January 11, 2024 at 12:35PM Mandiant’s investigation of the takeover of its X account revealed a successful brute-force attack due to a change in two-factor authentication policy. The use of SMS-based 2FA was removed, leaving accounts vulnerable. The compromise led to a scam pushing CLICKSINK drainer-as-a-service, highlighting the rise of such attacks targeting valuable cryptocurrency … Read more
December 28, 2023 at 01:08PM Risk and financial advisory company Kroll has revealed details about the August data breach, exposing personal info of FTX bankruptcy claimants, including coin holdings. Kroll cautioned affected individuals about potential phishing attacks and recommended security measures, such as not sharing personal info and storing crypto in cold wallets. The breach … Read more
December 18, 2023 at 03:58PM Mortgage lender Mr Cooper has disclosed a security breach resulting in the theft of personal information from 14.7 million individuals, costing an estimated $25 million to resolve. The stolen data includes names, addresses, Social Security numbers, and bank account details. Mr Cooper intends to provide free credit monitoring to affected … Read more
December 11, 2023 at 03:00AM Cybersecurity researchers have uncovered 18 malicious loan apps on the Google Play Store, collectively downloaded over 12 million times. These apps target users in Southeast Asia, Africa, and Latin America, gathering personal and financial information for blackmail. It’s crucial to download apps from official sources and scrutinize permissions and reviews … Read more