Meta removes accounts of spyware company Cytrox after Citizen Lab report on gov't hacks

Citizen Lab has released a new report highlighting widespread government use of the “Predator” spyware from North Macedonian developer Cytrox. Researchers found that Predator was used to attack two people…

IIS Extensible Web Server Used to Steal Microsoft Exchange Credentials

Cybercriminals are installing a new malicious add-on for the IIS web server on Microsoft Exchange Outlook Web Access (OWA) servers to collect login information and remotely perform commands on the…

Apple releases Tracker Detect Android app to identify AirTags, other Find My-enabled devices

The Tracker Detect app after scanning for nearby AirTags and other Find My devices.  Jason Cipriani/ZDNet In a move aimed at increasing users’ privacy, Apple has released… an Android app?…

Apple releases Tracker Detect Android app to identify AirTags, other Find My-enabled trackers

The Tracker Detect app after scanning for nearby AirTags and other Find My devices.  Jason Cipriani/ZDNet In a move aimed at increasing users’ privacy, Apple has released… an Android app?…

Malicious npm Code Packages Built for Hijacking Discord Servers

The lurking code-bombs lift Discord tokens from users of any applications that pulled the packages into their code bases. A series of malicious packages in the Node.js package manager (npm)…

AWS Among 12 Cloud Services Affected by Flaws in Eltima SDK

Researchers have found a number of high-security vulnerabilities in third-party driver software – bugs that originated in a library created by network virtualization firm Eltima – that leave about a…

Emotet’s Behavior & Spread Are Omens of Ransomware Attacks

The botnet, which resurfaced last month on the back of TrickBot, can now directly install Cobalt Strike on infected devices, giving threat actors direct access to targets. The rapid spread…

Windows 10 Drive-By RCE Triggered by Default URI Handler

There’s an argument injection weakness in the Windows 10/11 default handler, researchers said: an issue that Microsoft has only partially fixed. Researchers have discovered a drive-by remote code-execution (RCE) bug…

When Scammers Get Scammed, They Take It to Cybercrime Court

Underground arbitration system settles disputes between cybercriminals. Blocked from legitimate courts, cybercriminals have set up their own system for settling disputes, handing over ultimate decision-making to senior underground forum administrators…

5 Ways to Ensure Your Child’s Online Safety

The internet is an integral tool for modern life. It allows people to connect, store enormous amounts of data, and conduct the business of daily life from the comfort of…