-
Bahamut Spyware Group Compromises Android Devices Via Fake VPN Apps
PRIVACY PRIVACY The app used as part of the campaign was a trojanized version of SoftVPN or OpenVPN Read More
-
SharkBot Malware Found in Android File Manager Apps With Thousands of Downloads
PRIVACY PRIVACY The apps are no longer available on the Play Store, but can be found in third-party stores Read More
-
Ransomware attack forces top Indian medical institute into manual mode
PRIVACY PRIVACY The All India Institute of Medical Sciences (AIIMS), New Delhi, one of India’s top medical institutes, has been forced to operate manually due to a ransomware attack on its hospital management system on Wednesday morning, which severely impacted several services. On Thursday, the hospital issued a fresh set of standard operating procedures for…
-
Sonder confirms data breach, documents and other PII potentially compromised
PRIVACY PRIVACY The company reportedly learned of unauthorized access to one of its systems on November 14 Read More
-
Cyber Essentials Scheme Set for April 2023 Update
PRIVACY PRIVACY UK best practice security framework to offer new guidance Read More
-
UK Cops Lead Action Against Fraud Site that Made £100m+
PRIVACY PRIVACY Over 100 admins and users of iSpoof site arrested Read More
-
DUCKTAIL malware campaign targeting Facebook business and ads accounts is back
PRIVACY PRIVACY A group of attackers, likely based in Vietnam, that specializes in targeting employees with potential access to Facebook business and ads management accounts, has re-emerged with changes to its infrastructure, malware, and modus operandi after being initially outed a few months ago. Dubbed DUCKTAIL by researchers from WithSecure, the group uses spear phishing…
-
EPSS explained: How does it compare to CVSS?
PRIVACY PRIVACY The Common Vulnerability Scanning System (CVSS) is the most frequently cited rating system to assess the severity of security vulnerabilities. It has been criticized, however, as not being appropriate to assess and prioritize risk from those vulnerabilities. For this reason, some have called for using the Exploit Prediction Scoring System (EPSS) or combining…
-
Russian DDoS Briefly Downs European Parliament Site
PRIVACY PRIVACY Parliament had declared Russia a state-sponsor of terrorism Read More
-
Smashing Security podcast #299: EV charging risks, FTX, and an ancient apocalypse
PRIVACY PRIVACY Deepfake shenanigans strike users of troubled crypto firm FTX, the perils of charging your electric vehicle, and is Microsoft’s takeover of Activision good news for video game fanatics. All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole…