September 4, 2024 at 06:23AM The California state legislature passed a bill requiring internet browsers and mobile operating systems to offer a mechanism for users to opt out of the sale or sharing of their personal information. The bill now awaits Governor Gavin Newsom’s signature. This will result in a standardized process for opt-out requests, … Read more
August 28, 2024 at 01:28PM Google has increased payouts for Google Chrome security flaws through its Vulnerability Reward Program, with the maximum reward for a single bug now over $250,000, more than doubling the previous amount. Based on the meeting notes, it seems that Google has increased its payouts for security flaws reported through its … Read more
August 21, 2024 at 03:32PM 39-year-old Jesse Kipf from Kentucky received an 81-month prison sentence for various offenses, including cyber intrusion into a government death registry system to fake his own death and committing computer fraud and identity theft. He attempted to avoid paying $116,000 in child support and also infiltrated business and government networks, … Read more
August 20, 2024 at 02:36AM US authorities have implicated Iran in a recent cyber attack on the US Republican Party’s presidential nominee, Donald Trump’s campaign. The joint statement from the Office of the Director of National Intelligence, FBI, and CISA warned of Iran’s attempts to influence the US elections and undermine democratic institutions. The agencies … Read more
August 19, 2024 at 07:36AM The Oregon Zoo has notified 118,000 people of a data breach, exposing names and payment card details stolen from its online ticketing system. Transactions from Dec 20, 2023, to Jun 26, 2024, were affected. The zoo disclosed that a third-party vendor was targeted and has taken steps to secure a … Read more
August 16, 2024 at 11:03AM A 27-year-old Russian national, Georgy Kavzharadze, has been sentenced to over three years in prison for selling financial information and login credentials on the now-defunct dark web marketplace Slilpp. He is ordered to pay $1,233,521.47 in restitution and is estimated to have made over $200,000 in profits from the illegal … Read more
August 11, 2024 at 10:35PM The United Nations unanimously approved a Russian proposal to address cybercrime through the Convention on Countering the Use of Information and Communications Technologies for Criminal Purposes. However, tech companies and privacy activists oppose this, citing concerns about human rights and discretionary refusal grounds. Meanwhile, the British nuclear sub code was … Read more
August 1, 2024 at 03:47PM Malicious Python packages were added to the PyPI repository and promoted via the StackExchange platform. The code was harmful and posed a threat to users’ systems. Based on the meeting notes, it appears that threat actors have uploaded malicious Python packages to the PyPI repository and promoted them through the … Read more
July 16, 2024 at 10:10AM A massive ad fraud operation named Konfety has been uncovered, using hundreds of Google Play Store apps to engage in malicious activities. The campaign exploits a mobile advertising SDK associated with a Russia-based ad network, deploying “evil twin” versions of legitimate apps to commit ad fraud, monitor web searches, and … Read more
July 14, 2024 at 11:37AM The Monetary Authority of Singapore (MAS) has mandated major retail banks to phase out the use of one-time passwords (OTPs) within three months, in response to increasing phishing and scam threats. Instead, customers will use digital tokens on their mobile devices for enhanced security. Those who haven’t activated digital tokens … Read more