Japanese police create fake support scam payment cards to warn victims
Image: AI-generated via Midjourney Japanese police placed dummy payment cards in convenience stores to protect the elderly targeted by tech support scams or unpaid money fraud.…
Category: Bleeping Computer
Okta warns of “unprecedented” credential stuffing attacks on customers
Okta warns of an “unprecedented” spike in credential stuffing attacks targeting its identity and access management solutions, with some customer accounts breached in the attacks.…
Fake job interviews target developers with new Python backdoor
A new campaign tracked as “Dev Popper” is targeting software developers with fake job interviews in an attempt to trick them into installing a Python…
Patients’ data exposed in phishing attack
The Los Angeles County Department of Health Services disclosed a data breach after thousands of patients’ personal and health information was exposed in a data…
Data breach may impact 13.4 million patients
Healthcare service provider Kaiser Permanente disclosed a data security incident that may impact 13.4 million people in the United States. Kaiser Permanente is an integrated…
FBI warns against using unlicensed crypto transfer services
The FBI has warned today that using unlicensed cryptocurrency transfer services can result in financial loss if law enforcement takes down these platforms. This announcement…
Patients’ data exposed in phishing attack
The Los Angeles County Department of Health Services disclosed a data breach after patients’ personal and health information was exposed in a data breach resulting…
Researchers sinkhole PlugX malware server with 2.5 million unique IPs
Researchers have sinkholed a command and control server for a variant of the PlugX malware and observed in six months more than 2.5 million connections…
Reddit down in major outage blocking access to web, mobile apps
Reddit is investigating a major outage blocking users worldwide from accessing the social network’s websites and mobile apps. Users now see “502 Bad Gateway” and…
Over 1,400 CrushFTP servers vulnerable to actively exploited bug
Over 1,400 CrushFTP servers exposed online were found vulnerable to attacks currently targeting a critical severity server-side template injection (SSTI) vulnerability previously exploited as a zero-day.…
New Brokewell malware takes over Android devices, steals data
Security researchers have discovered a new Android banking trojan they named Brokewell that can capture every event on the device, from touches and information displayed…
WP Automatic WordPress plugin hit by millions of SQL injection attacks
Hackers have started to target a critical severity vulnerability in the WP Automatic plugin for WordPress to create user accounts with administrative privileges and to…