Recently I discovered and shared with vpnMentor about 15 unprotected and publicly exposed databases. They contained 4.6 million records, including sensitive Illinois voter information. Now that the dust has settled and as the US election nears, I wanted to reflect on the potential vulnerabilities
Latest News: Cybersecurity
Discord, the popular messaging platform primarily used by gaming communities, has now been blocked in both Russia and Turkey. The bans come as part of these governments’ broader efforts to tighten control over digital platforms, with the authorities citing concerns over illegal content. Millions of
FIN7, a notorious Russian hacking group, is using fake AI nude image generator websites to distribute malware, targeting individuals and potentially businesses. According to research from Silent Push, the campaign relies on the popularity of deepfake technology to lure users into downloading
Ireland’s Data Protection Commission (DPC) has fined Meta €91 million for storing millions of user passwords in plaintext. The issue prompted a regulatory investigation into Meta’s adherence to the General Data Protection Regulation (GDPR). Meta found in January 2019 that it had maintained
University Medical Center (UMC) Health System in Lubbock, Texas, is dealing with the aftermath of a ransomware attack that crippled its IT infrastructure and forced the diversion of patients to other healthcare facilities. The breach, which occurred late last week, impacted key operations,
A new strain of the Necro malware has infected over 11 million Android devices by exploiting vulnerabilities in apps from the Google Play Store and unofficial sources. Originally identified by Kaspersky, the Necro Trojan has evolved, spreading through malicious software development kits (SDKs)
Microsoft has raised alarms over a new wave of cyberattacks targeting the US healthcare sector, led by the financially motivated group Vanilla Tempest. According to Microsoft's recent post on X (formerly Twitter) regarding the issue, the group has deployed the INC ransomware strain in these
Intel has issued a security advisory detailing over 20 vulnerabilities affecting various processors, and has urged users to update their systems. The vulnerabilities primarily impact Intel’s UEFI firmware, used in processors such as Atom, Xeon, Pentium, Celeron, and Core. These flaws can result in
In a recent campaign, GitHub comments are being used to distribute Lumma Stealer, a password-stealing malware. The campaign was first reported by a contributor to the teloxide Rust library, who shared on Reddit that multiple GitHub comments, disguised as fixes, were actually pushing malware.
In an alarming series of cyberattacks, a North Korean hacking group known as Citrine Sleet exploited a zero-day vulnerability in Chromium-based browsers to steal cryptocurrency. The vulnerability, CVE-2024-7971, impacted popular browsers such as Google Chrome and Microsoft Edge and was swiftly