Millions of Android Users Scammed in SMS Fraud Driven by Tik-Tok Ads
UltimaSMS leverages at least 151 apps that have been downloaded collectively more than 10 million times, to extort money through a fake premium sms subscription service. Threat actors are using
Malicious Firefox Add-ons Blocked
Mozilla firefox is a free and open-source web browser that displays online pages using the Gecko rendering engine, which adheres to current and future web standards. What Happened? The Bypass
Nobelium APT Group: A New Supply Chain Attack where Tech Resellers Are Targeted
Nobelium APT group, the one behind the famous SolarWinds attack and also associated with Russia’s spy agency, seems to reenter the threat landscape scene. This time its targets are tech resellers,
Ransomware has proliferated because it's 'largely uncontested', says GCHQ boss
GCHQ director Sir Jeremy Fleming. Image: Getty If you’ve wondered why ransomware has proliferated in recent years, it’s because until recently it has remained unchallenged, according to Sir Jeremy Fleming,
Nearly all US execs have experienced a cybersecurity threat, but some say there's still no plan
A new survey suggests the majority of US executives have encountered a cybersecurity incident but this has not translated into the creation of incident response plans. On Tuesday, Deloitte published
Global Security Skills Shortage Falls to 2.7 Million Workers
Global Security Skills Shortage Falls to 2.7 Million Workers The global cybersecurity skills shortage has fallen for the second consecutive year, but the size of the workforce is still 65%
Third-party data breach in Singapore hits healthcare provider
Another third-party security breach has been reported in Singapore, this time, affecting patients of Fullerton Health and compromising personal data that included bank account details in “a few cases”. The
GCHQ Boss: Ransomware Has Doubled in a Year
GCHQ Boss: Ransomware Has Doubled in a Year The volume of ransomware attacks on UK organizations has doubled over the past year, a British spy chief has warned. Director of
Schools put the brakes on facial recognition scheme for kids buying lunch
Schools in the United Kingdom have paused the rollout of facial recognition scans in cafeterias following backlash from data watchdogs and privacy advocates. Last week, the Information Commissioner’s Office (ICO),
BEC Costs UK Firms £140M Over Past Year
BEC Costs UK Firms £140M Over Past Year Reported business email compromise (BEC) incidents have hit 4600 cases over the past 12 months, costing individuals and businesses £138m in losses,
Mozilla Firefox cracks down on malicious add-ons used by 455,000 users
Mozilla’s Firefox browser team has cracked down on malicious add-ons, blocking software with a 455,000 user base. On October 25, the development team said that in early June, Firefox discovered
KT clarifies routing error caused outage instead of DDoS attack
Image: Getty Images South Korean telco KT has said its network outage on Monday was caused by an internal router issue, backtracking on its initial claim that the incident was
Home Affairs in talks to give telco more blocking powers against malicious messages
Image: Getty Images The Department of Home Affairs is in talks with the telecommunications industry to provide more powers to telcos for blocking spam and malicious content. “We are in
NSW government stands up dedicated unit to fight identity theft
The New South Wales government has established a dedicated unit that will provide support for citizens who have had their personal information or government proof of identity credentials stolen or
SolarWinds hackers, Nobelium, hit cloud providers and resellers
So far, Microsoft has informed 140 companies about the new attack campaign being carried out by Nobelium 14 of which were compromised by the group. The IT security researchers at
Defending Assets You Don’t Know About Against Cyberattacks
No security defense is perfect, and shadow IT means no company can inventory every single asset that it has. David “moose” Wolpoff, CTO at Randori, discusses strategies for core asset
Austrac limited when regulating overseas terrorism financing via online platforms
Representatives from the Australian Transaction Reports and Analysis Centre (Austrac) on Monday said far-right extremists were increasingly using online platforms, such as Telegram and cryptocurrency exchange platforms, to fund their
Groove Calls for Cyberattacks on US as REvil Payback
The bold move signals a looming clash between Russian ransomware groups and the U.S. Following the recent international law enforcement effort that dismantled the infrastructure for the REvil ransomware group,
BillQuick Billing App Rigged to Inflict Ransomware
A SQL injection bug in the BillQuick billing app has not only leaked sensitive information, it’s also let malicious actors remotely execute code and deploy ransomware. Threat actors are picking
BillQuick says patch coming after Huntress report identifies vulnerabilities used in ransomware attack
BillQuick has said a short-term patch will be released addressing some of the vulnerabilities identified this weekend by cybersecurity firm Huntress. In a blog post on Friday, Huntress security researcher
What is a cybersecurity degree?
