Security Boulevard

MARCH 24, 2025

Researchers name several countries as potential Paragon spyware customers TechCrunch The Citizen Lab, a group of academics and security researchers, recently published a report indicating the governments of Australia, Canada, Cyprus, Denmark, Israel, and Singapore are "likely" customers of Israeli spyware maker Paragon Solutions.

Surveillance 75

Surveillance Telecommunications Data breaches Malware 75

Security Affairs

JULY 7, 2024

GootLoader is still active and efficient Hackers stole OpenAI secrets in a 2023 security breach Hackers leak 170k Taylor Swift’s ERAS Tour Barcodes Polyfill.io GootLoader is still active and efficient Hackers stole OpenAI secrets in a 2023 security breach Hackers leak 170k Taylor Swift’s ERAS Tour Barcodes Polyfill.io

Data breaches 121

Data breaches Hacking Banking Spyware 121

Security Affairs

MARCH 24, 2024

surfaces in the threat landscape Pokemon Company resets some users’ passwords Ukraine cyber police arrested crooks selling 100 million compromised accounts New AcidPour wiper targets Linux x86 devices.

Malware 126

Malware Cybercrime Hacking Cyber threats 126

Security Affairs

MARCH 8, 2025

Quantum computers threaten to break online security in minutes, expert warns ENISA NIS360 2024 Catalan court says NSO Group executives can be charged in spyware investigation Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs hacking,newsletter)

Data breaches 68

Data breaches Hacking Cybercrime Artificial Intelligence 68

SecureList

FEBRUARY 5, 2025

In late 2024, we discovered a new malware campaign we dubbed “SparkCat”, whose operators used similar tactics while attacking Android and iOS users through both official and unofficial app stores. This is the first known case of an app infected with OCR spyware being found in Apple’s official app marketplace.

Malware 142

Malware Encryption Mobile Cryptocurrency 142

Google Security

MAY 15, 2024

In addition to our new suite of advanced theft protection features to help keep your device and data safe in the case of theft, we’re also focusing increasingly on providing additional protections against mobile financial fraud and scams. We’re also sharing new tools and policies to help developers build safer apps and keep their users safe.

Scams 79

Scams Threat Detection Social Engineering Surveillance 79

Security Affairs

SEPTEMBER 1, 2024

CISA adds Google Chromium V8 bug to its Known Exploited Vulnerabilities catalog Young Consulting data breach impacts 954,177 individuals BlackByte Ransomware group targets recently patched VMware ESXi flaw CVE-2024-37085 US offers $2.5M reward for Belarusian man involved in mass malware distribution U.S.

Surveillance 120

Surveillance Malware Firewall Phishing 120

Security Affairs

NOVEMBER 11, 2023

Virtual Kidnapping: AI Tools Are Enabling IRL Extortion Scams How a ‘Refund Fraud’ Gang Stole $700,000 From Amazon Info from 5.6 Virtual Kidnapping: AI Tools Are Enabling IRL Extortion Scams How a ‘Refund Fraud’ Gang Stole $700,000 From Amazon Info from 5.6

DDOS 128

DDOS Data breaches Ransomware Marketing 128

Security Boulevard

AUGUST 1, 2024

Stay Safe Online: 5 Essential Tips for World Wide Web Day josh.pearson@t… Thu, 08/01/2024 - 07:00 World Wide Web Day is celebrated each year on the first of August, marking the day the Internet was first made available to the public in 1991. Understanding common cyber threats can help you identify and avoid scams.

Identity Theft 64

Identity Theft Cyber threats Authentication Passwords 64

Thales Cloud Protection & Licensing

JULY 31, 2024

Stay Safe Online: 5 Essential Tips for World Wide Web Day josh.pearson@t… Thu, 08/01/2024 - 07:00 World Wide Web Day is celebrated each year on the first of August, marking the day the Internet was first made available to the public in 1991. Understanding common cyber threats can help you identify and avoid scams.

Identity Theft 62

Identity Theft Cyber threats Authentication Passwords 62

SecureList

FEBRUARY 5, 2025

In late 2024, we discovered a new malware campaign we dubbed “SparkCat”, whose operators used similar tactics while attacking Android and iOS users through both official and unofficial app stores. This is the first known case of an app infected with OCR spyware being found in Apple’s official app marketplace.

