Florida Ethics Officer Charged with Cyberstalking
Judge bars former Tallahassee city ethics officer from internet-connected devices after her arrest for cyberstalking.
Telegram Bots at Heart of Classiscam Scam-as-a-Service
The cybercriminal service has scammed victims out of $6.5 million and continues to spread on Telegram.
Cloud Attacks Are Bypassing MFA, Feds Warn
CISA has issued an alert warning that cloud services at U.S. organizations are being actively and successfully targeted.
TikTok Takes Teen Accounts Private
The company announced accounts for ages 13-15 will default to privacy setting, among other safety measures.
Critical WordPress-Plugin Bug Found in ‘Orbit Fox’ Allows Site Takeover
Two security vulnerabilities -- one a privilege-escalation problem and the other a stored XSS bug -- afflict a WordPress plugin with 40,000 installs.
Critical WordPress-Plugin Bug Found in ‘Orbit Fox’ Allows Site Takeover
Two security vulnerabilities -- one a privilege-escalation problem and the other a stored XSS bug -- afflict a WordPress plugin with 40,000 installs.
Sophisticated Hacks Against Android, Windows Reveal Zero-Day Trove
Watering-hole attacks executed by ‘experts’ exploited Chrome, Windows and Android flaws and were carried out on two servers.
Data Breach at ‘Resident Evil’ Gaming Company Widens
Capcom, the game developer behind Resident Evil, Street Fighter and Dark Stalkers, now says its recent attack compromised the personal data of up to 400,000 gamers.
Mimecast Certificate Hacked in Microsoft Email Supply-Chain Attack
A sophisticated threat actor has hijacked email security connections to spy on targets.
BumbleBee Opens Exchange Servers in xHunt Spy Campaign
The BumbleBee web shell allows APT attackers to upload and download files, and move laterally by running commands.
Adobe Fixes 7 Critical Flaws, Blocks Flash Player Content
Adobe issued patches for seven critical arbitrary-code-execution flaws plaguing Windows and MacOS users.
Europol Reveals Dismantling of ‘Largest’ Underground Marketplace
Europol announced a wide-ranging investigation that led to the arrest of the alleged DarkMarket operator and the seizure of the marketplace's infrastructure, including more than 20 servers.
Aliens and UFOs: A Final Frontier for Social Engineers
The release of a CIA archive on UFOs is exactly the kind of headline-making event that phishing and scam actors long for.
Malicious Software Infrastructure Easier to Get and Deploy Than Ever
Researchers at Recorded Future report a rise in cracked Cobalt Strike and other open-source adversarial tools with easy-to-use interfaces.
Bugs in Firefox, Chrome, Edge Allow Remote System Hijacking
Major browsers get an update to fix separate bugs that both allow for remote attacks, which could potentially allow hackers to takeover targeted devices.