April 1, 2024 at 12:30PM The Android banking malware Vultur has been updated, providing operators with greater control over infected devices. New capabilities include remote interaction, file modification, and the ability to bypass lock-screen protections. The malware continues to rely on AlphaVNC and ngrok for remote access, while employing anti-analysis techniques and evading detection. (Words: … Read more
March 30, 2024 at 11:06PM AT&T disclosed that data pertaining to about 73 million current and former customers, including social security numbers, was revealed on the dark web. The telecom firm suspects the data dates back to 2019 or earlier, affecting around 7.6 million current account holders and 65.4 million former account holders. AT&T assured … Read more
March 28, 2024 at 04:15AM MIT study finds 98% of students willing to share friends’ emails for free pizza, highlighting privacy paradox. Telegram’s new P2PL feature offers free premium membership in exchange for using users’ phone numbers for OTP relay. Users cautioned about privacy risks, spam, unwanted contacts. Meta accused of intercepting Snapchat traffic for … Read more
March 27, 2024 at 06:17PM A targeted multi-factor authentication bombing campaign is targeting Apple device owners, bombarding them with password reset requests. It aims to exhaust users into accidentally allowing a password reset and includes sophisticated tactics such as spoofed support calls. Users are advised to be cautious and vigilant in responding to unexpected alerts … Read more
March 26, 2024 at 12:40PM Multiple free VPN apps on Google Play were found incorporating a malicious software development kit, transforming Android devices into residential proxies for potential cybercrime and shopping bots. These apps, originally promoting as VPN software, utilized the Proxylib SDK to convert devices into proxies without users’ knowledge. Google has taken action … Read more
March 22, 2024 at 09:28AM The Kenyan government is examining the beleaguered social media platform for potential cybersecurity and data privacy issues. It appears that the beleaguered social media platform is now under scrutiny by the Kenyan government regarding cybersecurity and data privacy. Full Article
March 21, 2024 at 04:54AM The U.S. Treasury Department’s Office of Foreign Assets Control announced sanctions against Russian nationals and their companies for cyber influence operations. They were accused of orchestrating disinformation campaigns targeting Europe and the U.S. under the name Doppelganger. This comes amidst legislative efforts to protect Americans’ sensitive data from foreign adversaries … Read more
March 20, 2024 at 03:38PM Microsoft has uncovered a clever phishing scheme targeting early tax filers in 2024. The scam involves an email claiming to contain tax returns and leads users to a fake website. Once downloaded, it installs malware to steal account credentials. Microsoft warns taxpayers to be cautious, especially certain vulnerable groups, and … Read more
March 18, 2024 at 05:38PM Over 900 websites using Google’s Firebase have been misconfigured, exposing sensitive data including 125 million user records. The issue stems from insecure Firebase implementations and lack of secure configuration. Researchers found 85 million names, 106 million email addresses, and 20 million passwords exposed. Despite notifications, only 24% of site owners … Read more
March 18, 2024 at 04:34PM Fujitsu confirmed the compromise of internal computers, the presence of malware, and potential theft of customer data. The statement did not detail the type of malware used, the timing of the breach, or the extent of data accessed. Fujitsu took immediate action to disconnect affected systems, implement enhanced security measures, … Read more