The US Federal Trade Commission (FTC) recently announced that it will send a total of $5.6m in refunds to customers of Ring, a home camera provider, due to a settlement with Ring over security and privacy failings. Ring, which was bought by tech giant Amazon in 2018, reached a settlement with the FTC in 2023 over charges that the company allowed employees and contractors to access consumers’ private videos and failed to implement security protections, enabling hackers to take control of consumers’ accounts, cameras, and videos.

A team of researchers from Florida International University's (FIU) Cyber-Physical Systems Security Lab, in collaboration with Google Senior Research Scientist Guliz Seray Tuncay, delved into how hackers can gain access to a user's computer files via the File System Access Application Programming Interface (API), which allows web applications in modern browsers to interact with users' local file systems. The threat affects Google Chrome and Microsoft Edge browsers, but not Apple Safari or Mozilla Firefox.

As reported by security researcher "3xp0rt," a hacker claiming to be the creator of "HelloKitty" ransomware has rebranded the gang as "HelloGookie." HelloKitty is known for hacking the game company CD Project Red in 2021 and stealing the source code for Cyberpunk 2077, Witcher 3, and Gwent. The threat actor debuted with a massive data dump on a new dark web website. HelloGookie uploaded a 750GB archive with Witcher 3 builds and Cyberpunk 2077 source code. This article continues to discuss the rebranding of the HelloKitty ransomware. 

According to Elshan Kashefi, UK's National Quantum Computing Centre Chief Scientist, banks should be concerned about quantum security. Kashefi warned of the immense threat quantum computers pose before they are even fully functional. Today, cybercriminals are stealing encrypted data in bulk to decrypt it with a quantum device in the future. These Harvest Now, Decrypt Later (HNDL) attacks put today's sensitive information at risk of theft. Due to their large and varied data, financial institutions are prime targets for these attacks.

Over 1,000 "Godfather" mobile banking Trojan samples are circulating in dozens of countries, targeting hundreds of banking apps. Godfather, which can record screens and keystrokes, intercept Two-Factor Authentication (2FA) calls and texts, initiate bank transfers, and more, was discovered in 2022. It has become one of the most popular Malware-as-a-Service (MaaS) offerings in cybercrime. According to Zimperium's 2023 "Mobile Banking Heists Report," Godfather targeted 237 banking apps in 57 countries as of late 2023.