Security Affairs

JULY 19, 2021

Pegasus Project investigation into the leak of 50,000 phone numbers of potential surveillance targets revealed the abuse of NSO Group’s spyware. Pegasus Project is the name of a large-scale investigation into the leak of 50,000 phone numbers of potential surveillance targets that revealed the abuse of NSO Group’s spyware.

Spyware 113

Spyware Government Surveillance Media 113

Security Affairs

MAY 6, 2023

Twitter confirmed that a security incident publicly exposed Circle tweets FBI seized other domains used by the shadow eBook library Z-Library WordPress Advanced Custom Fields plugin XSS exposes +2M sites to attacks Fortinet fixed two severe issues in FortiADC and FortiOS Pro-Russia group NoName took down multiple France sites, including the French (..)

Data breaches 94

Data breaches Malware Mobile Spyware 94

Security Affairs

SEPTEMBER 3, 2022

Google rolled out emergency fixes to address actively exploited Chrome zero-day Samsung discloses a second data breach this year The Prynt Stealer malware contains a secret backdoor. users China-linked APT40 used ScanBox Framework in a long-running espionage campaign Russian streaming platform Start discloses a data breach impacting 7.5M

Data breaches 66

Data breaches Malware Surveillance Ransomware 66

Security Affairs

MARCH 26, 2023

NCA infiltrates the cybercriminal underground with fake DDoS-for-hire sites Pwn2Own Vancouver 2023 awarded $1,035,000 and a Tesla for 27 0-days CISA announced the Pre-Ransomware Notifications initiative China-linked hackers target telecommunication providers in the Middle East City of Toronto is one of the victims hacked by Clop gang using GoAnywhere (..)

Data breaches 78

Data breaches DDOS Backups Ransomware 78

Security Affairs

JUNE 26, 2022

SecurityAffairs awarded as Best European Personal Cybersecurity Blog 2022 Crooks are using RIG Exploit Kit to push Dridex instead of Raccoon stealer Flagstar Bank discloses a data breach that impacted 1.5

Small Business 79

Small Business Spyware Data breaches Surveillance 79

Security Affairs

SEPTEMBER 23, 2023

The Royal group began reconnaissance activity in April 2023, and the analysis of system log data dates the beginning of the surveillance operations on April 7, 2023. Royal was then able to traverse the internal City infrastructure during the surveillance period using legitimate 3rd party remote management tools.”

Ransomware 103

Ransomware Surveillance Healthcare Accountability 103

Security Affairs

SEPTEMBER 2, 2019

Earlier in August, Poshmark , a social commerce marketplace where people in the United States can buy and sell new or used clothing, shoes, and accessories, disclosed a data breach that took place in May 2018. “In mid-2018, social commerce marketplace Poshmark suffered a data breach that exposed 36M user accounts.

Accountability 83

Accountability Data breaches Passwords Advertising 83

Security Affairs

AUGUST 29, 2021

Be sure it is up to date! LPE zero-day flaw in Razer Synapse allows attackers to take over Windows PCs Memorial Health System forced to cancel surgeries after ransomware attack Google discloses unpatched Microsoft WFP Default Rules AppContainer Bypass EoP.

Spyware 102

Spyware Data breaches Surveillance Hacking 102

Security Affairs

NOVEMBER 24, 2019

CVE-2019-2234 flaws in Android Camera Apps exposed millions of users surveillance. Hackers leak 2TB of Data From Cayman National Bank stolen by Phineas Fisher. T-Mobile discloses data breach affecting prepaid wireless customers. Chinese smartphone vendor OnePlus discloses a new data breach.

Data breaches 86

Data breaches Wireless Banking Advertising 86

Security Affairs

JULY 15, 2023

Government agencies SonicWall urges organizations to fix critical flaws in GMS/Analytics products Citrix fixed a critical flaw in Secure Access Client for Ubuntu Cl0p hacker operating from Russia-Ukraine war front line – exclusive Fortinet fixed a critical flaw in FortiOS and FortiProxy Microsoft mitigated an attack by Chinese threat actor Storm-0558 (..)

Spyware 90

Spyware Hacking Data breaches Mobile 90

Security Affairs

SEPTEMBER 24, 2023

0-days exploited by commercial surveillance vendor in Egypt PREDATOR IN THE WIRES OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes Cybersecurity Apple and Google Are Introducing New Ways to Defeat Cell Site Simulators, But Is it Enough?

Cyber Attacks 82

Cyber Attacks Firewall Data breaches Telecommunications 82

Security Affairs

APRIL 17, 2022

Gov believes North Korea-linked Lazarus APT is behind Ronin Validator cyber heist The unceasing action of Anonymous against Russia Threat actors target the Ukrainian gov with IcedID malware Threat actors use Zimbra exploits to target organizations in Ukraine Conti Ransomware Gang claims responsibility for the Nordex hack ZingoStealer crimeware released (..)

