Items tagged with cybersecurity
Last month, Apple pushed multiple security updates for its products due to vulnerabilities that could lead to the Triangulation spyware being put on your device. Now, the Cupertino-based company has rolled out another Rapid Security Response (RSR) but has since pulled it back due to flaws with the...
Read more...
Earlier this year, reports of a new ransomware family dubbed ‘Big Head’ appeared online in various malware databases. This malware is making the rounds through malvertisement campaigns that look like Windows updates and Word installers, which is rather concerning becuase less savvy users often fall for these...
Read more...
You can call a kitty with a “pspspsps,” but you might be able to call Advanced Persistent Threat (APT) group 42, otherwise known as “Charming Kitten,” with a “pspspsps aux.” All jokes aside, this group, also known as TA453, now targets nuclear security and foreign policy experts to gather intelligence.
Earlier this...
Read more...
If you have a solar roof and power management system, you might be vulnerable to a cyberattack depending on how the system was implemented. However, this problem is not limited to solar but also includes wind and hydroelectric systems connected to the internet, which all make juicy targets for a threat...
Read more...
Just under five years ago, chip manufacturer Taiwan Semiconductor Manufacturing Company, otherwise known as TSMC, was hit by the WannaCry ransomware, thereby crippling production and shutting down plants. Now, the company has purportedly had its data stolen in a new attack thanks to an affiliate of the ransomware gang...
Read more...
With threat actor groups like Blackcat (ALPHV) taking the spotlight, other groups can fly under the radar doing their dastardly deeds. Such is the case with 8Base, a relatively unheard-of ransomware gang that is making waves as one of the most active ransomware groups this summer.
First cropping up in March of...
Read more...
Your password requires at least nine characters, one special character, two numbers, your horoscope, three emoji, and a depiction of the current weather outside. If that seems unhinged, wait until you try The Password Game, a fun but absurd password-creating game taking the internet by storm.
You may have heard of...
Read more...
If you are going to download a program, it may be worth knowing whether you are getting it from the authentic source or a threat actor in between. Such is the case with a trojanized Super Mario game which has been mining cryptocurrency and stealing data while people casually played Super Mario Forever.
Exploiting...
Read more...
In the early morning of Sunday, Diablo IV fans found they could not log in and authenticate to Blizzard’s servers to play the game. What started as an outage became publicly known as a DDoS attack against Blizzard, lasting multiple hours into the afternoon. Though the problem is now fixed, it reignited the question of...
Read more...
This week, Apple patched three vulnerabilities that could lead to Triangulation spyware making it to your device with a zero-interaction exploit delivered through an invisible iMessage. Thus, update your devices as soon as able to patch these vulnerabilities and remain safe from the threat actors exploiting...
Read more...
Earlier this week, ASUS pushed a firmware update for 19 of the company’s routers which fixed nine different CVEs and enhanced security across the board. While updating your routers, ASUS also recommends that owners disable services accessible from the WAN side, such as port forwarding, DDNS, VPN, DMZ, and port...
Read more...
With all the excitement around ChatGPT, it is no wonder that threat actors are taking advantage of the situation. Besides having those with malicious intentions steal your Facebook account, they might also be stealing your ChatGPT account credentials as well, following the discovery of over 100,000 compromised ChatGPT...
Read more...
With Reddit somewhat imploding on the cusp of going public, some are taking advantage of the situation. Ransomware gang BlackCat (ALPHV) has recently claimed a February attack against Reddit, claiming to have stolen 80GB of data from the social media company.
In early February of this year, hackers from the...
Read more...
Over the last year, Google has been trying to step up its security game regarding all things Gmail, from client-side email encryption to brand verification measures to help prevent phishing and spam. However, a security researcher discovered an issue with the latter, putting all Gmail users at risk just before the...
Read more...
The United States' relationship with China, especially regarding technology, has been strenuous at best since at least when the U.S. declared several Chinese companies a threat to national security in 2012. This rhetoric has continued through today but has usually come from the side of the U.S. government. However...
Read more...
In the last couple of years, the ever-popular KeePass password manager has come up in a number of articles, such as when it was recently found that passwords could be stolen through the export functionality. Now, KeePass is back in the news with a vulnerability that could allow an attacker to retrieve the master...
Read more...
Earlier this week, Google released an emergency security update for the Chrome browser due to a vulnerability that is being actively exploited in the wild.
Posted to a bulletin on Friday, Google highlighted CVE-2023-2033, reported by Clément Lecigne of Google’s own Threat Analysis Group (TAG). This vulnerability is...
Read more...
Time to tighten up your password complexity, dear readers. A deep learning password guessing tool called PassGAN has been found to take less than six minutes to crack your seven-character password, even ones with symbols.
Nefarious hackers are constantly looking for new means of stealing your information, and...
Read more...
Early last year, hackers were replaying remote keyless system codes to unlock and steal Honda or Acura vehicles. This year, criminals of TikTok have been showing people how to break into certain Hyundai and Kia models with some hotwiring. However, criminals are upping their thieving game as car companies come to the...
Read more...
Storage heavyweight Western Digitial announced over the weekend that it has suffered a "network security incident," which is a less alarming way to say its systems have been hacked by unknown threat actors. The company says it is currently working to investigate the attack and secure its systems, and that means...
Read more...
No April Fools here; only April vulnerabilities abound with the popular WordPress addon Elementor, used by millions of websites worldwide. Adding insult to injury, threat actors are now exploiting this vulnerability to tweak settings and redirect traffic to malicious sites, among other problems.
Elementor is a...
Read more...
Famed automaker Ferrari announced yesterday that the company suffered a data breach involving personal information of its clients, without any impact on its operations.
A hacker or hackers were recently able to gain access to the Maranello based company's IT systems, demanding a ransom for the client info...
Read more...
