The UK’s National Cyber Security Center (NCSC) has called on law firms in the country to arm themselves against ransomware. In 2021, eighteen law firms informed the British regulator SRA that they had fallen victim to a ransomware attack. Documents from 60 court cases were stolen from one law firm and then published on the […]
Amazon’s surveillance doorbell company Ring has reached a settlement with the U.S. Federal Trade Commission which will require the company to pay $5.8 million over its inability to keep private footage and audio collected from users’ homes. This action stems from a collection of privacy violations that occurred between 2017 and 2020. Ring customers brought […]
The FBI and the US Secret Service NSA have published an updated guide to stop ransomware. The revised guide includes lessons learned from the past few years and additional recommendations to limit the impact of ransomware. The manual describes several steps that are important in preventing ransomware or limiting the impact, such as preparing for […]
There is an everlasting need to mitigate Web3 Blockchain risks and security threats. Web3 applications run on blockchain platforms and are gaining popularity, but they come with security risks. Smart contracts are a major source of risk, as they can contain vulnerabilities that can be exploited by attackers. Web3 applications are also vulnerable to phishing […]
Almost half of all Dutch company websites are vulnerable to attacks by cyber criminals due to vulnerabilities in software, configurations and web services. The result is often data theft or extortion through ransomware. “Entrepreneurs are insufficiently aware of the risks,” says cybersecurity specialist ID Control based on three studies of web shops, government websites and […]
Online gambling platform DraftKings has been hit by a credential stuffing attack in which attackers managed to break into users’ accounts and steal some $300,000. Credential stuffing uses previously leaked email addresses and passwords to gain automated account access. Attackers check whether they can also log in to website B with credentials stolen from website […]
WhatsApp silently fixed two critical zero-day vulnerabilities that affect both Android & iOS versions allowing attackers to execute an arbitrary code & Take Full App Control Remotely. So please update your WhatsApp asap!
All five extensions discovered by McAfee behave with the web app manifest (“manifest.json” file), which dictates how the extension should behave on the system, loads a multifunctional script (B0.js) that sends the browsing data to a domain the attackers control (“langhort[.]com”).The data is delivered through via POST requests each time the user visits a new URL. The info reaching […]
Companies will be under increased pressure after Europe’s top court ruled they must apply special protections to data that firms previously didn’t consider sensitive such as health, religion, political views and sexual orientation. The European Court of Justice on Aug. 1 determined that public officials in Lithuania had their sensitive data revealed because their spouses’ […]
Telecom provider T-Mobile has reached a settlement in the United States with the victims of a major data breach that occurred last year in which the personal data of 79 million current and former American customers was stolen. This included names, dates of birth, social security number and driver’s license information, as well as telephone […]