28 Dec Ransomware attack at Louisiana hospital impacts 270,000 patientsThe Lake Charles Memorial Health System (LCMHS) is sending out notices of a data breach affecting almost 270,000 people who have received care at one of its medical centers. […]
27 Dec BTC.com lost $3 million worth of cryptocurrency in cyberattackBTC.com, one of the world’s largest cryptocurrency mining pools, announced it was the victim of a cyberattack that resulted in the theft of approximately $3 million worth of crypto assets belonging to both customers and the company. […]
27 Dec Hackers steal $8 million from users running trojanized BitKeep appsMultiple BitKeep crypto wallet users reported that their wallets were emptied during Christmas after hackers triggered transactions that didn’t require verification. […]
27 Dec EarSpy attack eavesdrops on Android phones via motion sensorsA team of researchers has developed an eavesdropping attack for Android devices that can, to various degrees, recognize the caller’s gender and identity, and even discern private speech. […]
26 Dec Hacker claims to be selling Twitter data of 400 million usersA threat actor claims to be selling public and private data of 400 million Twitter users scraped in 2021 using a now-fixed API vulnerability. They’re asking $200,000 for an exclusive sale. […]
24 Dec New info-stealer malware infects software pirates via fake cracks sitesA new information-stealing malware named ‘RisePro’ is being distributed through fake cracks sites operated by the PrivateLoader pay-per-install (PPI) malware distribution service. […]
23 Dec The Week in Ransomware – December 23rd 2022 – Targeting Microsoft ExchangeReports this week illustrate how threat actors consider Microsoft Exchange as a prime target for gaining initial access to corporate networks to steal data and deploy ransomware. […]
23 Dec Hackers exploit bug in WordPress gift card plugin with 50K installsHackers are actively targeting a critical flaw in YITH WooCommerce Gift Cards Premium, a WordPress plugin used on over 50,000 websites. […]
23 Dec Massive Twitter data leak investigated by EU privacy watchdogThe Irish Data Protection Commission (DPC) has launched an inquiry following last month’s news reports of a massive Twitter data leak. […]
23 Dec Ghost CMS vulnerable to critical authentication bypass flawA critical vulnerability in the Ghost CMS newsletter subscription system could allow external users to create newsletters or modify existing ones so that they contain malicious JavaScript. […]