Blog

Top 14 Android mobile Apps Firebase misconfigured

Top 14 Android Apps with Millions of installs are Firebase misconfigured

The research revealed that nine out of fourteen android apps, which have more than 30 million users, are potentially leaking data. The top 14 Android apps with over a hundred million installs are at risk for being Firebase misconfigured. Unauthorized parties might access these apps and expose confidential data.     Almost everyone has an Android app installed on their...
Continue Reading
personal health information American Mental Healthcare provider exposed Data Breach

Thousands of personal health information of two American Mental Healthcare providers exposed to Data Breach

Two mental healthcare providers in America have been exposed to a data breach that has compromised thousands of affected people’s personal health information (PHI).  The first one is Horizon House, Inc., a mental healthcare provider located in Philadelphia, Pennsylvania. Last March 5, Horizon House discovered suspicious activity in their IT networks and revealed from the investigation that ransomware has infected their IT systems. The healthcare provider took...
Continue Reading
Cyber security risks server misconfigurations Apache Airflow Platforms

Cyber security risks threaten organizations that perform misconfigurations to Apache Airflow Platforms

Apache Airflow is an open-source platform that is popular among organizations. They use it in scheduling and managing workflows. But according to researchers, misconfigurations in Apache Airflow can endanger credentials and other sensitive records to the internet and be involved in a possible cyber security risk.  From the latest discovery of security researchers, there have been...
Continue Reading
Ecommerce firm Next Level Apparel email phishing

E-commerce firm, Next Level Apparel suffered email phishing that affects some employees

An American e-commerce firm and leading designer and manufacturer of clothing items, Next Level Apparel, has recently experienced a data breach issue that affected its employees’ email accounts. As reported by the firm’s issued press release, a small number of employee email accounts have been compromised to an email phishing incident. The attack has given threat actors unauthorized access to sensitive company information.  The exposed sensitive...
Continue Reading
Cloud storage applications malware downloads ransomware

Cloud storage applications top the most utilized avenue of malware downloads, according to recent studies

Cyberattacks have been utilizing cloud applications as an avenue of distributing malware, as per recent studies. Researchers have identified that 68% of malware downloads were derived from cloud applications for the 2nd quarter of 2021. Cloud-based misconfigurations are often a contributing factor in terms of these issues.    About 66.4% of malware downloads for the 2nd quarter...
Continue Reading
GSS European call centre provider unreachable ransomware attack

GSS, a European call centre provider, has been unreachable due to ransomware attack

One of Europe’s largest customer care and call centre providers, GSS, has undergone a devastating ransomware attack resulting in a massive freeze in its IT systems and has halted call centre services across its Spanish-speaking customer base. GSS is also a Spanish and Latin America division of the Covisian firm. This week, many call centres and customer...
Continue Reading
Double chats scheme unveiled REvil Ransomware gang cheat partners dark web

Double chats scheme unveiled by REvil Ransomware gang to cheat on partners

REvil, a private ransomware-as-a-service (RaaS) group from Russia, has reportedly come back to its operations intending to cheat on its affiliates. According to reports made by security researchers, the ransomware gang cheats on its partners so they will be able to rob all ransom payments from their victims.  The operators of the REvil RaaS were reported...
Continue Reading
Daily operations disrupted ransomware attack Crystal Valley Cooperative

Daily operations disrupted as ransomware hits Crystal Valley Cooperative

Crystal Valley, a farm supply and grain marketing organization from Minnesota, has been hit by a ransomware attack, as confirmed from their Facebook post last September 19. The website went down temporarily as a result of the attack. As of now, it is working  The firm said from their statement that their computer systems have been attacked, disrupting its...
Continue Reading
Pandora Papers Data Leak offshore bank account data the world’s most powerful

Recent revelations about Pandora Papers: Leak exposing offshore bank account data of the world’s most powerful

The Pandora Papers involve a series of investigations regarding the recent leak of the illegal dealings of corrupted, wealthy, and influential individuals and their offshore bank accounts to conceal their unprecedented collection of money amounting to more than trillions of dollars.  Partnering with 600 journalists from over 100 media firms worldwide, the International Consortium of Investigative Journalists (ICIJ) holds the investigation. The group has already acquired about 11.9 million worth of confidential documents from different financial and...
Continue Reading
300k Subdomains exploited Phishing-as-a-Service Scam phishing attack

300,000 Subdomains gets exploited by a newly discovered Phishing-as-a-Service Scam

