Latest News

Over the course of a year, vpnMentor deployed a honeypot of open servers containing fake personal data to lure outside actors, analyze their behavior, and record what happens once a server is left open without encryption or other safeguards. This gave us near-real-time data on hackers' activity,

Proofpoint Inc. has released a report highlighting the surge in the popularity of EvilProxy, particularly in its use for targeting Microsoft 365 accounts of top-level executives within prominent companies. Cybercriminals favor these kits due to their minimal requirement for technical expertise or

The UK Electoral Commission has disclosed a massive cybersecurity breach that exposed the personal data of an estimated 40 million UK voters. The breach, which began in August 2021, remained undetected until October 2022. The compromised data includes full names, email addresses, home addresses,

On Friday, the Colorado Department of Higher Education (CDHE) made an announcement regarding a data breach. The department detected this breach on June 19th and have since been collaborating with external specialists to manage the situation. Those impacted include people who attended public higher

Hackers exploiting a vulnerability in the corporate file transfer tool MOVEit Transfer have stolen protected health information belonging to Oregon citizens. The hackers accessed sensitive patient data, including names, birthdates, Social Security numbers, email and mailing addresses, and member

Cybersecurity firm CYFIRMA has uncovered a sophisticated spear messaging campaign targeting WhatsApp users in South Asia. The attack involves leading users to install a malicious Android app named "SafeChat". The app then stealthily steals sensitive user data, including call logs, texts, and GPS

Guardio Labs security researchers uncovered a new, unpatched exploit in Salesforce email servers that resulted in an advanced email phishing campaign. The vulnerability allowed hackers to craft phishing emails under the company's email servers and domain, which were then used to target Facebook

In a wave of cyber attacks that have sent shockwaves through the European banking sector, users of multiple financial institutions have fallen victim to the insidious SpyNote Android spyware. The notorious malware, traditionally known for espionage and data collection, has recently been repurposed

Recently, a friend of mine who is a novice crypto investor reached out to me asking if I could look into a company that promotes crypto mining and investment. The website promised returns that seemed too good to be true and had various other red flags. Unfortunately, by the time I got back to them

Meta, the parent company of Facebook and Instagram, has initiated measures to block access to news content for users in Canada. The move comes in response to the Online News Act, passed by the Canadian Parliament. The law mandates that tech platforms engage in equitable revenue-sharing negotiations