Spoofing Shein For Credential Harvesting
By Jeremy Fuchs, Cybersecurity Researcher/Analyst Check Point Software LTD Shein is one of the most popular shopping apps in the world. In fact, it’s the…
Category: TheCyberExpress
Hacker Claims QuoteWizard Data Breach: 190M Records Exposed
Sp1d3r, a dark web actor, allegedly stole 2 TB of compressed data from QuoteWizard, a US-based insurance business. According to the threat actor’s post, over…
Alleged Heineken Data Breach Targets Sensitive Employee Data
Dark web actor 888 on BreachForums has alleged a Heineken data breach. The cyber intrusion, according to the threat actor’s post, surfaced on the dark…
Major CDU Cyberattack Forces IT Shutdown
Germany’s Christian Democratic Union (CDU) found itself the target of a cyber assault over the weekend. The large-scale CDU cyberattack forced the prominent opposition party…
NIST Hires A Contractor To Tackle National Vulnerability Database Backlog
The U.S. National Institute of Standards and Technology (NIST) has taken a big step to address the growing backlog of unprocessed Common Vulnerabilities and Exposures…
Multiple Vulnerabilities Present In Carrier’s LenelS2 NetBox
Carrier has issued a serious product security advisory confirming the existence of several vulnerabilities in its LenelS2 NetBox access control and event monitoring platform. These…
Andariel APT Using DoraRAT And Nestdoor Malware To Spy On South Korean Businesses
Researchers have uncovered new attacks by a North Korean advanced persistent threat actor – Andariel APT group – targeting Korean corporations and other organizations. The…
Hawk Eye App Data Breach Hits 200,000 Citizens In Telangana
Hawk Eye, a popular citizen-friendly crime reporting app of Telangana State Police in India, appears to have been hit by a massive data breach, a…
Inexpert CISO Blamed For Cyberattack On Change Healthcare
“I write to request that your agencies investigate UnitedHealth Group’s (UHG) negligent cybersecurity practices, which caused substantial harm to consumers, investors, the healthcare industry, and…
Researchers Find New Data Theft Campaign Of ‘LilacSquid’ APT
Researchers discovered a new data theft campaign, active since at least 2021, attributed to an advanced persistent threat (APT) actor dubbed “LilacSquid.” This campaign, observed…
CL0P Ransomware Claims Data Breach
CL0P ransomware group has claimed to have added Cooperativa de Crédito y Vivienda Unicred Limitada to their growing list of victims. The group alleges they…
7 New Pegasus Spyware Infections Spotted In Europe
Seven Russian and Belarusian-speaking independent journalists and opposition activists based in Europe were targeted or infected with NSO Group’s proprietary Pegasus spyware. A joint investigation…