GitHub: Hackers Stole OAuth Access Tokens to Target Dozens of Firms

GitHub has revealed that attackers have abused OAuth user tokens issued to Heroku and Travis-CI, popular third-party OAuth integrators. GitHub revealed on Friday about receiving evidence of an unidentified adversary…

Latest Update for Google Chrome Fixes Actively Exploited 0-day Flaw

One of the two security vulnerabilities identified in the Google Chrome web browser was reportedly being actively exploited in the wild. On Thursday, Google released emergency fixes for the Chrome…

Feds warn about foreign government-connected hackers aiming to disrupt vital industrial systems

Written by Tim Starks Apr 13, 2022 | CYBERSCOOP A joint federal advisory Wednesday says that foreign government-linked hackers are targeting specific industrial processes with tools meant to breach and…

DOJ's Sandworm operation raises questions about how far feds can go to disarm botnets

Written by Suzanne Smalley Apr 8, 2022 | CYBERSCOOP The notion that citizens are protected from unreasonable search and seizure is a bedrock legal principle: A court must issue a…

Two alleged Lapsus$ teens appear in London court

Written by AJ Vicens Apr 1, 2022 | CYBERSCOOP Two of the teenagers arrested last week for their alleged role in the Lapsus$ cyber extortion group appeared in a London…

Update Chrome Browser Now – Google Releases Emergency Security Update

At least 3.2 billion Chrome users could be at risk because of the high severity zero-day vulnerability. Google released an emergency security update for Google Chrome Stable on 25th March…

UK-Based Teen Suspected of Operating LAPSUS$ Data Extortion Group

Experts claim the notorious data extortion group LAPSUS$ could be the brainchild of a teenager in the United Kingdom. LAPSUS$ is a relatively new cybercrime gang that first surfaced in December 2021…

Microsoft and Okta Confirm Data Breach Claims by LAPSUS$

Both companies have confirmed the breach after Lapsus$ hackers leaked screenshots of Okta’s internal system and source code for Microsoft’s Cortana and Bing. On Tuesday 22nd, Hackread.com reported that LAPSUS$…

Okta says 366 customers potentially affected in data breach

Written by AJ Vicens Mar 23, 2022 | CYBERSCOOP Okta, the identity authentication company whose customers were targeted by a prolific cybercrime group in a late-January breach, said Wednesday that…

Microsoft investigating hacking group's claims of successful breach

Written by AJ Vicens Mar 21, 2022 | CYBERSCOOP A cybercrime group that’s been targeting a string of high-profile victims with data theft, extortion and website defacements over the last…