According to Group-IB, a database containing stolen payment cards has been hit by hackers, who were able to lift the information off of the Swarmshop cyber-underground card market. The hackers leaked the information online, putting consumers in the US and across globe at risk for identity fraud, theft, and other

The US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency has released a new tool that aims to help organizations detect a potential compromise to Microsoft 365 and Microsoft Azure. The tool has been named Aviary and includes a dashboard that facilitates the analysis of output from Sparrow, a

The National Cyber Security Center (NCSC) has released a critical security alert detailing how cybercriminals are actively exploiting a Fortinet VPN vulnerability to distribute ransomware. Kaspersky reported on the flaw earlier this month, stating that criminals are seeking out unpatched systems and are able to exploit the flaw to remotely

Cisco has stated that it does not plan to patch three different small business router models and one VPN firewall device, despite critical vulnerabilities found in each. The SOHO router models contain a bug that is rated 9.8/10 in severity, and could allow unauthenticated remote users to attack targeted equipment

Palo Alto Networks recently released an advisory warning that several recent crypto-jacking incidents have targeted education institutions in Washington State. Crypto-jacking is a type of cyberattack in which attackers use deception tactics to install cryptocurrency mining components that leech off of computational power without being noticed or detected. Different types

A new HP report details how the world is coming increasingly close to armed conflict sparked by cyberattacks. The study was compiled by University of Surrey senior lecturer in criminology, Mike McGuire. The study claims that there has been a 100% increase in significant state-backed attacks between 2017 and 2020.

Slack and Discord, two workflow and collaboration tools, have been infiltrated by malicious actors abusing legitimate functions to evade security and deliver malware. The campaign seeks to drop information stealers, remote access Trojans, and other malware to users utilizing the platforms. The pandemic drove platforms like Slack and Discord to

Earlier this week, Facebook published its latest Coordinated Inauthentic Behavior report, in which it listed its most recent efforts to curb coordinated illegitimate behavior across the social media platform. According to the report, Facebook investigated and wiped out a long-running troll farm located in Albania with a widespread impact. The

An Iranian ship, called the Saviz, has been damaged by an explosion that occurred while the ship was anchored off of Yemen’s Red Sea coast. The ship is allegedly used by Revolutionary Guards to spy on foreign entities, according to Iran’sforeign ministry. The blast caused no casualties and is still

Researchers have found a misconfigured Easticsearch server belonging to Office Depot, a popular office supplies store chain. One million customers’ personal information was exposed on the misconfigured server, according to researchers. The database was not protected by a password and was initially found by a Website Planet team on March