News
-
Microsoft Takes Aim at Malicious Office Macros
Microsoft Takes Aim at Malicious Office Macros Microsoft has finally taken action against a common threat vector, blocking by default Office macros downloaded from the internet. A vast range of threat actors sent users phishing emails containing innocuous-looking attachments. However, they often contain embedded Visual Basic for Applications (VBA) macros obtained from the internet. Once…
-
A Quarter of New Online Accounts Are Fake – Report
A Quarter of New Online Accounts Are Fake – Report There was an 85% year-on-year increase in attacks targeting logins or account creation in 2021 as bot-driven fraud attempts soared, according to Arkose Labs. The fraud prevention firm analyzed over 150 billion transaction requests across 254 countries across the 12-month period to compile its latest report, The 2022…
-
Russia Arrests Third Cybercrime Group
Russia Arrests Third Cybercrime Group The Russian authorities are claiming to have arrested a third cybercrime group following previous high-profile detentions. The six individuals were detained in different regions of the country and have “special knowledge in the field of international payment systems,” a source told the state-run TASS news agency. They are suspected of committing…
-
IRS To Ditch Biometric Requirement for Online Access
The Internal Revenue Service (IRS) said today it will be transitioning away from requiring biometric data from taxpayers who wish to access their records at the agency’s website. The reversal comes as privacy experts and lawmakers have been pushing the IRS and other federal agencies to find less intrusive methods for validating one’s identity with…
-
Meta May Quit Europe Over Data Regulations
Meta May Quit Europe Over Data Regulations Meta has said that it “will likely” stop Facebook and Instagram from operating in Europe unless the company is allowed to transfer, store and process Europeans’ data on servers based in the United States. The possibility of the social media networks being withdrawn from the continent was included…
-
News Corp Discloses Cyber-Attack
News Corp Discloses Cyber-Attack Publishing company News Corp has disclosed that it was the victim of a cyber-attack last month. Threat actors compromised email accounts belonging to journalists and other employees at the company, which Australian-born American media tycoon Rupert Murdoch owes. In an email sent to staff members on Friday and viewed by The New…
-
Washington Warns of POLARIS Breach
Washington Warns of POLARIS Breach The Washington State Department of Licensing (DOL) has shuttered its Professional Online Licensing and Regulatory Information System (POLARIS) after detecting suspicious activity. POLARIS stores information about license holders and applicants. The type of information varies for different licenses and may include Social Security numbers, dates of birth, driver license numbers…
-
Who dropped the DB? Find out with Teleport Database Access
Graham Cluley Security News is sponsored this week by the folks at Teleport. Thanks to the great team there for their support! You’re woken up at 3 am, only to discover your worst nightmare. The new intern just deleted the production database during routine maintenance by accident. You quickly restore from a backup. During the…
-
Twitter blackout for Vodafone customers
Vodafone customers in the UK are spitting tacks after an “issue” has left them unable to use Twitter properly for days, after the display of images and movie files, and – in some cases – the entire website, was blocked. Read More
-
Argo CD flaw puts cloud infrastructure at risk
A high-risk vulnerability that could allow attackers to steal sensitive information secrets from software projects was found and fixed in Argo CD, a widely used continuous delivery platform for applications deployed via Kubernetes. According to researchers from cloud application security Apiiro, who found and reported the vulnerability, attackers could feed a maliciously crafted Kubernetes application…