July 25, 2024 at 12:56PM Meta has removed 63,000 Instagram accounts from Nigeria due to sextortion scams, including a network of 2,500 accounts linked to 20 individuals targeting adult men in the United States. These scams are linked to the ‘Yahoo Boys’ cybercrime group. Meta has also deleted Facebook accounts, pages, and groups associated with … Read more
June 12, 2024 at 09:19PM Life360, the company behind Tile Bluetooth tracking devices and apps, reported a “criminal extortion attempt” after unauthorized access to customer data. The breach accessed names, addresses, emails, and phone numbers, but not more sensitive info. The CEO’s statement did not reveal ransom amount or whether paid. Law enforcement has been … Read more
June 11, 2024 at 06:45AM Apple has introduced Private Cloud Compute (PCC), a secure cloud intelligence system for processing AI tasks while preserving privacy. This coincides with the release of new generative AI features called Apple Intelligence. Both on-device features and those using PCC promise privacy protections, with a focus on data security and user … Read more
June 10, 2024 at 06:13PM Microsoft introduced the “Recall” AI feature for Copilot+ PCs, prompting concerns about potential data theft. In response, Microsoft added new security measures: Recall will now be turned off by default, users need Windows Hello enrollment, and Recall data will be encrypted. However, experts doubt these changes will fully safeguard sensitive … Read more
June 5, 2024 at 03:16PM High-profile TikTok accounts are being exploited and hijacked in a takeover campaign, with threat actors sending malware-infested direct messages. The malware allows account hijacking without the victim clicking on links or downloading files. TikTok is collaborating with account holders to resolve the issue and prevent future attacks. Notable accounts targeted … Read more
May 24, 2024 at 08:04AM SecurityWeek’s cybersecurity news roundup compiles important stories often overlooked, providing a valuable overview of the cybersecurity landscape. This week’s stories cover spyware found on US hotel check-in systems, cellular network flaws, undersea cable vulnerability, cybersecurity funding, Incognito Market owner’s arrest, NIST’s 2023 report, Iranian group’s attacks, Energy Department funding, AWS … Read more
May 23, 2024 at 05:34PM Ransomware dubbed ShrinkLocker, utilizing Microsoft BitLocker to encrypt and extort payments, has been spotted by Kaspersky’s security team. The malware targets various sectors and hinders effective response, maximizing damage. It uses VBScript to determine the OS and allows attackers to change partition labels, extort victims, and delete recovery options. Kaspersky … Read more
May 21, 2024 at 09:45AM Zoom announced the addition of post-quantum end-to-end encryption (E2EE) using the Kyber 768 key method to Zoom Workplace. Available in Zoom Meetings worldwide and coming soon to Zoom Phone and Zoom Rooms, this marks Zoom as the first unified communications-as-a-service company to offer a post-quantum E2EE solution. Other major companies … Read more
May 20, 2024 at 05:45AM The British Library CEO Roly Keating emphasized the importance of emotional intelligence in managing the response to a ransomware attack. The organization prioritized frequent and empathetic communication as it navigated the recovery process, including openly sharing a detailed analysis of the incident. Cross-sector collaboration was also crucial to the library’s … Read more
May 16, 2024 at 10:49AM The annual CYBERUK conference, hosted by the National Cyber Security Centre, focused on the theme “Future Tech, Future Threat, Future Ready”. While discussions addressed the future of security technology and Russian and Chinese cyber threats, the urgency for cyber resilience and collaboration was emphasized as a critical strategy to counter … Read more