Items tagged with security
As we closed out 2023, the world of cybersecurity settled just a touch as threat actors and defenders went off to celebrate the holiday in a seemingly unspoken Christmas truce. Nothing good can last forever, though, as the Cybersecurity and Infrastructure Security Agency (CISA) makes clear with an update to the Known...
Read more...
Downfall, a standalone steam mod for the popular Slay the Spire game, got hit with a security breach on Christmas day. An attacker replaced the legitimate game download with a malicious one, which was available to users on Steam’s library for roughly an hour. However, the mod’s developer is now back in control and the...
Read more...
Earlier in the year, Apple fixed several vulnerabilities, which, when exploited, allowed Operation Triangulation spyware to make its way onto devices with zero interaction required. Since then, researchers have been uncovering all the components that made up the attack chain for the spyware campaign, and what they...
Read more...
GitHub is looking to secure the software supply chain by requiring all developers using the platform to protect their accounts with two-factor authentication (2FA). Developers will need to enable the security feature by the end of 2023. The company states that “GitHub is committed to making sure that strong account...
Read more...
Through 2022, the LAPSUS$ threat actor group went on a tear, breaching companies like NVIDIA, Samsung, Microsoft, and Rockstar. The latter of these breaches resulted in quite a bit of game leaks related to GTA IV, revealing details that would later be confirmed in the official GTA IV trailer. Some, if not all, of the...
Read more...
Google is adding some new bells and whistles to Chrome on the desktop that could potentially make the world's most popular browser a bit faster and more secure. While these are not necessarily game-changing alterations, they're significant enough that you may want to initiate a manual update rather than waiting for...
Read more...
It must be a Thursday, because there's been another major data breach that affects millions of consumers and may force you to change passwords. The target of the latest attack was Comcast, which has confirmed that online criminals ran roughshod over its Xfinity servers for days before detection. The hack has...
Read more...
In the threat intelligence and cybersecurity space, an interesting development has unfolded over the past few days regarding BlackCat or ALPHV, the group behind the Reddit security breach and the more recent 23AndMe data breach. It initially appeared as though the FBI had seized the group’s website, though BlackCat...
Read more...
Apple has included a key iOS security change with its latest iOS 17.3 beta for iPhone users aimed at keeping potential thieves from accessing pertinent personal data. When the new Stolen Device Protection feature is toggled on, it makes it to where the user has to use Face ID or Touch ID to gain access to critical...
Read more...
One of the telltale signs that your PC has become ill with a virus is an unexpected slowdown in performance. Various forms of malware can sometimes feast on your system's resources, whether it's a hidden cryptocurrency miner, keylogger, or something else. Ironically, a recent update to Avira's antivirus software is...
Read more...
It would seem that Toyota cannot catch a break. Just weeks after discovering the company ran out of server disk space, shutting down production lines, and that Toyota vehicles could be compromised through the headlights, the company is telling German customers that some of their personal data may have been compromised...
Read more...
The United States Federal Trade Commission is issuing a new warning to Americans regarding the malicious use of QR codes. This is important information because QR codes are being used more and more as a convenient way of setting up devices or sending someone to a specific website. However, bad actors are now seeing it as an opportunity to
Read more...
Apple iPhone users should check whether their phone harbors an unassuming keyboard app in Settings. There's a new third-party keyboard that's designed to collect everything they type and send that information to cybercriminals.
British cybersecurity company Certo Software just detailed how keyboard-based iPhone...
Read more...
If you're still rocking Windows 10, don't panic, fee-based security updates are not imminent. However, they are coming once Windows 10 officially reaches End of Life (EOL) status, which barring any reprieves will happen on October 14, 2025. If by chance you're still running what will then be considered a legacy OS...
Read more...
Popular genetic testing company 23andMe has revealed the possible true impact of its recent October data breach. Contrary to an SEC (Securities and Exchange Commission) filing on Friday by the company, the breach is now said to affect 6.9 million individuals worldwide.
On Friday, 23andMe stated that only a small...
Read more...
If you're using a Chrome browser—and chances are high that you are, simply based on Chrome's dominant market share—stop what you're doing and initiate an update to the latest version. Yes, you should be receiving Chrome updates on an automatic basis, but the newest build patches a bunch of alarming security...
Read more...
Ikea has launched a new smart home product family called the Vallhorn, Parasoll, and Badring, which are “designed to give customers a greater sense of control and comfort, allowing them to stay connected to their homes, even when they are away.” Thankfully, these smart home products are inexpensive and don't require...
Read more...
A security vulnerability found in ownCloud, a provider of open-source software solutions for organizations to host and sync files, is now being actively exploited by threat actors. The vulnerability, CVE-2023-49103, was initially disclosed by ownCloud on November 21, 2023 whereupon it was assessed as being a critical...
Read more...
The developer of Ethyrial: Echoes of Yore, Gellyberry Studios, has been hit by a ransomware attack, leading to the loss of 17,000 player accounts, the studio announced on their Discord server. The game is described as “a hardcore old-school MMORPG for players not afraid of challenge, risk, and adventure. Band together...
Read more...
In less than 72 hours from now, Google will start deleting Google accounts that have been deemed inactive. If you want to save your content, there are some things you can do to ensure that your account and associated content is not caught in the snare of the accounts purge. However, the clock is ticking, so you best...
Read more...
The holiday season is upon us, which means a barrage of sales on services and products as people find themselves in the gift-giving mood. It's also a time for feasting, and not just on turkey and ham—like nasty little cockroaches and termites, scammers come out of the woodwork during the holiday season in hopes of...
Read more...
General Electric is primarily known for its spinning things, like washing machines, supersonic engines, or the GAU-8/A Avenger 30mm seven-barrel cannon mounted on the A-10 Warthog and CIWS weapon system. All goofs aside, GE is quite a broad company with connections in nearly every sector of the economy. Therefore, it...
Read more...
