Below you'll find a list of all posts that have been categorized as “Security”
Since October 2022, a new kind of malware has been targeting financial institutions. A widespread and powerful type of Android malware has turned its focus to online banking apps, employing keylogging capabilities to steal passwords and usernames for bank accounts, social networking accounts, and other accounts stored in your Android device. Researchers at the cybersecurity firm ThreatFabric have described the …
This past October, during a ransomware assault on a healthcare facility in southwest Louisiana, hackers collected and exposed the personal information of approximately 270,000 patients and workers. A ransomware organization known as the Hive has claimed responsibility for the incident. Hive and other ransomware groups are increasingly targeting organizations, stealing data before locking down systems to demand higher ransom payments. …
Business email compromise (BEC) attacks are becoming widespread and present a significant risk to businesses of all sizes. These attacks involve hackers posing as trusted individuals or organizations via email to request sensitive information or financial transfers. BEC attacks often target high-level employees, such as executives or financial managers, and can be highly sophisticated. Attackers may go to great lengths …
A new phishing campaign targeting Facebook users has been identified by cybersecurity firm Trustwave. In this campaign, hackers use fake copyright infringement notices to trick users into giving away their account details. The phishing messages claim that Facebook will delete the user’s account within 48 hours unless they fill out an appeal form to protect themselves. This appeal form collects …
LastPass, a popular password manager, announced that an unauthorized party accessed the company’s archived backups of its production data on a third-party cloud-based storage service. According to the company’s investigation, a threat actor accessed the cloud storage environment in August 2022 with information obtained from an earlier incident. Although the threat actor did not access customer data in the August …
In late November 2022, sports betting firm DraftKings announced that it had suffered a data breach affecting approximately 68,000 customers. The company stated that the breach resulted from a credential stuffing attack, in which attackers obtained credentials from a third-party source and attempted to use them to access DraftKings accounts. According to DraftKings, the attackers were able to withdraw around …
While public Wi-Fi can be a convenient way to stay connected while traveling, it is important to be aware of its potential security risks. If a hacker intercepts your data while using public Wi-Fi, it can result in identity theft, compromised credentials, malware exposure, or even compromise your business account. There are a few steps you can take to safeguard …
The FBI program tasked with ensuring critical infrastructure security has been compromised by hackers, who now offer access to the program’s data on the dark web. The breach was initially disclosed by Brian Krebs of Krebs on Security, who claims that the data was for sale on a cybercrime forum called Breached. When Krebs called the seller, also known as …
What do you do when your most personal information has been compromised? This is likely the question that customers of Sequoia One asked themselves earlier this month as they were informed that the company had been hacked. Sequoia One specializes in the management of human resources, benefits, and payroll. For the past 21 years, they’ve worked with both corporate clients …
As a business owner, it’s important to stay informed about potential vulnerabilities that could impact your organization. Recently, Cisco reported a critical vulnerability, tracked as CVE-2022-20968, affecting its IP Phone 7800 and 8800 Series. This new vulnerability is caused by inadequate input validation of packets using the Cisco Discovery Protocol. In other words, a threat actor could take advantage of …