Microsoft reported a newly found Phishing-as-a-Service operation last Tuesday, which has used a high-volume 300,000 distinct and newly created subdomains that are operated in a single run. According to the tech giant, they discovered the campaign amid their research about phishing attacks triggered by the phishing-as-a-service operation named BulletProofLink. The procedure is reported to be offering low-cost domain hosting, email...
Continue Reading
5 Million files Colombia Real Estate customers exposed data breach compromised data aws

5.5 Million files of Colombian Real Estate customers got exposed in Data Breach

Researchers have found a data breach consisting of about 5.5 million exposed files, totalling over 1TB of data. The leaked information has affected more than 100,000 Colombian real estate customers.  According to the statements reported by the researchers, the leaked information was not encrypted. Therefore it does not require any password or login credentials to be able for anyone to...
Continue Reading
Spam campaign attacks new techniques South American organizations

Spam campaign attacks revise its techniques against South American organizations

Researchers have found that a spam campaign has revised its methods to add an extensive commodity remote access trojans or RATs and geolocation filtering to evade being detected by authorities. The said spam campaign focuses on distributing spear-phishing emails towards South American organizations.  According to security researchers, the attacks were attributed to an advanced persistent threat or APT...
Continue Reading
Indonesia government agencies ministries cyberattack threat actors cyber espionage mustang panda

Indonesian agencies and ministries attacked through threat actors cyber-espionage attempts

Cyber-espionage threat actors from China were reported to have breached about 10 internal networks of Indonesian agencies and government ministries. The attack includes the computer devices of Badan Intelijen Negara (BIN) – the primary intelligence services of Indonesia.  Unexpectedly, the cyber-espionage attempt of threat actors from China was revealed in between a time when both Indonesia...
Continue Reading
Cyber fifth warfare dimension UK armed forces

Cyber named as the fifth warfare dimension as per the UK armed forces

According to military leaders of the UK, their armed forces are preparing to commence significant advantages regarding their cybersecurity capabilities in the following years. Cyberspace being confirmed as the fifth warfare domain together with land, air, sea, and space forces the defence authorities to improve their operations all across the West.  The range of the reevaluation...
Continue Reading
massive rise cybercrime attacks India reached 11% 2020

Data says that a massive rise of cybercrime attacks in India reached up to 11.8% in 2020

Official data has shown that for the year 2020, India has recorded over 50,053 cases of cybercrime, and 11.8% of it has been a surge of offences over the prior fiscal year.  Following the country’s measuring system incidents per lakh population, the cybercrime rate in India has also grown from 3.3% last 2019 to up to 3.7%...
Continue Reading
Chinese APT campaign Operation Harvest McAffee

A Chinese APT campaign called ‘Operation Harvest’ was caught by McAffee

McAfee Enterprise, an American global computer security software company in California, has reported finding a threat actor group wherein they could dwell and collect data on a victim’s network for many years without being caught. The firm has identified the Chinese advanced persistent threat or APT campaign as “Operation Harvest”, where attackers use a mixture of both recognized and new...
Continue Reading
USDOT website impersonation email phishing online scam

USDOT has been impersonated to conduct a two-day email phishing scam

Within two days of the phishing campaign, the US Department of Transportation or USDOT has been imitated by cyber-attackers. They operated on combined tactics such as forming new domains to copy and mimic federal sites to appear authentic and avoid being detected by authorities.  Security researchers have identified at least 41 phishing emails between August 16 to 18....
Continue Reading
Fujitsu confirms cyberattack not related hacker marketplace Marketo dark web

Fujitsu officially confirms that the cyberattack on its systems are not related to hacker marketplace Marketo

A 4GB worth of stolen data allegedly from Fujitsu was posted last August by a popular cybercrime marketplace known as Marketo. When the group was marketing the stolen data that they claim to be from Fujitsu, the company said that they were actually investigating a potential attack. They added that the source of this possible attack is unknown. Meanwhile, the attacker group Marketo said that they have...
Continue Reading
Evidence suspicious emails phishing attack threats vishing SMiShing

Evidence proves that one out of three flagged suspicious emails were actual phishing attack threats

Recent reports reveal that about a third of emails that employees have been reporting to be malicious are indeed threats of phishing attacks. From the analysis of IT security companies, it was found that at least 33% of more than 200,000 flagged emails by employees from different firms worldwide for the first half of 2021 are...
Continue Reading
Cryptocurrency great escape plan hackers dark web

Cryptocurrency is a great escape plan for hackers

Cybercrimes have been under the spotlight for the longest time, primarily because of how lucrative the business is for threat actors. Recent reports reveal that the cybercrime landscape has cost the world more than $1 trillion, and by 2025, it has been predicted to cost the world’s economy over $10 trillion. It makes this fact clear coming from the headlines...
Continue Reading
1 3 4 5 6 7 37