Categories
Breach Bug CVE Cyber Security Data leak Hacking MaaS Malware Phishing Scam Smishing TrickBot Vulnerability Zero-day

KVKK, Swvl, Dunzo suffers data breach, 25,000 UAE police data on sale on dark web forum, and more

Major cybersecurity events on 13th July 2020 (Morning Post): Hacker forum sells over 1,300 phishing kits making over $30,000. Smishing campaign spreads fake TikTok app that downloads malware, stealing sensitive data. Flaw in Indian Chingari app allows it to be easily hacked.Continue readingKVKK, Swvl, Dunzo suffers data breach, 25,000 UAE police data on sale on dark web forum, and more

Categories
Cyber Security DDoS Malvertise Malware Phishing Ransomware RCE Spyware Stalkerware Vulnerability Zero-day

Google bans ads promoting spyware, stalkerware, Fraudsters use inactive domains to malvertise, and more

Major cybersecurity events on 10th July 2020 (Evening Post): New phishing campaign leverages legitimate SurveyMonkey domains to fish for Office 365 credentials. Android malware family Joker sneaks their product Bread into Google Play Store. DDoS attack targets Cloudflare. Continue readingGoogle bans ads promoting spyware, stalkerware, Fraudsters use inactive domains to malvertise, and more

Categories
Breach CVE Cyber Security Data leak Hacking Malware Vulnerability

Malicious Office 365 OAuth apps part of phishing attacks, Clubillion leaks millions of users data, and more

Major cybersecurity events on 9th July 2020 (Morning Post): Microsoft will soon release security feature, Kernel Data Protection, blocking malware, malicious actors from corrupting OS memory. 240 subdomains hosted by Azure hacked to spread malware.Continue readingMalicious Office 365 OAuth apps part of phishing attacks, Clubillion leaks millions of users data, and more

Categories
BEC Cyber Security DDoS MaaS Malware Phishing Ransomware RAT Scam Trojan Vulnerability

BEC gang Cosmic Lynx associated with 200 campaigns, Google Play hosts app delivering Cerebrus, and more

Major cybersecurity events on 8th July 2020 (Evening Post): German authorities seize BlueLeaks server, after it provided access to US police departments internal documents. Keeper threat group compromises 57o e-commerce sites, profiting around $7 million from it.Continue readingBEC gang Cosmic Lynx associated with 200 campaigns, Google Play hosts app delivering Cerebrus, and more

Categories
Adware Bug CVE Cyber Security Malware Skimming Vulnerability

Facebook, Google, Twitter pause reviews of Hong Kong data requests, Purple Fox adds two Microsoft exploits to arsenal, and more

Major cybersecurity events on 7th July 2020 (Morning Post): Adware targets Android users, Kaspersky finds them to be undeletable files. Credit card skimmer targets websites hosted on Microsoft IIS servers, running ASP.NET. Hotels.com code generator flaw fixed. Continue readingFacebook, Google, Twitter pause reviews of Hong Kong data requests, Purple Fox adds two Microsoft exploits to arsenal, and more

Categories
Breach Bug CVE Cyber Security DDoS Hacking Malware Ransomware Spam Vulnerability

Delhi University data privacy breach, Try2Cry ransomware infects USB flash drives, spreads to Windows, and more

Major cybersecurity events on 6th July 2020 (Morning Post): Threat actors leverage Tor networks to carry out system compromise, data exfiltration, DoS attacks, reconnaissance. FakeSpy malware resurfaces, steals text messages, financial data, bank login information, app data, etc.Continue readingDelhi University data privacy breach, Try2Cry ransomware infects USB flash drives, spreads to Windows, and more

Categories
APT Breach Cyber Security Hacking Malware Phishing Ransomware Scam Vulnerability

Alina malware spotted using new trick to steal credit/debit card data, Hacker ransoms 22,900 MongoDB databases, and more

Major cybersecurity events on 2nd July 2020 (Evening Post): Federal Reserve issues advisory on how to mitigate payment fraud using synthetic identity accounts. Hakbit ransomware campaign targets specific European countries. FakeSpy campaign uses postal app to steal data. Continue readingAlina malware spotted using new trick to steal credit/debit card data, Hacker ransoms 22,900 MongoDB databases, and more

Categories
Breach Cyber Security Hacking Malware Phishing Scam Vulnerability

TikTok denies misuse of Indian user data, HMRC phishing scams target passport details, and more

Major cybersecurity events on 1st July 2020 (Morning Post): Verified Instagram account targets unsuspecting users with copyright infringement phishing scam. 25 Android apps removed from Play Store, following the theft of Facebook credentials. EvilQuest ransomware targets macOS users.Continue readingTikTok denies misuse of Indian user data, HMRC phishing scams target passport details, and more

Categories
Breach CVE Cyber Security DDoS Malware Ransomware Snooping Vulnerability

TikTok stops clipboard snooping after Apple exposes it, 5 million DeviceLock users’ data leaked, and more

Major cybersecurity events on 29th June 2020: CloudSEK researcher reports 40,000 Indiamart suppliers’ data. Aspire News App, domestic violence assistance app, suffers data breach. Hackers threaten to leak beverage firm Lion’s stolen files, following a ransomware attack. Continue readingTikTok stops clipboard snooping after Apple exposes it, 5 million DeviceLock users’ data leaked, and more

Categories
Cyber Security Phishing Ransomware Spearphishing TrickBot Vulnerability

Phishing campaign masquerades as QuickBooks invoices, Hakbit ransomware targets victims via Excel, and more

Major cybersecurity events on 24th June 2020 (Evening Post): Sodinokibi ransomware scan victim networks for credit card PoS software. Microsoft adds firmware protections to Windows. Nefilim targets organizations using unpatched Citrix remote-access technology.Continue readingPhishing campaign masquerades as QuickBooks invoices, Hakbit ransomware targets victims via Excel, and more