Microsoft is warning that the BlackCat ransomware crew is leveraging exploits for unpatched Exchange server vulnerabilities to gain access to targeted networks. Upon gaining an entry point, the attackers swiftly moved to gather information about the compromised machines, followed by carrying out credential theft and lateral movement activities, before harvesting intellectual property and dropping the
Philip Choo
TikTok is testing a new feature that allows users to see which of their followers have viewed their videos. On the other hand, people you follow will be able to see that you viewed their posts. A spokesperson for TikTok told TechCrunch that the new feature is not widely available, which indicates that it’s currently
Free VPN software provider BeanVPN has reportedly left almost 20GB of connection logs accessible to the public, according to an investigation by Cybernews. The cache of 18.5GB connection logs allegedly contained more than 25 million records, which included user device and Play Service IDs, connection timestamps, IP addresses and more. Cybernews said it found the
by Paul Ducklin Marion County, right in the middle of the US state of Indiana, and home to the state’s capital Indianapolis, is also currently home to a tragic court case. (Thanks to fellow writers at The Register for that link – we couldn’t get to the official court site while we were writing this
Kenya-based Crossboundary Energy Access (CBEA), a mini-grid infrastructure fund, has raised $25 million from ARCH Emerging Markets Partners Limited, Bank of America, and Microsoft Climate Innovation Fund to back renewable energy projects across the continent. The CBEA, a subsidiary of the investment group Crossboundary, said in a statement that the new funding will unlock an
A new strain of Android malware has been spotted in the wild targeting online banking and cryptocurrency wallet customers in Spain and Italy, just weeks after a coordinated law enforcement operation dismantled FluBot. The information stealing trojan, codenamed MaliBot by F5 Labs, is as feature-rich as its counterparts, allowing it to steal credentials and cookies,
Puffco has long led the market with innovative cannabis vaporizers. The Puffco Peak Pro is easily one of the best e-rigs available, and the company just unveiled a new vape called the Proxy. It offers the best of the Peak Pro and can be built into various form factors. Don’t be distracted by the lovely
The topic most top of mind today for HR professionals is keeping and acquiring great talent. One of the most important elements of doing both is providing a desirable and meaningful set of employee benefits. Digital Wellness is a New Pillar in the Employee Benefits Space The idea of Digital Wellness isn’t exactly brand new,
A new report by Telstra Purple’s security forum ClubCISO suggested material security has significantly improved over the last year, driven by a positive shift in organizational influence by chief information security officers (CISOs). The survey analyzed the answers of more than 100 information security executives from private and public organizations worldwide. The majority (54%) said that “no material
by Paul Ducklin A few hours ago, we recorded this week’s Naked Security podcast, right on Patch Tuesday itself. It was just after 18:00 UK time when we hit the mics, which meant it was just after 10:00 Microsoft HQ time, which meant we had access to this month’s official June 2022 Security Updates bulletin
Coinbase has hired Arnab Kumar, former executive at Prosus Ventures, in the latest push to relaunch its eponymous cryptocurrency exchange in India. Kumar, who has previously also worked at influential think tank Niti Aayog and Deutsche Bank, is joining the exchange as director of India market expansion, a spokesperson said in an email. At Niti
Microsoft officially released fixes to address an actively exploited Windows zero-day vulnerability known as Follina as part of its Patch Tuesday updates. Also addressed by the tech giant are 55 other flaws, three of which are rated Critical, 51 are rated Important, and one is rated Moderate in severity. Separately, five other shortcomings were resolved
How erring on the side of privacy might ultimately save you from chasing down a virtual rendition of you doing the bidding of a scammer At the RSA Conference 2022, the techno-geekery center of the security universe, the halls once more pulse with herds of real aching-feet attendees slurping up whatever promises to be the
Says Redfin CEO: ‘I said we wouldn’t lay people off unless we had to. We have to.’ Mary Ann Azevedo 7 hours The housing market has taken a huge hit this year as mortgage interest rates have surged and homeowners scale back on purchases. The latest casualties in the proptech world are Redfin and Compass,
Online banking puts the ability to pay bills, check your balance, or transfer money at your fingertips. Unfortunately, it can also make you vulnerable to scammers who may try to trick you into giving them access to your account. By remaining vigilant, though, you can avoid common scams. This article discusses mobile banking scams and
Tenable Research has called out Microsoft for a lack of transparency when it comes to cloud vulnerability disclosures. On March 10, Tenable reported two privilege escalation vulnerabilities that affected the “underlying infrastructure” of Azure Synapse Analytics to Microsoft. Exploitation of the flaws could potentially lead to a compromise of other Microsoft customers’ data, Tenable warned.
