March 11, 2024 at 07:06PM Voice phishing, known as vishing, is on the rise globally, including in South Korea, where recent scams have caused significant financial losses. These schemes involve sophisticated social engineering tactics and impersonation of law enforcement, exploiting cultural and legal understanding. Vishing operators are utilizing technology and apps, such as SecretCalls, to … Read more
March 11, 2024 at 06:07PM The Kremlin accused the US of planning to interfere in Russia’s presidential election by using American NGOs to lower turnout, and carrying out cyber attacks on the electronic voting system. The claims lack proof, and come after the Kremlin promised not to meddle in the US election. Despite these attempts, … Read more
March 11, 2024 at 05:40PM CISA officials reported a breach by threat actors who exploited Ivanti product vulnerabilities in February. Suspicious activity was discovered in two systems, the Infrastructure Protection Gateway and Chemical Security Assessment Tool, prompting CISA to recommend reviewing its advisory on three Ivanti vulnerabilities. The incident also exposed the failure of Ivanti … Read more
March 11, 2024 at 05:28PM Tuta Mail introduced TutaCrypt, a novel post-quantum encryption protocol to safeguard communications from anticipated decryption attacks. This open-source email service, with ten million users, is based in Germany and involved in developing secure cloud storage and file-sharing solutions for the government. TutaCrypt combines quantum-safe algorithms with traditional ones to ensure … Read more
March 11, 2024 at 05:26PM The practice of typosquatting involves using look-alike websites and domain names to deceive users, often relying on human errors to capture victims. Attackers are continuously improving their tactics, making it difficult to detect these fraudulent domains and messages. Various industries have fallen victim to typosquatting, prompting experts to emphasize the … Read more
March 11, 2024 at 04:17PM Okta denies leaked company data from October 2023 cyberattack. The breach impacted customer support system users, including stolen credentials allowing attackers to access cookies and authentication. A threat actor claimed to release an Okta Database containing 3,800 customer records. Okta confirms the data does not belong to them, likely from … Read more
March 11, 2024 at 03:19PM EquiLend Holdings, a New York-based securities lending platform, suffered a January ransomware attack resulting in stolen employee data. The firm confirmed that some systems were taken offline to contain the breach, despite initially not specifying the incident’s nature. EquiLend stated that client services have resumed, with no evidence of client … Read more
March 11, 2024 at 02:51PM Broadcom announced the merger of Carbon Black and Symantec into a new unit focusing on integrating network and data telemetry with Endpoint Detection and Response (EDR) technologies. The new Enterprise Security Group will manage Broadcom’s cybersecurity portfolio and enhance the products of both companies for greater customer visibility and control. … Read more
March 11, 2024 at 01:52PM Roku disclosed a data breach affecting 15,363 customer accounts, with hacked accounts used for fraudulent purchases and sold for as little as $0.50 each. The breach involved credential stuffing, allowing threat actors to change account information and make illegal purchases with stored credit card details. Roku is addressing the issue … Read more
March 11, 2024 at 01:37PM The nonprofit launched Tazama, an open source platform providing anti-fraud capabilities to financial systems in Africa, Asia, and the Middle East. Funded by the Linux Foundation and Gates Foundation, it completed pilot projects in Jordan and South Africa and aims to expand, addressing the lack of banking services and low … Read more