Malware 137

Malware Encryption Mobile Cryptocurrency 137

SecureWorld News

OCTOBER 31, 2024

Phishing phantoms: masters of disguise Phishing scams have become more sophisticated. Like vampires, malware strains can operate quietly, leeching data or encrypting files without warning, making ransomware and spyware infections incredibly haunting. Spooky fact : Sophos says the average ransom in 2024 is $2.73

IoT 120

IoT Phishing DDOS Backups 120

Security Affairs

FEBRUARY 25, 2024

Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S.

Spyware 130

Spyware Cyber Insurance Hacking Advertising 130

Security Affairs

MAY 26, 2024

million individuals North Korea-linked Kimsuky used a new Linux backdoor in recent attacks International Press – Newsletter Cybercrime Healthcare company WebTPA discloses breach affecting 2.5

Healthcare 128

Healthcare Spyware Data breaches Banking 128

Security Affairs

AUGUST 11, 2024

Day: Exploiting Localhost APIs From the Browser BlackHat USA 2024 – Listen-Up: Sonos Over-The-Air Remote Kernel Exploitation and Covert Wiretap ‘Sinkclose’ Flaw in Hundreds of Millions of AMD Chips Allows Deep, Virtually Unfixable Infections E.U.

Spyware 118

Spyware Ransomware Hacking Government 118

Security Affairs

JUNE 23, 2024

US government sanctions twelve Kaspersky Lab executives Experts found a bug in the Linux version of RansomHub ransomware UEFICANHAZBUFFEROVERFLOW flaw in Phoenix SecureCore UEFI firmware potentially impacts hundreds of PC and server models Russia-linked APT Nobelium targets French diplomatic entities US bans sale of Kaspersky products due to risks (..)

Firmware 115

Firmware Data breaches Banking Hacking 115

SecureList

FEBRUARY 19, 2025

Other scam pages featured surveys, offering respondents gifts or prize draws for participating. Such fake giveaways are a classic scam tactic. Beyond verification scams, fraudsters also lured victims with attractive offers. Some scams offered users a surprise “gift” a free Telegram Premium subscription.

Phishing 88

Phishing Scams Cryptocurrency Computers and Electronics 88

Security Affairs

MARCH 2, 2025

CISA adds Microsoft Power Pages flaw to its Known Exploited Vulnerabilities catalog Lazarus APT stole $1.5B Billion Bybit Hack Leaked Black Basta Ransomware Chat Logs Reveal Inner Workings and Internal Conflicts Silent Push Pivots into New Lazarus Group Infrastructure, Acquires Sensitive Intel Related to $1.4B

Cybercrime 61

Cybercrime Hacking Ransomware Cryptocurrency 61

Security Affairs

MAY 11, 2025

CVSS) in IOS XE That Enables Root Exploits via JWT Internet tracking: How and why were followed online Google to pay Texas $1.4 CVSS) in IOS XE That Enables Root Exploits via JWT Internet tracking: How and why were followed online Google to pay Texas $1.4

Spyware 63

Spyware Ransomware Malware DDOS 63

Security Affairs

SEPTEMBER 22, 2024

CISA adds Microsoft Windows, Apache HugeGraph-Server, Oracle JDeveloper, Oracle WebLogic Server, and Microsoft SQL Server bugs to its Known Exploited Vulnerabilities catalog SIEM for Small and Medium-Sized Enterprises: What you need to know Antivirus firm Dr.Web disconnected all servers following a cyberattack Experts warn of China-linked APT’s (..)

Surveillance 120

Surveillance Cryptocurrency Spyware Phishing 120

Security Affairs

DECEMBER 22, 2024

million individuals The FBI warns of HiatusRAT scanning campaigns against Chinese-branded web cameras and DVRs Russia FSB relies on Ukrainian minors for criminal activities disguised as “quest games” U.S.

Data breaches 61

Data breaches Cybercrime Spyware Firmware 61

Security Affairs

APRIL 13, 2025

CISA adds Ivanti Connect Secure, Policy Secure and ZTA Gateways flaw to its Known Exploited Vulnerabilities catalog A member of the Scattered Spider cybercrime group pleads guilty The controversial case of the threat actor EncryptHub PoisonSeed Campaign uses stolen email credentials to spread crypto seed scams and and empty wallets EDR-as-a-Service (..)

Data breaches 61

Data breaches Cybercrime Ransomware Hacking 61