Wireless 76

Wireless Data breaches Hacking Surveillance 76

Security Affairs

JUNE 10, 2022

Sispi (Palermo Innovazione System), which is the municipal company that is responsible for the technical management of the municipal IT and telematic system of the Municipality of Palermo, confirmed the ransomware attack a few days later, but at this time it doesn’t confirm the data breach.

Ransomware 107

Ransomware Data breaches Cyber Attacks Surveillance 107

Security Affairs

FEBRUARY 13, 2022

to replace Chinese equipment Hackers breached a server of National Games of China days before the event Russian Gamaredon APT is targeting Ukraine since October Israeli surveillance firm QuaDream emerges from the dark Argo CD flaw could allow stealing sensitive data from Kubernetes Apps. US seizes $3.6 Pierluigi Paganini.

Spyware 73

Spyware Surveillance Ransomware Hacking 73

Krebs on Security

OCTOBER 28, 2020

In August, Gunnebo said it had successfully thwarted a ransomware attack, but this week it emerged that the intruders stole and published online tens of thousands of sensitive documents — including schematics of client bank vaults and surveillance systems. ”

Hacking 343

Hacking Ransomware Banking Accountability 343

Security Affairs

APRIL 20, 2022

Synesis Surveillance System – Anonymous claims to have hacked the Synesis and Kipod surveillance systems. According to DDoSecrets, data was gathered in August 2020. , the Main Directorate for the Arrangement of Troops with 49% and 51% shares, respectively. GB in size.

Hacking 127

Hacking Banking Surveillance Engineering 127

Security Affairs

SEPTEMBER 1, 2019

Bad Packets warns of over 14,500 Pulse secure VPN endpoints vulnerable to CVE-2019-11510. Hostinger disclosed a data breach that affects 14 Million customers. Binance says that leaked KYC Data are from third-party vendor. UK National Cyber Security Centre urge to drop Python 2. Remove it now from your phone!

eCommerce 48

eCommerce Data breaches Malware Advertising 48

Security Affairs

SEPTEMBER 6, 2020

Is the Belarusian government behind the surveillance Android app banned by Google? The Twitter account of Indian Prime Minister Modi was hacked Evilnum APT used Python-based RAT PyVil in recent attacks SunCrypt Ransomware behind North Carolina school district data breach U.S.

Wireless 73

Wireless Surveillance Advertising Hacking 73

Security Affairs

AUGUST 7, 2022

Every week the best security articles from Security Affairs free for you in your email box. Greek intelligence service used surveillance malware to spy on a journalist, Reuters reports Slack resets passwords for about 0.5% If you want to also receive for free the newsletter with the international press subscribe here.

Spyware 121

Spyware Manufacturing Small Business Surveillance 121

SC Magazine

MARCH 10, 2021

Pictured: a Dome Series security camera from Verkada. A hacking collective compromised roughly 150,000 internet-connected surveillance cameras from Verkada, Inc., When surveillance leads to spying. Odds are more than one was breached here,” said Davisson. “I

Surveillance 129

Surveillance IoT Accountability Passwords 129

Security Affairs

JANUARY 14, 2022

Like other ransomware gangs, Lorenz operators also implement double-extortion model by stealing data before encrypting it and threatening them if the victim doesn’t pay the ransom. Hensoldt AG focuses on sensor technologies for protection and surveillance missions in the defence, security and aerospace sectors.

Ransomware 117

Ransomware Surveillance Mobile Encryption 117

Security Affairs

MAY 26, 2019

The name ‘Boris’ is not new for the cyber security industry, it is the name of the hacker who breached the IT provider CityComp at the end of April. Stolen data include some databases and company documents. SecurityAffairs – Perceptics, data breach). ” reads the post published by El Reg.

Data breaches 68

Data breaches Surveillance Advertising Hacking 68

Security Affairs

APRIL 23, 2023

Abandoned Eval PHP WordPress plugin abused to backdoor websites CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog At least 2 critical infrastructure orgs breached by North Korea-linked hackers behind 3CX attack American Bar Association (ABA) suffered a data breach,1.4

Spyware 73

Spyware Ransomware Malware Data breaches 73

Security Affairs

FEBRUARY 14, 2021

COMB breach: 3.2B

Spyware 89

Spyware Phishing Data breaches Surveillance 89

Security Affairs

JULY 24, 2022

ransom and sued its insurance firm for refusing to cover this payment Crooks stole $375k from Premint NFT, it is one of the biggest NFT hacks ever Google is going to remove App Permissions List from the Play Store Security Affairs newsletter Round 374 by Pierluigi Paganini APT groups target journalists and media organizations since 2021.

