NPM supply-chain attack impacts hundreds of websites and apps
An NPM supply-chain attack dating back to December 2021 used dozens of malicious NPM modules containing obfuscated Javascript code to…
Hacker claims to have stolen data on 1 billion Chinese citizens
An anonymous threat actor is selling several databases they claim to contain more than 22 terabytes of stolen information on…
Free smartphone stalkerware detection tool gets dedicated hub
Kaspersky has launched a new information hub to help with their open-source stalkerware detection tool named TinyCheck, created in 2019…
Microsoft Defender adds network protection for Android, iOS devices
Microsoft has announced the introduction of a new Microsoft Defender for Endpoint (MDE) feature in public preview to help organizations detect weaknesses affecting…
Toll fraud malware disables your WiFi to force premium subscriptions
Microsoft is warning that toll fraud malware is one of the most prevalent threats on Android and that it is…
Facebook Business Pages Targeted via Chatbot in Data-Harvesting Campaign
The clever, interactive phishing campaign is a sign of increasingly complex social-engineering attacks, researchers warn.
Android malware ‘Revive’ impersonates BBVA bank’s 2FA app
A new Android banking malware named Revive has been discovered that impersonates a 2FA application required to log into BBVA…
Fast Shop Brazilian retailer discloses “extortion” cyberattack
Fast Shop, one of Brazil's largest retailers, has suffered an 'extortion' cyberattack that led to network disruption and the temporary closure…
Microsoft 365 Users in US Face Raging Spate of Attacks
A voicemail-themed phishing campaign is hitting specific industry verticals across the country, bent on scavenging credentials that can be used…
Operational Security: How to Get Rid of Digital Footprints On The Internet?
By Viktoria Sokurenko, CMO of Ukrainian start-up X-ray OPSEC (Operational Security) is a term used by US intelligence […] The…