Security

European authorities arrest alleged admin of notorious Russian crime forum XSS

Security /

European officials have confirmed the arrest of the alleged administrator behind XSS.is, one of the longest-running Russian-language cybercrime forums.  Per Europol, the alleged administrator was arrested in Ukraine on Tuesday. A law enforcement notice on XSS now reads: “This domain has been seized.” According to a statement by prosecutors in Paris, French authorities obtained a […]

European authorities arrest alleged admin of notorious Russian crime forum XSS Read More »

Hundreds of organizations breached by SharePoint mass-hacks

Security /

Security researchers say hackers have breached at least 400 organizations by exploiting a zero-day vulnerability in Microsoft SharePoint, signalling a sharp rise in the number of detected compromises since the bug was discovered last week. Eye Security, a Dutch cybersecurity firm that first identified the vulnerability in SharePoint, a popular server software that companies use

Hundreds of organizations breached by SharePoint mass-hacks Read More »

Apple alerted Iranians to iPhone spyware attacks, say researchers

Security /

Apple notified more than a dozen Iranians in recent months that their iPhones had been targeted with government spyware, according to security researchers. Miian Group, a digital rights organization that focuses on Iran, and Hamid Kashfi, an Iranian cybersecurity researcher who lives in Sweden, said they spoke with several Iranians who received the notifications in

Apple alerted Iranians to iPhone spyware attacks, say researchers Read More »

UK government wants ransomware victims to report cyberattacks so it can disrupt the hackers

Security /

The U.K. government wants to require victims of ransomware to report if they were breached with the goal of providing law enforcement with information that could help target the cybercriminals responsible.  On Tuesday, the U.K.’s interior ministry, the Home Office, published a proposal with the aim of changing the British government’s strategy to counter ransomware.

UK government wants ransomware victims to report cyberattacks so it can disrupt the hackers Read More »

Serial spyware founder Scott Zuckerman wants the FTC to unban him from the surveillance industry

Security /

The founder of a spyware company who was banned from the surveillance industry following an earlier data breach is now seeking to undo the ban, according to the Federal Trade Commission.  In a notice on Friday, the federal watchdog said Scott Zuckerman sought to rescind or modify the 2021 ban imposed by the FTC on

Serial spyware founder Scott Zuckerman wants the FTC to unban him from the surveillance industry Read More »

Hackers exploiting SharePoint zero-day seen targeting government agencies

Security /

The hackers behind the initial wave of attacks exploiting a zero-day in Microsoft SharePoint servers have so far primarily targeted government organizations, according to researchers as well as news reports. Over the weekend U.S. cybersecurity agency CISA published an alert, warning that hackers were exploiting a previously unknown bug — known as a “zero-day” —

Hackers exploiting SharePoint zero-day seen targeting government agencies Read More »

Indian crypto exchange CoinDCX confirms $44 million stolen during hack

Security /

India’s largest crypto exchange CoinDCX has confirmed that one of its internal operational accounts was compromised in a recent security breach, allowing the hackers to make off with millions in crypto. On Saturday, CoinDCX co-founder and CEO Sumit Gupta disclosed in a post on X that an internal account “used only for liquidity provisioning on

Indian crypto exchange CoinDCX confirms $44 million stolen during hack Read More »

New zero-day bug in Microsoft SharePoint under widespread attack

Security /

The U.S. federal government and cybersecurity researchers say a newly discovered security bug found in Microsoft’s SharePoint is under attack.  U.S. cybersecurity agency CISA sounded the alarm this weekend that hackers were actively exploiting the bug. Microsoft has not yet provided patches for all affected SharePoint versions, leaving customers across the world largely unable to

New zero-day bug in Microsoft SharePoint under widespread attack Read More »

These are our favorite cyber books on hacking, espionage, crypto, surveillance, and more

Security /

In the last 30 years or so, cybersecurity has gone from being a niche specialty within the larger field of computer science, to an industry estimated to be worth more than $170 billion made of a globe-spanning community of hackers. In turn, the industry’s growth, and high-profile hacks such as the 2015 Sony breach, the

These are our favorite cyber books on hacking, espionage, crypto, surveillance, and more Read More »

For privacy and security, think twice before granting AI access to your personal data

Security /

AI is being forced on us in pretty much every facet of life, from phones and apps to search engines and even drive-throughs, for some reason. The fact that we’re now getting web browsers with baked-in AI assistants and chatbots shows that the way some people are using the internet to seek out and consume

For privacy and security, think twice before granting AI access to your personal data Read More »