Last month, researchers at the cybersecurity firm GTSC discovered cyberattacks actively exploiting two zero-day vulnerabilities in the Microsoft Exchange email system. The researchers reported these two vulnerabilities to the Zero Day Initiative (ZDI), which verified this report and passed it on to Microsoft. The... Read more...
Threat analysis teams from two different cybersecurity firms, Cyderes and Stairwell, have published a joint report detailing a new ransomware technique that may be the next big evolution in ransomware. Rather than encrypting data on victims’ computers, ransomware may soon corrupt the data instead, rendering it... Read more...
Researchers at the cybersecurity firm ReasonLabs have discovered a credit card scam campaign estimated to have extracted tens of millions of dollars from tens of thousands of credit card holders. This scheme utilizes fake dating websites, a dedicated payment processor, and customer support services all created and... Read more...
Research conducted by a team at the firmware security firm Binarly reveals that six vulnerabilities remain unpatched in various enterprise-grade HP laptops and desktops despite HP having developed patches for these vulnerabilities. Binarly discovered three of these vulnerabilities last year and notified HP of their... Read more...
A nasty bit of Android malware previously lurking on the Google Play Store has returned with additional capabilities. Known as SharkBot, the malware is designed to steal user login credentials, particularly credentials used to access financial applications. The malware has also been found to initiate money transfers... Read more...
On September 2, 2022, Samsung reported that it had discovered a security breach of their U.S. systems. Unfortunately for some Samsung customers, this means that their personal information may have leaked out into the wild. The report states that the initial indication came in July, and by August it had established the... Read more...
There is widespread concern over the amount of personal data siphoned off by Google, Facebook, and other big tech companies, but that's nothing compared to what your mobile carrier knows. A startup called Invisiv aims to address that with a new beta of its mobile data service. With Pretty Good Phone Privacy (PGPP)... Read more...
Secret Service Director James Murray has left his post in order to take over as the Chief Security Officer for Snap Inc. The 27-year veteran will serve his last day with the storied security service on July 30, 2022. The Secret Service is the cream of the crop when it comes to security. It undertakes protecting the... Read more...
Samsung is consolidating two of its software services, Samsung Pay and Samsung Pass, into a single Samsung Wallet digital platform. This will allow Galaxy device owners to securely and more easily manage their digital keys, boarding passes, identification cards, loyalty cards, and more in one mobile application. The... Read more...
It seems that every day a new malware threat rears its ugly head. Every once in a while though, the new threat is a version of an old threat. For example, PDFs as a method of malware delivery. That's what researchers at HP Wolf Security have recently found. A less common, but seemingly effective method of malware... Read more...
When you fill out an online form and hit the submit button, you're willingly transmitting your personal data to the website and any third parties you may have agreed to in the fine print. That's fair game. However, an alarming security report suggests your data is sometimes transmitted even if you change your mind and... Read more...
When you are investigating a crime, one of the most important things to establish is "motive." If you know a crime has been committed, having an understanding of why it happened is a critical step to figuring out who did it. In the strictest sense, installing software on someone else's computer isn't a crime. It's... Read more...
There are reportedly nearly two billion WhatsApp users globally as of 2021. This is a number that is far too tempting to those with bad intent. A phishing campaign recently impacted nearly 28,000 email accounts by impersonating a notification for a WhatsApp voicemail message. The phishing campaign utilizes... Read more...
It seems like just about every week there is some new malware threat to mobile users, especially for those who use Android. What if we told you that many of those new threats are not actually new at all? According to Dr. Web, an anti-malware software provider and security research organization, there was a... Read more...
The hacking group Lapsus$ (or "LAPSUS$") has been extra busy the past couple of weeks. First it breached NVIDIA and stole what it claims is 1TB of data, including what appears to be DLSS source code, and now it has plundered sensitive information from Samsung. Proprietary source code is involved there as well, Samsung... Read more...
A few days after the last security update for the Google Pixel 3 ever, Samsung has announced that select Galaxy devices get four generations of updates. With pre-orders now available for the Galaxy S22 series in full swing, this announcement steps all over Google's policy of up to three years of OS updates for its... Read more...
A cybersecurity firm just recently discovered a search engine optimization (SEO) poisoning campaign intended to dupe users into installing malware on their computers. The campaign works by leveraging various SEO techniques, such as cramming tons of keywords into the source code of various malicious webpages, in order... Read more...
Having entered a new year, cybersecurity experts, researchers, and companies are reflecting on 2021 and assessing the state of cybersecurity so that we can better understand and prepare for threats going forward. Unfortunately, the outlook going forward into 2022 seems pretty disheartening as far as ransomware is... Read more...
Many websites and applications employ various device fingerprinting methods to identify users and track their activity across websites and applications over time. The Electronic Frontier Foundation has a good explainer on this subject, as well as a tool to test how well your browser protects you from fingerprinting... Read more...
Samsung has built a fingerprint security chip that is aimed at making payment cards and other types of biometric cards more secure. The new security solution combines a fingerprint sensor with other technology in order to strengthen your payment cards against thieves. In a day and age where carrying cash is... Read more...
It felt like we were constantly reading about data compromises last year. Unfortunately, this statement is not far from the truth. According to the Identity Theft Resource Center (ITRC), there were 1,862 data compromises in 2021. The overall number of data compromises was up by 63% from 2020 and the number of... Read more...
When people think of malware and malicious code, they might imagine an infected file or download from a sketchy email or website on their computer. However, this sort of infection is realistically only the tip of the iceberg and often some of the least sophisticated. Researchers at Kaspersky have found a complex... Read more...
Prev 1 2 3 4 5 Next