‘Fix It’ social-engineering scheme impersonates several brands
Criminals are luring victims looking to download software and tricking them into running a malicious command.
Read moreMonth: December 2024
TP-Link faces US national security probe, potential ban on devices
TP-Link is being investigated for alleged predatory pricing practices, which may be driven by ulterior motives.
Read moreWeb Hacking Service ‘Araneida’ Tied to Turkish IT Firm
Credit to Author: BrianKrebs| Date: Thu, 19 Dec 2024 17:07:30 +0000
Cybercriminals are selling hundreds of thousands of credential sets stolen with the help of a cracked version of Acunetix, a powerful commercial web app vulnerability scanner, new research finds. The cracked software is being resold as a cloud-based attack tool by at least two different services, one of which KrebsOnSecurity traced to an information technology firm based in Turkey.
Read morePhishing platform Rockstar 2FA trips, and “FlowerStorm” picks up the pieces
Credit to Author: gallagherseanm| Date: Thu, 19 Dec 2024 15:11:48 +0000
A sudden disruption of a major phishing-as-a-service provider leads to the rise of another…that looks very familiar
Read moreThis VPN Lets Anyone Use Your Internet Connection. What Could Go Wrong?
Credit to Author: Matt Burgess| Date: Thu, 19 Dec 2024 11:00:00 +0000
A free VPN app called Big Mama is selling access to people’s home internet networks. Kids are using it to cheat in a VR game while researchers warn of bigger security risks.
Read moreCongress Again Fails to Limit Scope of Spy Powers in New Defense Bill
Credit to Author: Dell Cameron| Date: Wed, 18 Dec 2024 20:31:00 +0000
The National Defense Authorization Act passed today, but lawmakers stripped language that would keep the Trump administration from wielding unprecedented authority to surveil Americans.
Read morePython-Based NodeStealer Version Targets Facebook Ads Manager
Credit to Author: Aira Marcelo| Date: Thu, 19 Dec 2024 00:00:00 +0000
In this blog entry, Trend Micro’s Managed XDR team discuss their investigation into how the latest variant of NodeStealer is delivered through spear-phishing attacks, potentially leading to malware execution, data theft, and the exfiltration of sensitive information via Telegram.
Read morePallet liquidation scams and how to recognize them
Pallet liquidation is an attractive playing field for online scammers. Will you receive goods or get your credit card details stolen?
Read moreIntel Officials Warned Police That US Cities Aren’t Ready for Hostile Drones
Credit to Author: Dell Cameron| Date: Tue, 17 Dec 2024 16:31:43 +0000
In a previously unreported August memo, the Department of Homeland Security urged state and local police to conduct exercises to test their ability to respond to weaponized drones.
Read more