06 Apr 2020

DOJ Says Zoom-Bombing is Illegal, Could Lead to Jail Time

The Department of Justice has warned the public that ‘Zoom-bombing’ is illegal and those who are involved in such practices may be charged with federal and state crimes. The ‘Zoom-bombing’ incidents have frequently been occurring as a result of a massive work-from-home movement in the US as well as colleges

Read More
06 Apr 2020

Researcher Hijacks iOS, macOS Camera with Three Safari Zero-Days

Ryan Pickren, a security researcher, has been awarded $75,000 by Apple for uncovering seven zero-days in Safari, three of which Pickren used to access the camera. The discoveries were shared with Apple in December of 2019 and were subsequently patched. Using the three flaws, Pickren was able to build an

Read More
06 Apr 2020

Russian telco hijacks internet traffic for Google, AWS, Cloudflare, and others

A Russian state-owned telecommunications provider intercepted internet traffic meant for 200 of the world’s biggest content delivery networks (CDNs) and cloud hosting providers. The telecommunications company, Rostelecom, affected more than 8,800 internet traffic routes in the incident. Impacted companies include Google, Amazon, Facebook, Akamai, Cloudflare, GoDaddy, Digital Ocean, Joyent, LeaseWeb,

Read More
03 Apr 2020

Key Ring App Data Leak Exposes 44 Million Images

A digital wallet app, Key Ring, has suffered from a data breach after misconfiguring five buckets containing the personal data of 14 million users stored in unsecured Amazon Web Services (AWS). The app allows its customers to store scans and photos of membership and loyalty cards to a digital folder

Read More
03 Apr 2020

IRS Warns of Surge in Economic Stimulus Payment Scams

The IRS has warned Americans about an influx in scams related to the COVID-19 pandemic occurring over either email, phone calls, or social media that requests personal information while using fraudulent IRS stimulus checks as a lure. The scam campaign can result in identity theft and tax-related fraud and is

Read More
03 Apr 2020

London Hit by Quarantine Text Scam

London residents have been targeted with fake fine notification texts in which fraudsters tell the victim that they owe money for violating UK lockdown rules. The malicious text is designed to resemble a genuine COVID-19 alert sent by the UK government. Victims who receive the message have reported that it

Read More
03 Apr 2020

Mozilla will fund open source COVID-19-related technology projects

Mozilla has announced that it is offering up to $50,000 to open source technology projects that aim to relieve the tension the COVID-19 pandemic has placed on many countries. The company is gearing up to join other tech giants in aiding solutions to the everyday challenges brought on by the

Read More
02 Apr 2020

There’s now COVID-19 malware that will wipe your PC and rewrite your MBR

Cybercriminals have emerged with a new malware that destroys an infected system by either wiping files or rewriting the computer’s master boot record (MBR). The information security community has identified at least five new strains (some in the wild and others as tests) that operate this way amid the COVID-19

Read More
02 Apr 2020

Two Zoom Zero-Day Flaws Uncovered

Patrick Wardle, a security researcher with Jamf, has uncovered two zero-day flaws in the Zoom macOS client version. The telecom and online class platform vulnerabilities have the potential to give local attackers root privileges, which subsequently allow the attackers to access the victims’ microphone and camera. The two flaws have

Read More
02 Apr 2020

‘Secure’ Backup Company Leaks 135 Million Records Online

VpnMentor has discovered that a company claiming to provide secure backups, SOS Online Backup, has leaked metadata and customer information in over 135 million records after a misconfigured online database was uncovered by cybersecurity researchers. The incident was exposed as part of vpnMentor’s ongoing mapping project that already found major

Read More