dYdX announced on Tuesday that the website for its older v3 trading platform has been compromised. dYdX also warned users…
Month: July 2024
Phish-Friendly Domain Registry “.top” Put on Notice – Krebs on Security
The Chinese company in charge of handing out domain names ending in “.top” has been given until mid-August 2024 to show that it has put…
BreachForums v1 hacking forum data leak exposes members’ info
The private member information of the BreachForums v1 hacking forum from 2022 has been leaked online, allowing threat actors and researchers to gain insight into its…
IT sustainability: Why we’re still waiting for quantified emissions reductions
That’s even though seemingly straightforward proxy metrics such as energy consumption exist – and it’s not for want of trying. Precision down to the kilowatt-hour…
Hackers abused swap files in e-skimming attacks on Magento sites
Hackers abused swap files in e-skimming attacks on Magento sites Pierluigi Paganini July 23, 2024 Threat actors abused swap files in compromised Magento websites to…
FrostyGoop malware attack cut off heat in Ukraine during winter
Russian-linked malware was used in a January 2024 cyberattack to cut off the heating of over 600 apartment buildings in Lviv, Ukraine, for two days…
Play Ransomware Variant Targeting Linux ESXi Environments
Play Ransomware Targets Linux! New Variant Attacks ESXi with Prolific Puma Ties. Learn how to protect your organization from this evolving threat targeting virtual environments.…
Chrome cookies reprieved amid Google Privacy Sandbox changes
Google has dramatically changed course on its proposals to deprecate third-party cookies in its Chrome web browser in favour of a “new experience” that it…
Verizon to pay $16 million in TracFone data breach settlement
Verizon Communications has agreed to pay a $16,000,000 settlement with the Federal Communications Commission (FCC) in the U.S. concerning three data breach incidents at its…
Innovations to power secure-by-design development
Security leaders and software developers will benefit from deeper visibility into their organisations’ software development security posture as they work, bolstering moves towards the nirvana…
Telegram Zero-Day Vulnerability Exploited Using Malicious Video Files
ESET researchers recently discovered a critical zero-day vulnerability in the Telegram messaging app for Android, potentially exposing millions of users to malicious attacks. The exploit,…
Play Ransomware targets VMware ESXi Servers
In June of this year, the SE#i Ransomware group, now rebranded as APT Inc, targeted VMware ESXi server environments, employing double extortion tactics to extort…