June 6, 2024 at 04:18AM Google will store Maps Timeline data locally on users’ devices starting December 1, 2024, instead of on their Google account. This change follows Google’s announcement in December 2023 to reduce the auto-delete control for Location History to three months by default. The updates are gradually rolling out to all users … Read more
June 4, 2024 at 04:05PM A new ransomware group, “Fog,” has been conducting traditional attacks by locking up data in virtual environments for quick payouts. They utilize stolen VPN credentials, exploit vulnerabilities in VPN gateways, and employ tactics like credential stuffing and disabling Windows Defender. Fog targets US organizations, especially in the education sector, due … Read more
May 24, 2024 at 11:01AM ShrinkLocker is a new ransomware strain that utilizes Windows BitLocker to encrypt systems by creating new boot volumes. It employs previously unreported features to maximize the attack’s damage and targets specific Windows versions. The malware modifies registry entries and denies recovery options, indicating a destructive intent rather than financial gain. … Read more
May 16, 2024 at 03:40PM Researchers found 11 security flaws in GE’s Vivid Ultrasound products and related software, with severity ranging from 5.7 to 9.6 on the CVSS 3.1 scale. Nozomi Networks detailed potential risks, including remote code execution, but physical access is needed in some cases. GE has patches and mitigations available on its … Read more
May 3, 2024 at 04:15AM Ukrainian national Yaroslav Vasinskyi, 24, was sentenced to 13 years and seven months in the US for his involvement in the REvil ransomware operation, particularly in the Kaseya attack impacting 1,500 organizations. Vasinskyi admitted to launching over 2,500 attacks, demanding $700 million in ransom and laundering proceeds using crypto exchanges. … Read more
April 19, 2024 at 07:48AM The Akira ransomware group has extorted $42 million from over 250 victims by targeting businesses and critical infrastructure worldwide. They initially focused on Windows systems before deploying a Linux variant. The group exploits known vulnerabilities in Cisco appliances and uses various methods to establish persistence and evade detection. Akira is … Read more
April 10, 2024 at 07:58AM A hacker known as “ShopifyGUY” leaked 2GB of personal info from boAt customers in India. The company controls 26% of the wearables market and 40% of earbud sales. Despite selling for $2, the info appears genuine. Companies are advised to invest in anti-exfiltration tools and encrypt their databases to safeguard … Read more
March 18, 2024 at 03:56PM Microsoft will soon deprecate RSA keys shorter than 2048 bits in Windows TLS to enhance security. With 2048-bit keys offering greater strength, Microsoft’s decision aims to protect organizations from weak encryption. The move may affect older software and devices, but a grace period is likely before formal deprecation begins. Organizations … Read more
March 15, 2024 at 09:55AM A new variant of StopCrypt ransomware spotted utilizing multi-stage execution and evading security tools. STOP Djvu, a widely distributed ransomware, targets consumers for small ransom payments. Distributed via malvertising and adware bundles, it infects users with various malware. The new variant employs intricate execution mechanisms, posing a significant threat despite … Read more
March 13, 2024 at 03:32PM Nissan’s Oceania-region corporate and finance offices experienced a ransomware attack on Dec. 5, compromising sensitive data of around 100,000 individuals in Australia and New Zealand. The breach includes government IDs and other personal information of Renault-Nissan-Mitsubishi Alliance customers. The nature of the attack and the perpetrators have not been disclosed, … Read more