27 Aug 2021

Critical IoT Camera Flaw Allows for Device Hijacking

Security researchers at Nozomi Networks have uncovered another critical IoT security camera systems bug that could potentially allow attackers to access and control devices. The remote code execution vulnerability is tracked as CVE-2021-32941 and is located in the web service of the Annke N48PBB network video recorder often used by

Read More
27 Aug 2021

Chinese Developer Exposes Data on Over One Million Gamers

Chinese game developer EskyFun Entertainment Network Limited accidentally exposed the personal and device details of over one million players after leaving an internet-facing server unsecured. Researchers at vpnMentor first discovered the unprotected Elasticsearch server on July 5. After no reply from the parent company, they contacted the Hong Kong CERT

Read More
27 Aug 2021

US charges HeadSpin ex-CEO over fake $1bn valuation scheme

HeadSpin has been charged $1 billion by the SEC and the US Department of Justice for allegedly defrauding investors by falsely claiming that the company had achieved strong and consistent growth. The organization markets itself as an AI testing, dev-ops, and mobile testing platform. For two years, officials state that

Read More
27 Aug 2021

US Media, Retailers Targeted by New SparklingGoblin APT

Cybersecurity researchers at ESET have identified a new threat actor utilizing an undocumented backdoor to infiltrate organizations in the education, retail, and government sectors. The advanced persistent threat (APT) group is an emerging international cybercriminals gang that is broadening its targets to include universities, media firms, and one computer retailer

Read More
26 Aug 2021

“Sophisticated” Cyber-Attack Compromises Patient Data at Private Health Clinic

In Singapore, Eye & Retina Surgeons revealed that over 73,000 patients were affected by a sophisticated cyberattack. The private medical clinic released a statement earlier this week, revealing that the attack took place on August 6. The cyberattack compromised sensitive data such as patients’ names, addresses, ID card numbers, contact

Read More
26 Aug 2021

Cisco Issues Critical Fixes for High-End Nexus Gear

Cisco Systems recently released six security patches linked to its 9000 series networking gear. The patches range in severity from critical to medium. The most serious of the bugs patched by Cisco ranked 9.1 on the CVSS scale and could allow for a remote and unauthenticated adversary to read or

Read More
25 Aug 2021

FBI Issues Ransomware Group Flash Alert

The FBI recently released a flash warning due to the recent activities of an organized cyber-criminal gang referred to as the OnePercent Group. In the alert, which was published on Monday, the FBI stated that the group has been targeting US companies since November 2020. OnePercent uses the threat emulation

Read More
25 Aug 2021

Custom WhatsApp Build Delivers Triada Malware

On Tuesday, Kaspersky released a report warning of the Triada trojan targeting mobile devices with an advertising SDK. The latest version of the malware was found buried inside an advertising component of a modified version of WhatsApp, a popular messenger, called FM WhatsApp. The malware is very persistent and was

Read More
25 Aug 2021

NSO Group facing renewed backlash after helping repressive Bahraini Government hack iPhones of politicians, activists

Citizen Lab recently released a report detailing how the controversial Israeli company NSO Group supplied surveillance tools to the repressive government of Bahrain from June 2020 to February 2021. The company has face international backlash since it was revealed that it aided dozens of organizations in spying on world leaders,

Read More
24 Aug 2021

AT&T Denies Data Breach

AT&T is denying claims made by ShinyHunters that the personal data of 70 million customers has been stolen. ShinyHunter’s previous exploits have affected the likes of Microsoft, Dave, Tokopedia, Pixlr, Mashable, and Havenly, among others. ShinyHunter announced the breach on an underground hacking forum earlier this month. The threat group

Read More