Security Boulevard

MAY 9, 2024

Chinese crooks are running a global network of more than 75,000 fake online shops to steal credit card data and process fraudulent payments. The post Massive Online Shopping Scam Racks Up 850,000 Victims appeared first on Security Boulevard.

Scams 116

Scams Social Engineering eCommerce Data privacy 116

Security Boulevard

MARCH 27, 2024

The post Revealed: Facebook’s “Incredibly Aggressive” Alleged Theft of Snapchat App Data appeared first on Security Boulevard. Meta MITM IAAP SSL bump: Zuck ordered “Project Ghostbusters”—with criminal consequences, says class action lawsuit.

Social Engineering 137

Social Engineering VPN Data privacy Engineering 137

Security Boulevard

MARCH 28, 2024

The post Apple OTP FAIL: ‘MFA Bomb’ Warning — Locks Accounts, Wipes iPhones appeared first on Security Boulevard. Rethink different: First, fatigue frightened users with multiple modal nighttime notifications. Next, call and pretend to be Apple support.

Accountability 132

Accountability Social Engineering Authentication Data privacy 132

Security Boulevard

FEBRUARY 22, 2024

The post PRC State Hacking: ‘Chinese Edward Snowden’ Spills I‑Soon Secrets in Huge Dump of TTPs appeared first on Security Boulevard. Underpaid, overworked and angry: Whistleblower in hacker contractor firm for Chinese government blows lid off tactics, techniques and procedures.

Hacking 136

Hacking Government Digital transformation Social Engineering 136

Security Boulevard

FEBRUARY 7, 2024

The post ‘Total Bollocks’ — No, Your Toothbrush isn’t DDoS’ing appeared first on Security Boulevard. PR FAIL: Were 3 million toothbrushes hacked into a botnet? Or does a Fortinet spokeschild have egg on his face?

Hacking 142

Hacking Social Engineering DDOS Internet 142

Security Boulevard

MARCH 1, 2024

EKEN IoT FAIL: Amazon, Sears and Shein still sell security swerving stuff. The post Cheap Video Doorbell Cams: Tools of Stalkers and Thieves appeared first on Security Boulevard.

IoT 130

IoT Social Engineering Internet Internet 130

Security Boulevard

FEBRUARY 27, 2024

appeared first on Security Boulevard. Pay no attention to that man: State Dept. Global Engagement Centre chief James Rubin (pictured) follows the yellow brick road. The post US Will Fight Russian Disinformation — Hacks and Leaks and Deepfakes, Oh My!

Hacking 130

Hacking Social Engineering Data privacy Engineering 130

Security Boulevard

APRIL 17, 2024

The OpenJS Foundation, which oversees multiple JavaScript projects, thwarted a takeover attempt of at least one project that has echoes of the dangerous backdoor found in versions of the XZ Utils data compression library that failed only because a Microsoft engineer incidentally discovered it.

Engineering 119

Engineering Social Engineering Data privacy Software 119

Security Boulevard

JANUARY 25, 2024

The post Malicious AdTech Spies on People as NatSec Targets appeared first on Security Boulevard. Targeted ads target targets: Patternz and Nuviad enable potentially hostile governments to track individuals by misusing ad bidding.

Government 138

Government Social Engineering Advertising Data privacy 138

Security Boulevard

FEBRUARY 8, 2024

Bootkit Bug in shim.efi appeared first on Security Boulevard. Snow joke: A Microsoft researcher found it—and it’s somehow Microsoft’s fault. The post Linux Vendors Squawk: PATCH NOW — CVSS 9.8

Social Engineering 132

Social Engineering Data privacy Engineering IoT 132

Security Boulevard

FEBRUARY 20, 2024

The post LockBit Takedown by Brits — Time for ‘Operation Cronos’ appeared first on Security Boulevard. RaaS nicked: 11-nation army led by UK eliminates ransomware-for-hire scrotes’ servers.

Ransomware 126

Ransomware Social Engineering Data privacy Engineering 126

Security Boulevard

MARCH 26, 2024

Scary SMS shenanigans: Avoid Telegram’s new “Peer-To-Peer Login” program if you value your privacy or your cellular service. The post Telegram Privacy Nightmare: Don’t Opt In to P2PL appeared first on Security Boulevard.

