156/68 Monday, April 28, 2025 MTN Group, the South African multinational telecommunications giant, has confirmed a data breach that resulted in unauthorized access to the personal information of some customers in certain countries. However, the company stated that its core network, billing systems, and financial services infrastructure were not affected and remain secure and fully […]
155/68 Monday, April 28, 2025 A recent report by the United Nations Office on Drugs and Crime (UNODC) highlights the growing reach of transnational crime syndicates operating out of Southeast Asia, running large-scale online scam centers that have evolved into a massive “cybercrime industry.” These operations generate tens of billions of dollars annually through various […]
154/68 Friday, April 25, 2025 Blue Shield of California has disclosed a data breach in which Protected Health Information (PHI) of more than 4.7 million members was inadvertently exposed to Google’s analytics and advertising platforms. The breach was due to a misconfiguration of Google Analytics on certain sections of the organization’s website. The incident occurred […]
153/68 Friday, April 25, 2025 Google has announced that it will no longer display separate notifications regarding the use of third-party cookies in its Chrome browser, as part of its ongoing Privacy Sandbox initiative. Anthony Chavez, Vice President of Google’s Privacy Sandbox, stated that users can still manage their cookie preferences via Chrome’s privacy and […]
152/68 Thursday, April 24, 2025 The city of Abilene, Texas, has shut down parts of its internal systems following a cyberattack that occurred on April 18, 2025, impacting internal servers. IT staff and cybersecurity experts are currently investigating the incident to assess the extent of the damage. Emergency services remain fully operational, and no financial […]
151/68 Thursday, April 24, 2025 A hacker group known as Elusive Comet has been exposed for using social engineering tactics, specifically exploiting the Remote Control feature in Zoom to trick victims into granting control of their computers. The group targets high-value cryptocurrency users, according to cybersecurity firm Trail of Bits, which noted that the group’s […]
150/68 Wednesday, April 23, 2025 Cybersecurity researchers from AhnLab Security Intelligence Center (ASEC) in South Korea have detected a new cyberattack campaign linked to Kimsuky, a North Korean threat actor. The group is exploiting the BlueKeep vulnerability (CVE-2019-0708) in Microsoft Remote Desktop Services (RDP) to breach systems in South Korea and Japan. This campaign, dubbed […]
149/68 Wednesday, April 23, 2025 Cybersecurity firm HUMAN, a leader in bot detection and ad fraud prevention, has uncovered “Scallywag,” a large-scale ad fraud operation embedded within WordPress plugins. The scheme leverages piracy websites and URL shortening services to generate fraudulent traffic. The group utilized four WordPress plugins—Soralink, Yu Idea, WPSafeLink, and Droplink—developed between 2016 […]
148/68 Tuesday, April 22, 2025 Researchers from Arctic Wolf have issued a warning about an ongoing cyberattack campaign targeting SonicWall Secure Mobile Access (SMA) devices. The attacks, active since January 2025, exploit CVE-2021-20035, a known OS command injection vulnerability in the SMA100 management interface. This flaw allows an authenticated attacker to execute arbitrary system commands […]
147/68 Tuesday, April 22, 2025 Security researchers from Zscaler have revealed that Mustang Panda, a sophisticated APT group linked to the Chinese government (also known as Bronze President, Stately Taurus, TA416), has expanded its cyber arsenal with four new attack tools. These include two keyloggers, a lateral movement tool, and an EDR evasion driver. The […]
