Google has launched a new pilot program in Singapore aimed at bolstering security measures against the installation of certain Android apps that exploit permissions to gain unauthorized access to sensitive data and one-time passwords. This initiative, integrated into Google Play Protect, seeks to automatically block the installation of such apps when users attempt to download them from external sources like web browsers, messaging apps, or file...

Chinese users face a targeted malvertising campaign through malicious Google ads promoting restricted messaging apps like Telegram. Malwarebytes' Jérôme Segura revealed that threat actors exploit Google advertiser accounts to create these deceptive ads, leading users to download Remote Administration Trojans (RATs). The ongoing campaign, known as FakeAPP, is a continuation of a prior assault that initially targeted Hong Kong users searching for...

On Friday, Microsoft publicly disclosed that it had fallen victim to a sophisticated nation-state attack targeting its corporate systems. This breach resulted in the unauthorized access and theft of emails and attachments belonging to senior executives, as well as individuals within the company's cybersecurity and legal departments. The orchestrator of this attack was identified as the Russian advanced persistent threat group Midnight Blizzard,...

Thousands of WordPress websites, utilizing an insecure version of the Popup Builder plugin, have fallen victim to a malware named Balada Injector. Discovered by Doctor Web in January 2023, the attack operates through periodic waves exploiting vulnerabilities in WordPress plugins. These attacks insert backdoors designed to redirect visitors to deceptive tech support pages, fake lottery winnings, and push notification scams. Sucuri's subsequent...

Cybersecurity researchers have recently brought to light a newly discovered threat to Apple macOS, identified as SpectralBlur. This backdoor shares a connection with a known malware family attributed to North Korean threat actors. SpectralBlur, described as a moderately capable backdoor, exhibits functionalities such as file uploads and downloads, shell execution, configuration updates, file deletion, hibernation, and sleep, all of which are...

Google has agreed to settle a class-action lawsuit, filed in June 2020, accusing the company of deceiving users who believed their internet activity remained private while using the "incognito" or "private" mode on web browsers. The lawsuit sought a minimum of $5 billion in damages, and the settlement terms have not been disclosed.

The plaintiffs claimed that Google violated federal wiretap...

On December 13, 2023, MongoDB detected unauthorized access to certain corporate systems, leading to the exposure of customer account metadata and contact information. The company initiated an immediate investigation and activated incident response efforts. The unauthorized access had been ongoing for some time before discovery, but MongoDB stated it was not aware of any exposure to data stored in MongoDB Atlas.

December 19, 2023 19:00 (on 12/20/23) |  0 | 2 minutes read

A critical Bluetooth security vulnerability, identified and tracked as CVE-2023-45866, has emerged as a significant threat, potentially giving malicious actors the ability to exploit an authentication bypass and take control of a broad spectrum of devices, including Android, Linux, macOS, and iOS systems. Discovered by security researcher Marc Newlin in August 2023, this flaw exposes a concerning case of authentication bypass that allows attackers...

Authorities apprehended four members of a fraudulent syndicate engaging in "Frankenstein" fraud, synthetic identity fraud. The suspects utilized valid IDs with authentic photos but filled with false information, deceiving banks into granting loans. The arrest occurred during an entrapment operation conducted by the NBI-Anti-Organized and Transnational Crime Division. The seized IDs displayed varying details such as names, birthdates, and addresses, shedding light on the elaborate nature of...

In recent revelations, a cybersecurity analysis has brought to light the nefarious activities of a Telegram bot known as Telekopye, utilized by threat actors, codenamed Neanderthals, to orchestrate large-scale phishing scams. ESET security researcher Radek Jizba delves into the functionality of Telekopye, explaining its capability to craft phishing websites, emails, SMS messages, and more. What adds an additional layer of sophistication to this...