Tag Archives: Hackers

A few days ago, Apple fixed a vulnerability on iOS and macOS that “may have been exploited in an extremely sophisticated attack against specific targeted individuals.” Now, new details have emerged, and it appears that the hacking campaign also leveraged a now-fixed WhatsApp flaw to target its victims. Here are the details. As reported by TechCrunch, Meta has confirmed that …

Credit reporting giant TransUnion has disclosed a data breach affecting more than 4.4 million customers’ personal information. In a filing with Maine’s attorney general’s office on Thursday, TransUnion attributed the July 28 breach to unauthorized access of a third-party application storing customers’ personal data for its U.S. consumer support operations. TransUnion claimed “no credit information was accessed,” but provided no …

Numerous tech companies are vying to harness the power of AI for a new generation of web browsers. Probably the most prominent is Perplexity’s Comet, which it describes as a “personal assistant and thinking partner” while you surf the web. Unsurprisingly, that approach can have enormous cybersecurity implications. As privacy-focused browser company Brave noted in a blog post last week, it’s alarmingly easy …

The Pakistani APT36 cyberspies are using Linux .desktop files to load malware in new attacks against government and defense entities in India. The activity, documented in reports by CYFIRMA and CloudSEK, aims at data exfiltration and persistent espionage access. APT 36 has previously used .desktop files to load malware in targeted espionage operations in South Asia. The attacks were first …

Amber DaSilva / Jalopnik The Flipper Zero is mired in controversy again. The electronic multitool, with its array of various antennas, has long been demonized for simply existing — the Canadian government has even talked about banning it entirely due to a theorized but then-unproven link to car thefts. Now, an investigation …

Several of the best password managers have been found to be vulnerable to a flaw that lets hackers pull off clickjacking attacks. Researcher Marek Tóth recently demonstrated how the bug allows attackers to overlay invisible HTML elements over an interface so that users think they’re clicking on a standard popup but instead, they’re actually unknowingly leaking sensitive information like account …

Human resources technology company Workday has confirmed that a data breach has affected its third-party CRM platform. In a announcing the breach, the company said that a social engineering campaign had targeted its employees, with threat actors posing as IT or HR in order to trick employees into sharing account access or personal information. The company says that while the …

Workday, one of the largest providers of human resources technology, has confirmed a data breach that allowed hackers to steal personal information from one of its third-party customer relationship databases. In a blog post published late Friday, the HR technology giant said the hackers stole an unspecified amount of personal information from the database, which Workday said was primarily used …

A sophisticated social engineering campaign by the EncryptHub threat group that combines impersonation tactics with technical exploitation to compromise corporate networks. The Russian-linked cybercriminals are posing as IT support staff and using Microsoft Teams requests to establish remote access, ultimately deploying malicious payloads through a previously unknown Windows vulnerability. The attack begins with threat actors claiming to be from internal …

Zhou added in his statement that Securam will be fixing the vulnerabilities Omo and Rowley found in future models of the ProLogic lock. “Customer security is our priority and we have begun the process of creating next-generation products to thwart these potential attacks,” he writes. “We expect to have new locks on the market by the end of the year.” …