NS-STEALER Uses Discord Bots to Exfiltrate Your Secrets from Popular Browsers
Cybersecurity researchers have discovered a new Java-based "sophisticated" information stealer that uses a Discord bot to exfiltrate sensitive data from...
News
FTC Bans InMarket for Selling Precise User Location Without Consent
The U.S. Federal Trade Commission (FTC) is continuing to clamp down on data brokers by prohibiting InMarket Media from selling...
52% of Serious Vulnerabilities We Find are Related to Windows 10
We analyzed 2,5 million vulnerabilities we discovered in our customer's assets. This is what we found. Digging into the data...
VMware vCenter Server Multiple Vulnerabilities
Multiple vulnerabilities were identified in VMware vCenter Server. A remote attacker could exploit some of these vulnerabilities to trigger sensitive information...
Tietoevry Ransomware Attack Causes Outages For Swedish Firms Cities
Finnish IT services and enterprise cloud hosting provider Tietoevry has suffered a ransomware attack impacting cloud hosting customers in one...
Watch Out For I Cant Believe He Is Gone Facebook Phishing Posts
A widespread Facebook phishing campaign stating, "I can't believe he is gone. I'm gonna miss him so much," leads unsuspecting...
Brave To End Strict Fingerprinting Protection As It Breaks Websites
Brave Software has announced plans to deprecate the 'Strict' fingerprinting protection mode in its privacy-focused Brave Browser because it causes...
Apache ActiveMQ Flaw Exploited in New Godzilla Web Shell Attacks
Cybersecurity researchers are warning of a "notable increase" in threat actor activity actively exploiting a now-patched flaw in Apache ActiveMQ...
Chinese Hackers Silently Weaponized VMware Zero-Day Flaw for 2 Years
An advanced China-nexus cyber espionage group previously linked to the exploitation of security flaws in VMware and Fortinet appliances has...
Researchers Link 3am Ransomware To Conti Royal Cybercrime Gangs
Security researchers analyzing the activity of the recently emerged 3AM ransomware operation uncovered close connections with infamous groups, such as...
Meta Wont Remove Fake Instagram Profiles That Are Clearly Catfishing
Imposters and romance scammers abusing social media to con people is hardly a novel occurrence. The problem seems to have gotten...
Court Charges Dev With Hacking After Cybersecurity Issue Disclosure
A German court has charged a programmer investigating an IT problem with hacking and fined them €3,000 ($3,265) for what...
Vans North Face Owner Says Ransomware Breach Affects 35 Million People
VF Corporation, the company behind brands like Vans, Timberland, The North Face, Dickies, and Supreme, said that more than 35...
Payoneer Accounts In Argentina Hacked In 2fa Bypass Attacks
Numerous Payoneer users in Argentina report waking up to find that their 2FA-protected accounts were hacked and funds stolen after...
Ftc Bans One More Data Broker From Selling Your Location Info
The U.S. Federal Trade Commission (FTC) continues to target data brokers, this time in a settlement with InMarket Media, which...
Chinese Hackers Exploit Vmware Bug As Zero Day For Two Years
A Chinese hacking group has been exploiting a critical vCenter Server vulnerability (CVE-2023-34048) as a zero-day since at least late...
Breachforums Hacking Forum Admin Sentenced To 20 Years Supervised Release
Conor Brian Fitzpatrick was sentenced to 20 years of supervised release today in the Eastern District of Virginia for operating...
Russian Hackers Stole Microsoft Corporate Emails In Month Long Breach
Microsoft warned Friday night that some of its corporate email accounts were breached and data stolen by a Russian state-sponsored...
Vmware Confirms Critical Vcenter Flaw Now Exploited In Attacks
VMware has confirmed that a critical vCenter Server remote code execution vulnerability patched in October is now under active exploitation....
Cisa Emergency Directive Mitigate Ivanti Zero Days Immediately
CISA issued this year's first emergency directive ordering Federal Civilian Executive Branch (FCEB) agencies to immediately mitigate two Ivanti Connect...
Microsoft’s Top Execs’ Emails Breached in Sophisticated Russia-Linked APT Attack
Microsoft on Friday revealed that it was the target of a nation-state attack on its corporate systems that resulted in...
Invoice Phishing Alert: TA866 Deploys WasabiSeed & Screenshotter Malware
The threat actor tracked as TA866 has resurfaced after a nine-month hiatus with a new large-volume phishing campaign to deliver...
CISA Issues Emergency Directive to Federal Agencies on Ivanti Zero-Day Exploits
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday issued an emergency directive urging Federal Civilian Executive Branch (FCEB)...
ChromeOS Multiple Vulnerabilities
Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service...
