The phantom of misconfigured databases has struck again. This time a leaky Elasticsearch server exposed information relating to 108M bets placed by customers of various casino websites …
Industry reactions to Google’s €50 million GDPR violation fine
The French National Data Protection Commission (CNIL) has fined Google €50 million (over $56 million) on Monday for not sufficiently informing users how the company collects data in order to serve …
Continue Reading about Industry reactions to Google’s €50 million GDPR violation fine
Bug in widespread Wi-Fi chipset firmware can lead to zero-click code execution
A security researcher with Embedi has discovered several vulnerabilities affecting the ThreadX firmware for Wi-Fi chipsets in laptops and Internet of Things (IoT) devices. Among the flaws is …
Over 4 percent of all Monero was mined by malware botnets
As part of a major cybersecurity research project, security researchers have analyzed 4.4 million malware samples that have been detected between 2007 and 2018. About one million of these samples were …
Continue Reading about Over 4 percent of all Monero was mined by malware botnets
DNC: Russian Hackers Attacked Us Again After Midterm Elections
The US Democratic National Committee claims it has once again been the target of a cyberattack carried out by Cozy Bear, a hacking group with links to the Russian government. In addition to the …
Continue Reading about DNC: Russian Hackers Attacked Us Again After Midterm Elections
Cybercrime could cost companies trillions over the next five years
A new report(pdf) by Accenture indicates that over the next 5 years, cyberattacks could result in global costs totaling $5.2 trillion. That amount includes both lost revenue for companies and the …
Continue Reading about Cybercrime could cost companies trillions over the next five years
DarkHydrus abuses Google Drive to spread RogueRobin Trojan
Researchers with the 360 Threat Intelligence Center (360TIC) have spotted a new attack campaign by the DarkHydrus advanced persistent threat (APT) group, also called Lazy Meerkat, which goes after …
Continue Reading about DarkHydrus abuses Google Drive to spread RogueRobin Trojan
Ex-Employee Hacks WPML WordPress Plugin Site and Spams Users
The website of the WordPress Multilingual Plugin (WPML) has been hacked by an ex-employee over the weekend. As part of the attack, the threat actor sent an email to the 600,000 WPML customers claiming …
Continue Reading about Ex-Employee Hacks WPML WordPress Plugin Site and Spams Users
Fallout EK Retools for a Fresh New 2019 Look
The infamous Fallout exploit kit (EK), commonly used in malvertising campaigns, has received a major update and can now deliver GandCrab ransomware. After a brief lull in activity since the end of …
Continue Reading about Fallout EK Retools for a Fresh New 2019 Look
Iranian online collaboration forums incubating some of the world’s most significant cybersecurity incidents, hacking forces
A study produced by Cybersecurity firm Recorded Future suggests that the hacking culture heavily incubated by online forums and direct ties to the government have helped the country’s cyber forces …