Social Engineering 127

Social Engineering Authentication Data privacy Security Awareness 127

Security Boulevard

JANUARY 3, 2024

The post Facebook’s New Privacy Nightmare: ‘Link History’ appeared first on Security Boulevard. How stupid does he think we are? You’ll want to turn off this new app setting.

Social Engineering 138

Social Engineering Advertising Data privacy Engineering 138

Security Boulevard

JANUARY 10, 2024

The post China Cracks Apple Private Protocol — AirDrop Pwned appeared first on Security Boulevard. AirDrop hashing is weaksauce: Chinese citizens using peer-to-peer wireless comms “must be identified.”

Wireless 135

Wireless Social Engineering Firewall Data privacy 135

Security Boulevard

JANUARY 18, 2024

The post Massive ‘New’ Leaked Credentials List: Naz.API Pwns Troy appeared first on Security Boulevard. Have I been pwned? Yes, you probably have. Stop reusing passwords, already. Here’s what else you should do.

Passwords 132

Passwords Social Engineering Data privacy Authentication 132

Security Boulevard

DECEMBER 13, 2023

The post Russia Hacks Ukraine, Ukraine Hacks Russia — Day#658 appeared first on Security Boulevard. When will it end? Russia takes down Kyivstar cellular system, Ukraine destroys Russian tax system.

Hacking 131

Hacking Digital transformation Social Engineering Data privacy 131

Security Boulevard

NOVEMBER 17, 2023

appeared first on Security Boulevard. Manifest V3: Destiny. Huge advertising monopoly flexes muscles: “Manifest V2” extensions to be nuked, but “V3” cripples ad blockers. The post Google to Force-Block Ad Blockers — Time to Get Firefox?

Advertising 133

Advertising Social Engineering Data privacy Engineering 133

Security Boulevard

JANUARY 31, 2024

The post Tax Season is Upon Us, and So Are the Scammers appeared first on Security Boulevard. It’s still relatively early in the year, but bad actors are already targeting accounting and finance organizations as well as filers in the United States with tax-related scams.

Scams 131

Scams Accountability Cybersecurity Social Engineering 131

Security Boulevard

DECEMBER 1, 2023

The post TikTok Ban Banned — Montana Loses in US Court appeared first on Security Boulevard. For you plague, still: States can’t just ban apps, says federal judge.

Digital transformation 127

Digital transformation Social Engineering Spyware Data privacy 127

Security Boulevard

JANUARY 2, 2024

The post Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old appeared first on Security Boulevard. What a Mickey Mouse operation: Infostealer scrotes having a field day with unpatched vulnerability.

Social Engineering 137

Social Engineering Accountability Account Security Data privacy 137

Security Boulevard

NOVEMBER 27, 2023

The post Meta Sued for Ignoring its Underage Kids Problem (Because Money) appeared first on Security Boulevard. Don’t be square: Newly-unsealed COPPA suit says Zuck’s mob knows full well there are loads of users under the age of 13, but did nothing.

Social Engineering 123

Social Engineering Identity Theft Data privacy Engineering 123

Security Boulevard

MARCH 18, 2024

The post TikTok ‘Ban’ — ByteDance CEO and EFF are BFFs appeared first on Security Boulevard. 7521 momentum builds: Shou Zi Chew plays for time, while Electronic Frontier Foundation says TikTok-kill bill is DOA.

Social Engineering 85

Social Engineering Spyware Media Data privacy 85

Security Boulevard

SEPTEMBER 25, 2023

The post More iOS Zero Days, More Mercenary Spyware — This Time: Cytrox Predator appeared first on Security Boulevard. Apple Scrambled to Fix 3 More CVEs: Egyptian opposition presidential candidate Ahmed Eltantawy targeted “by the government.

Spyware 126

Spyware Government Social Engineering Data privacy 126

Security Boulevard

SEPTEMBER 8, 2023

Firefox looking good right now: “Privacy Sandbox” criticized as a proprietary, hypocritical, anti-competitive, self-serving contradiction. The post Google Kills 3rd-Party Cookies — but Monopolizes AdTech appeared first on Security Boulevard.

Advertising 132

Advertising Social Engineering Data privacy Engineering 132

Security Boulevard

DECEMBER 28, 2023

Apple Avoids Russian Blame Game appeared first on Security Boulevard. “No Ordinary Vulnerability” — Operation Triangulation research uncovers new details of fantastic attack chain. The post NSA iPhone Backdoor?

