Email has been both a blessing and a curse for billions of users. Unfortunately, it’s definitely been a blessing for hackers and a curse for consumers who receive their phishing attacks, malware attachments and more. Although highly-targeted “spear” phishing attacks are increasingly seen as the way to go by sophisticated threat actors, there’s no doubting […]
New Rules Impact 500 Million Outlook Users Read More »
A new wave of international law enforcement actions has led to four arrests and the takedown of nine servers linked to the LockBit (aka Bitwise Spider) ransomware operation, marking the latest salvo against what was once a prolific financially motivated group. This includes the arrest of a suspected LockBit developer in France while on holiday
LockBit Ransomware and Evil Corp Members Arrested and Sanctioned in Joint Global Effort Read More »
Data breaches are becoming an expensive predicament for all of us, even if your data isn’t directly stolen in a breach. The latest IBM 2024 Cost of a Data Breach Report, released in July, reveals that when companies suffer these breaches, they often pass the hefty costs onto their customers. And data breaches are becoming extremely pricey, especially for
Data Breaches Slim Down Your Wallet Read More »
An enormous amount of sensitive information including Social Security numbers for millions of people could be in the hands of a hacking group after a data breach and may have been released on an online marketplace, The Los Angeles Times reported this week. The hacking group USDoD claimed it had allegedly stolen personal records of 2.9 billion
More and more websites and services are making multi-factor-authentication (MFA) mandatory, which makes it much harder for cybercriminals to access your accounts. That’s a great thing. But as security evolves, so do cybercriminals who are always looking for new ways to scam us. A type of phishing we’re calling authentication-in-the-middle is showing up in online media. While
Scammers can easily phish your multi-factor authentication codes. Here’s how to avoid it Read More »
For the most popular operating system in the world—which is Android and it isn’t even a contest—there’s a sneaky cyberthreat that can empty out a person’s bank accounts to fill the illicit coffers of cybercriminals. These are “Android banking trojans,” and, according to our 2024 ThreatDown State of Malware report, Malwarebytes detected an astonishing 88,500 of them
Android banking trojans: How they steal passwords and drain bank accounts Read More »
A malicious package uploaded to the npm registry has been found deploying a sophisticated remote access trojan on compromised Windows machines. The package, named “oscompatible,” was published on January 9, 2024, attracting a total of 380 downloads before it was taken down. oscompatible included a “few strange binaries,” according to software supply chain security firm Phylum, including a single
Npm Trojan Bypasses UAC, Installs AnyDesk with “Oscompatible” Package Read More »
Network and security giant Cloudflare and password manager maker 1Password said hackers briefly targeted their systems following a recent breach of Okta’s support unit. Both Cloudflare and 1Password said their recent intrusions were linked to the Okta breach, but that the incidents did not affect their customer systems or user data. “We immediately terminated the activity,
Okta’s latest hack fallout hits Cloudflare, 1Password Read More »