Spyware 91

Spyware Surveillance Insurance Malware 91

Security Affairs

JULY 23, 2023

Multiple DDoS botnets were observed targeting Zyxel devices CISA warns of attacks against Citrix NetScaler ADC and Gateway Devices Experts believe North Korea behind JumpCloud supply chain attack Nice Suzuki, sport: shame dealer left your data up for grabs Experts attribute WyrmSpy and DragonEgg spyware to the Chinese APT41 group ALPHV/BlackCat and (..)

DDOS 89

DDOS Hacking Spyware Surveillance 89

Security Affairs

JULY 19, 2019

The DoJ’s chief national security prosecutor John Carlin revealed that Martin was employed by Booz Allen Hamilton. Booz Allen Hamilton is the same defense contractor that employed the notorious Edward Snowden at the time the whistleblower when he disclosed the mass surveillance program conducted by the NSA on a global scale.

Government 84

Government Advertising Surveillance Data breaches 84

Security Affairs

MARCH 14, 2021

Chinese hackers allegedly hit thousands of organizations using Microsoft Exchange REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims Russia-linked APT groups exploited Lithuanian infrastructure to launch attacks Hackers compromised Microsoft Exchange servers at the EU Banking Regulator EBA Microsoft updated MSERT (..)

Surveillance 73

Surveillance DDOS Cryptocurrency Ransomware 73

Security Affairs

JUNE 20, 2022

US DoJ announced to have shut down the Russian RSOCKS Botnet MaliBot Android Banking Trojan targets Spain and Italy Chinese DriftingCloud APT exploited Sophos Firewall Zero-Day before it was fixed Experts link Hermit spyware to Italian surveillance firm RCS Lab and a front company A Microsoft 365 feature can ransom files on SharePoint and OneDriveCould (..)

Spyware 70

Spyware DNS Surveillance Ransomware 70

Security Affairs

NOVEMBER 19, 2019

Distributed Denial of Secrets didn’t hacked the systems at the Cayman National , the group only released information that were stolen by the popular hacktivist “ Phineas Fisher.” ” Phineas Fisher is the same hacker that breached the surveillance firms HackingTeam and Gamma Group.

Banking 92

Banking Advertising Surveillance Accountability 92

Security Affairs

MARCH 31, 2020

The exposed data poses a serious risk to users in a country like Iran, nation-state actor could use them to target specific individuals that use Telegram (or a fork of the instant messaging app) for surveillance purposes. The experts pointed out that hashes and secret keys can’t be used to access accounts.

Advertising 99

Advertising Accountability Surveillance Government 99

Security Affairs

MAY 1, 2022

TB of Russian data Apr 17 – Apr 23 Ukraine – Russia the silent cyber conflict.

DDOS 70

DDOS Surveillance Hacking Ransomware 70

Security Affairs

JANUARY 27, 2020

Johannes Caspar, the state data protection officer in Hamburg, said the records demonstrate a massive surveillance activity on employees. ” reads a p ost p ublished by the Associated Press. T he records were accessible to all company managers. “This has resulted in a significant evaluation of the reports available to us.”

Retail 73

Retail Advertising Surveillance Data breaches 73

Security Affairs

DECEMBER 29, 2019

Experts from Twelve Security claimed they found API tokens that would have allowed hackers to access Wyze user accounts from any iOS or Android device. The incident was independently verified by the authors of the blog IPVM that focuses on video surveillance products. on December 26 by a reporter at IPVM.com.

IoT 63

IoT Accountability Advertising Wireless 63

Spinone

NOVEMBER 21, 2019

To protect personal information and feel safe while surfing the internet; 2. To train your employees and protect company data from human mistakes and, therefore, costly data breaches; 3. Given that phishing accounts for 90% of data breaches , this simulation must be a part of every company’s security education.

Social Engineering 40

Social Engineering Accountability Phishing Cybersecurity 40

Security Affairs

OCTOBER 14, 2022

Recently, the Cybernews research team stumbled upon an unprotected database with over 90 million drone-monitoring logs generated by DJI devices – the largest market player in the world that sells both drones and devices to surveil them. The surveillance race. Troubling data.

Surveillance 121

Surveillance Marketing Manufacturing Risk 121

Security Affairs

APRIL 2, 2023

LockBit leaks data stolen from the South Korean National Tax Service Italy’s Data Protection Authority temporarily blocks ChatGPT over privacy concerns CISA adds bugs exploited by commercial surveillance spyware to Known Exploited Vulnerabilities catalog Hackers are actively exploiting a flaw in the Elementor Pro WordPress plugin Cyber Police of Ukraine (..)

Spyware 85

Spyware Surveillance Artificial Intelligence Data breaches 85