Cybersecurity schools train ethical hackers and information security analysts. A cybersecurity degree can help learners launch careers in this high-demand, lucrative field. Degree-seekers study cybersecurity at the undergraduate and graduate
SolarWinds APT Targets Tech Resellers in Latest Supply-Chain Cyberattacks
The Nobelium group, linked to Russia’s spy agency, is looking to use resellers as a path to infiltrate their valuable downstream customers – and it’s working. The SolarWinds attackers –
Latest Russian espionage activity is broader than SolarWinds-style hacking effort, Microsoft's Tom Burt says
Written by Tim Starks Oct 25, 2021 | CYBERSCOOP An apparent espionage campaign from the same Russian hacking group that breached the U.S. federal contractor SolarWinds in 2020 differed from
DiploFoundation Develops Simulated Cyber-Attack Game
DiploFoundation Develops Simulated Cyber-Attack Game A non-profit educational foundation has teamed up with a cybersecurity company to develop a game that reveals what happens in a cyber-attack. The online simulation
Nominations Sought for Global Cyber Awards
Nominations Sought for Global Cyber Awards The organizers of the Globee Business Awards are seeking nominations for the top performers in the cybersecurity industry. Star performers are being sought for the 18th
CISA Urges Sites to Patch Critical RCE in Discourse
The patch, urgently rushed out on Friday, is an emergency fix for the widely deployed platform, whose No. 1 most trafficked site is Amazon’s Seller Central. Discourse – the ultra-popular,
Facebook sues Ukrainian man for scraping and selling 178m users’ data
Facebook tracked down the programmer after he mistakenly used his contact information on email and job portals. On October 21, 2021, Facebook filed a lawsuit against a Ukrainian citizen for
Groove Ransomware Gang Asks Extortion Groups to Attack US Interests
Following the recent event, when REvil ransomware‘s infrastructure was taken down by law enforcement, the Groover ransomware gang has begun to react to what happened. So they have started to
PC&Console Controllers Manufacturer SCUF Gaming Hacked to Steal Banking Information
Customers of SCUF Gaming, a global innovator and creator of high-performance gaming controllers are currently being informed that the company was the victim of a cyberattack that occurred this February.
A Well-Known NPM Library Was Hijacked
User-Agent data is utilized by UA-Parser-JS in applications and webpages to determine the type of device or browser a user is using. A remote attacker might gain access to sensitive
Anglo American Launches Cybersecurity Apprenticeships
Anglo American Launches Cybersecurity Apprenticeships The world's largest producer of platinum has launched a cybersecurity apprenticeship scheme in the northeast of England. Multi-national mining company Anglo American, which is headquartered in
Countries Ranked According to Online Risks
Countries Ranked According to Online Risks The considerable variation in risks faced by internet users worldwide has been laid bare by a new study by anti-fraud vendor SEON. Combining data from five cybersecurity
Ransomware: Industrial services top the hit list – but cyber criminals are diversifying
Businesses in industrial goods and services are still the most popular target for ransomware attacks, but cyber criminals are increasingly diversifying which organisations they’re extorting. Ransomware has become a major cybersecurity issue,
Russian spies compromised 14 tech providers, aiming to 'piggyback' on customer access, Microsoft says
Written by Jeff Stone Oct 25, 2021 | CYBERSCOOP Suspected Russian spies who exploited a federal contractor to breach nine U.S. government agencies last year have continued targeting technology supply
Russian Drivers’ Private Information Available For Sale
The personal information of millions of Russian drivers is being sold by hackers on an underground market for only a few hundred dollars. As it turns out, the stolen data
How APIs can turn your business into a platform
Market, technology, and legislative trends have created needs across all industry verticals to create and consume APIs. The mandate of an API economy is clear — the question that IT
What is EDR and why is endpoint security so important?
Cybersecurity leaders have a daunting task and have needed to increase the scope of their security framework and how to effectively protect their organizations. Many frameworks such as ones provided
Blackmatter Ransomware Victims Helped with a Secret Decryptor
BlackMatter is claiming to be a successor to Darkside and REvil, two other notorious ransomware threat actors responsible for the cyberattacks on Colonial Pipeline and Kaseya. The cybersecurity company Emsisoft, uncovered a vulnerability in the
DarkSide Ransomware Gang: New Activity Indicates a Rush to Cash Out Bitcoin
It has been observed a recent activity associated with a wallet owned by the DarkSide ransomware gang. It seems that its operators want to cash out $7 million in Bitcoin
His boss said the spy camera proved he was lazy. His response was brilliant
The camera lies all the time. Image: iStock/ Borislav Technology erodes trust. That’s my philosophical thought of the day. The more humans have become embedded in technology’s core, the more
SolarWinds hackers, Nobelium, once again strike global IT supply chains, Microsoft warns
Microsoft has warned that Nobelium, the hacking group behind the SolarWinds fiasco, has targeted at least 140 resellers and technology service providers in global IT supply chains. On October 24,
Cyber-Attacks on House of Commons Soar by 358% in 2021
Cyber-Attacks on House of Commons Soar by 358% in 2021 Over 126 million malicious emails have been fired at House of Commons (HoC) inboxes this year, a 358% increase on
BlackMatter Bug Saved Victims Millions in Ransom Payments
BlackMatter Bug Saved Victims Millions in Ransom Payments Security researchers claim to have saved BlackMatter ransomware victims millions over the past few months after exploiting a bug they found in
Tesco's website restored after suspected cyberattack
UK supermarket giant Tesco has restored access to its website and app after an outage struck the service on Saturday, preventing customers from ordering or cancelling deliveries until Sunday evening.
Tesco App and Website Back Online After Cyber Incident
Tesco App and Website Back Online After Cyber Incident Tesco’s groceries app and website are back up after a weekend of disruption for customers following a suspected cyber-attack. The UK’s
Large DDoS attack shuts down KT's nationwide network
South Korea telco KT said on Monday that the temporary nationwide shutdown of its network earlier today was caused by a large-scale distributed denial-of-service (DDoS) attack. Customers who use the
AFP is looking to be 'more aggressive' with new cyber offense arm
Image: ACT Policing The Australian Federal Police is conducting an internal review to implement a new cyber offensive arm, AFP commissioner Reece Kershaw said at Senate Estimates on Monday morning.
Singtel sells off payment card compliance business
Singtel has sold off its payment card compliance business Trustwave in a deal worth $80 million, as part of efforts to “optimise” the group’s resource allocation and growth focus. The