Digital transformation 85

Digital transformation Social Engineering Spyware Data privacy 85

Security Boulevard

DECEMBER 20, 2023

The post SSH FAIL: Terrapin Attack Smashes ‘Secure’ Shell Spec appeared first on Security Boulevard. Testy Testudine: Lurking vuln in SSH spec means EVERY implementation must build patches.

Digital transformation 86

Digital transformation Social Engineering Data privacy Authentication 86

Security Boulevard

OCTOBER 24, 2023

Big Blue’s X-Force security team ran an A/B experiment with a healthcare company in. The post IBM: ChatGPT-Generated Can Write Convincing Phishing Emails appeared first on Security Boulevard.

Phishing 114

Phishing Healthcare Social Engineering Data privacy 114

Security Boulevard

DECEMBER 8, 2023

The post Russian FSB Targets US and UK Politicians in Sneaky Spear-Phish Plan appeared first on Security Boulevard. TA446’s new TTPs: “Star Blizzard” FSB team called out by Five Eyes governments (again).

Phishing 83

Phishing Government Digital transformation Social Engineering 83

Security Boulevard

NOVEMBER 22, 2023

The post ‘LitterDrifter’ Russian USB Worm Leaks from Ukraine War Zone appeared first on Security Boulevard. FSB APT USB VBS LNK DLL: WTH? Flash drive sharing malware escapes Україна. Gamaredon fingered as perps.

Malware 81

Malware Social Engineering Data privacy Engineering 81

Security Boulevard

MAY 22, 2023

GDPR Move for Mark’s Money: No legal way to move Europeans’ data to the US since 2015. The post Facebook Fined $1.3B — Zuckerberg Furious in GDPR Fight appeared first on Security Boulevard. cloud industry better take note.

Social Engineering 111

Social Engineering Data privacy Security Awareness Engineering 111

Security Boulevard

NOVEMBER 20, 2023

The post FCC’s Got New Rules for SIM-Swap and Port-Out Fraud appeared first on Security Boulevard. Too many times: Federal Communications Commission shuts stable door after horse bolted. But chairwoman Jessica Rosenworcel (pictured) was hoping it would save us.

Social Engineering 78

Social Engineering Authentication Scams Data privacy 78

Security Boulevard

NOVEMBER 3, 2023

appeared first on Security Boulevard. WEI is dead — long live WMI: Google backs down on Web Environment Integrity API, but its replacement is also problematic. The post VICTORY: Google WEI ‘Stealth DRM’ Plan is Dead (or is it?)

Social Engineering 80

Social Engineering Media Data privacy Engineering 80

Security Boulevard

OCTOBER 24, 2023

Free” privacy proxy for all Chrome users? The post Don’t Be Evil: Google’s Scary ‘IP Protection’ Privacy Plan appeared first on Security Boulevard. Firefox here we come! What could POSSIBLY go wrong?

Social Engineering 80

Social Engineering Advertising Surveillance Data privacy 80

Security Boulevard

OCTOBER 13, 2023

The post Stalking: Fear of Apple AirTag ‘Explodes’ — Lawsuit Momentum Grows appeared first on Security Boulevard. This is why we can’t have nice things: 38 victims of Apple’s “negligence” named in amended class action.

Social Engineering 80

Social Engineering Data privacy Engineering IoT 80

Security Boulevard

DECEMBER 18, 2023

The post X/Twitter Under Investigation by EU in First DSA Move appeared first on Security Boulevard. DSA VLOP Sinks In. Manipulation, deception, transparency: “We will make full use of our toolbox,” promises Europe.

Social Engineering 78

Social Engineering Data privacy Engineering Government 78

Security Boulevard

NOVEMBER 17, 2023

The post Visa: AI Adds to the Cyberthreats Holiday Shoppers Will Face appeared first on Security Boulevard. For credit card giant Visa, the holiday season is always an extremely busy time. Visa’s research found.

Social Engineering 75

Social Engineering Data privacy Scams Security Awareness 75

eSecurity Planet

OCTOBER 6, 2023

Despite all the advances in cybersecurity, email remains the starting point for the vast majority of cyberattacks, as phishing, malware and social engineering remain effective attack techniques. That makes email security software a worthwhile investment for organizations of all sizes. user/month Coro edge: $11.99/user/month

Software 128

Software Phishing Mobile Threat Detection 128