Month: July 2020

A 17-year-old teen and two other 19 and 22-year-old individuals have reportedly been arrested for being the alleged mastermind behind the recent Twitter hack that simultaneously targeted several high-profile accounts within minutes as part of a massive bitcoin scam. According to the U.S. Department of Justice, Mason Sheppard, aka “Chaewon,” 19, from the United Kingdom,
An American researcher has admitted stealing scientific trade secrets from a children’s hospital and selling them to China. Former Ohio resident Li Chen pleaded guilty yesterday to conspiring to steal scientific trade secrets and conspiring to commit wire fraud concerning the research, identification, and treatment of a range of pediatric medical conditions.  Chen and her husband, alleged
A view of the Q2 2020 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts With half a year passed from the outbreak of COVID-19, the world is now trying to come to terms with the new normal. But even with the initial panic settled, and
A team of cybersecurity researchers today disclosed details of a new high-risk vulnerability affecting billions of devices worldwide—including servers and workstations, laptops, desktops, and IoT systems running nearly any Linux distribution or Windows system. Dubbed ‘BootHole‘ and tracked as CVE-2020-10713, the reported vulnerability resides in the GRUB2 bootloader, which, if exploited, could potentially let attackers
Rite Aid‘s quiet use of facial recognition technology in its stores has ended after nearly a decade.   Since 2012, the American drugstore had gradually implemented the technology in 200 stores around the country, according to an investigation by Reuters. Analysis of where the technology had been deployed indicated that Rite Aid had primarily installed it in
The Bureau expects cybercriminals to increasingly abuse new threat vectors for large-scale DDoS attacks The Federal Bureau of Investigation (FBI) has issued an alert warning private sector organizations in the United States about a ramp-up in the use of built-in network protocols for large-scale distributed denial-of-service (DDoS) amplification attacks. “A DDoS amplification attack occurs when
Cybersecurity researchers today uncovered a completely undetectable Linux malware that exploits undocumented techniques to stay under the radar and targets publicly accessible Docker servers hosted with popular cloud platforms, including AWS, Azure, and Alibaba Cloud. Docker is a popular platform-as-a-service (PaaS) solution for Linux and Windows designed to make it easier for developers to create,
A vulnerability in the Integrated Dell Remote Access Controller (iDRAC) that could have allowed cyber-criminals to gain full control of server operations has been detected. The controller was designed for secure local and remote server management to help IT administrators deploy, update, and monitor Dell EMC PowerEdge servers. Path Traversal vulnerability CVE-2020-5366 was discovered by researchers Georgy
The United States government is teaming up with the University of Chicago to develop a nationwide quantum internet. The network, which would run in parallel with the current internet, could be used to securely send sensitive financial information and data pertaining to matters of national security. If all goes to plan, a functional network could
Cybersecurity researchers on Thursday revealed security issues in the Android app developed by Chinese drone-maker Da Jiang Innovations (DJI) that comes with an auto-update mechanism that bypasses Google Play Store and could be used to install malicious applications and transmit sensitive personal information to DJI’s servers. The twin reports, courtesy of cybersecurity firms Synacktiv and
A former Florida tax collector has been indicted on charges of stalking a political opponent and stealing their identity. Federal stalking charges were brought against Lake Mary resident Joel Greenberg in June. The 35-year-old is accused of spreading false information about a political opponent who worked at a Seminole County school. According to the indictment, Greenberg created
Lazarus Group, the notorious hacking group with ties to the North Korean regime, has unleashed a new multi-platform malware framework with an aim to infiltrate corporate entities around the world, steal customer databases, and distribute ransomware. Capable of targeting Windows, Linux, and macOS operating systems, the MATA malware framework — so-called because of the authors’
The open letter highlights five security and privacy principles that require heightened attention from videoconferencing services Six data protection and privacy authorities from countries in four continents have addressed an open letter to video teleconferencing (VTC) companies, asking them to re-evaluate how they safeguard the privacy rights and data of citizens around the globe. With people