Apple CEO Tim Cook wrote a letter to the US Senate last week to call for stronger privacy legislation at the federal level. The letter, which was first obtained by MacRumors, comes after the release of a draft of the “American Data Privacy and Protection Act” (ADPPA) bipartisan bill. The drafted legislation examines and discusses several facets of
by Paul Ducklin On Thursday this week (16 June 2022 at 15:00 UK time), we’re holding a free webinar in which we’ll give you a live explanation and demonstration of the “Follina” vulnerability. Although this bug is fairly easy to deal with (a simple registry change rolled out via Group Policy will largely immunise your
Many people have plenty of online subscriptions that they barely use, and can save a fair amount of money with a service like Truebill to see all their recurring payments in one place. Spendflo wants to do the same for enterprise subscribers of SaaS services, and is targeted toward chief financial officers and finance leadership
A technically sophisticated threat actor known as SeaFlower has been targeting Android and iOS users as part of an extensive campaign that mimics official cryptocurrency wallet websites intending to distribute backdoored apps that drain victims’ funds. Said to be first discovered in March 2022, the cluster of activity “hint[s] to a strong relationship with a
Five years ago, ESET researchers released their analysis of the first ever malware that was designed specifically to attack power grids On June 12th 2017, ESET researchers published their findings about unique malware that was capable of causing a widespread blackout. Industroyer, as they named it, was the first known piece of malware that was
GM’s CEO Mary Barra just revealed the upcoming Blazer EV, and it’s a looker. I love the styling, though I still wish General Motors made the off-roader Blazer from the ’70s and ’80s instead of the people mover from the ’90s. This is just a first look at the vehicle. Chevy is scheduled to reveal
Authored by Jyothi Naveen and Kiran Raj McAfee Labs have been observing a spike in phishing campaigns that utilize Microsoft office macro capabilities. These malicious documents reach victims via mass spam E-mail campaigns and generally invoke urgency, fear, or similar emotions, leading unsuspecting users to promptly open them. The purpose of these spam operations is
Technology is understandably viewed as a nuisance to be managed in pursuit of the health organizations’ primary mission For understandable reasons, health delivery organizations center their focus on helping sick people, rather than on fiddling with information technology. Technology is seen as frictional annoyance to be managed in pursuit of their primary goal, so it
There has been much activity in recent years around the use of blockchain to provide more integrity and privacy to transactions, but there are some privacy issues organizations need to know about. In a session at the RSA Conference 2022, Jim Amsler, director governance, risk and compliance, at BDO and Greg Schu, partner, national compliance lead,
Celsius Network, one of the biggest crypto lenders, told customers Sunday evening that it is pausing withdrawals, swap, and transfers between accounts in a move that has sparked discussions and has prompted the price of the firm’s token to take a 60% tumble in the past one hour to 19 cents. “We are taking this
The Iranian state-sponsored threat actor tracked under the moniker Lyceum has turned to using a new custom .NET-based backdoor in recent campaigns directed against the Middle East. “The new malware is a .NET based DNS Backdoor which is a customized version of the open source tool ‘DIG.net,'” Zscaler ThreatLabz researchers Niraj Shivtarkar and Avinash Kumar
Welcome to The Interchange, a take on this week’s fintech news and trends. To get this in your inbox, subscribe here. Greetings from Austin, Texas, where the temps have been over 100 degrees for days now and we’re trying hard just not to melt. The global funding boom in 2021 was unlike anything most of us
Digital fiddling somehow got mixed up in a real war This year at the RSA Conference, it’s hard to shake off the fact that all this digital fiddling somehow got mixed up in a real war. I imagine this sort of fantasy where techno purveyors never really thought the cool stuff they were doing would
The great thing about the internet is that there’s room for everyone. The not-so-great part? There’s plenty of room for cybercriminals who are hungry to get their hands on our personal information. Fortunately, internet scams don’t have to be a part of your online experience. In this article, we’ll tell you about some of the
- « Previous Page
- 1
- 2
- 3
- 4
- 5
- …
- 274
- Next Page »