The Federal Bureau of Investigation (FBI) and the US Department of Justice (DOJ) announced the seizure of three domains following an international investigation that discovered these domains selling stolen personal information and providing access to…

Last year, Apple says its App Store fraud prevention mechanisms stopped potentially fraudulent transactions totaling roughly $1.5 billion.  Apple noted that throughout 2021, they prevented more than 3.3 million stolen credit cards from making…

EfficientIP has shared findings from its eighth annual 2022 Global DNS Threat Report, conducted by IDC, revealing the significant impact of Domain Name System (DNS) attacks on global organizations' operations over the past year. The report highlights…

Security researchers at NCC Group have discovered a critical vulnerability in the U-Boot boot loader.  An open-source boot loader, U-Boot is used in various types of embedded systems, including ChromeOS and Android.  It supports multiple…

Security researchers have observed an increase in the use of reverse tunnel services, as well as URL shorteners, for large-scale phishing campaigns, making it more difficult to detect and stop the malicious activity. This practice differs from the more…

Researchers at the anti-bot specialist firm Kasada have discovered the use of 'Solver Service' bots, an Application Programming Interface (API)-as-a-service tool designed to bypass most bot management systems. Solving a bot detection system's defense…

Hackers stole over $257,000 in Ethereum and 32 NFTs following the hacking of the Yuga Labs' Bored Ape Yacht Club and Otherside Metaverse Discord services to execute a phishing scheme. A Yuga Labs community manager's Discord account was hacked and used to…

Security researchers at SafetyDetectives discovered the personal information of more than 30,000 students on an improperly secured Elasticsearch server.  The server was left connected to the internet and did not require a password to allow access to…

According to data, the Federal Trade Commission (FTC) released Friday, losses from cryptocurrency fraud climbed to over $1 billion between January 2021 through March 2022.  The number is a big jump from the $80 million in losses the FTC reported…

Security researchers at Trellix have surveyed 1,000 cybersecurity professionals globally and found that nearly a third of the cybersecurity workforce plans to leave the industry in the near future.  Organizations are already facing cybersecurity…

The LockBit group touts its speed over competing ransomware families to attract potential buyers for its ransomware-as-a-service. Earlier this year, the LockBit group posted a table listing encryption speeds for more than 30 ransomware families,…

The US Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory to warn of critical vulnerabilities in Illumina genetic analysis devices that could allow a remote, unauthenticated attacker to take over an impacted product.  The…