Malware Attack on CircleCI Engineer’s Laptop Leads to Recent Security Incident

Leave a Comment / Cyber Attacks /

DevOps platform CircleCI revealed on Friday that unidentified threat actors hacked a worker’s laptop and used malware to obtain their two-factor authentication-backed credentials to access the company’s systems and data a month earlier. The “complex attack,” according to the CI/CD provider CircleCI, occurred on December 16, 2022, and the malware evaded detection by its anti malware. […]

Malware Attack on CircleCI Engineer’s Laptop Leads to Recent Security Incident Read More »

Rackspace Admits Play Ransomware Gang Was Behind Recent Breach

Leave a Comment / Cyber Attacks /

On Thursday, cloud services provider Rackspace acknowledged that the intrusion from last month was caused by the Play ransomware group. A previously unidentified security exploit was used by the security event, which happened on December 2, 2022, to acquire initial access to the Rackspace Hosted Exchange email system. The Texas-based business stated that “CVE-2022-41080 is

Rackspace Admits Play Ransomware Gang Was Behind Recent Breach Read More »

BitKeep Confirms Cyber Attack, Loses Over $9 Million in Digital Currencies

Leave a Comment / Cyber Attacks /

BitKeep, a decentralized multi-chain cryptocurrency wallet, announced a cyber attack on its Android app on Wednesday that allowed threat actors to spread fake copies of it in order to steal users’ digital money. In a “large-scale hacking event,” according to BitKeep CEO Kevin Como, “the altered APK caused the disclosure of user’s private keys and

BitKeep Confirms Cyber Attack, Loses Over $9 Million in Digital Currencies Read More »

Potential Wiretapping Bugs Found in Google Home Smart Speakers by Researchers

Leave a Comment / Vulnerabilities /

For identifying security flaws in Google Home smart speakers that could be used to install backdoors and convert them into wiretapping devices, a security researcher was given a bug prize of $107,500. The researcher, who goes by the name Matt Kunze, revealed the flaws in a technical write-up released this week. The flaws “allowed an

Potential Wiretapping Bugs Found in Google Home Smart Speakers by Researchers Read More »

Microsoft Receives a €60 million Fine from France for Using Advertising Cookies Without User Consent.

Leave a Comment / Data Breach /

A €60 million ($63.88 million) fine has been levied against Microsoft’s Ireland subsidiary by France’s privacy authority for placing advertising cookies on customers’ computers without getting their permission, a violation of EU data protection laws. Users of Microsoft’s Bing search engine did not have a “tool to refuse cookies as simply as accepting them,” according

Microsoft Receives a €60 million Fine from France for Using Advertising Cookies Without User Consent. Read More »

LastPass Acknowledges Serious Data Breach, Password Vaults Stolen

Leave a Comment / Cyber Attacks, Data Breach /

The LastPass security breach in August 2022 might have been more serious than the firm had initially revealed. The well-known password management service disclosed on Thursday that, using information stolen from the earlier break-in, malicious actors were able to steal a wealth of personal information belonging to its users, including their encrypted password vaults. Basic

LastPass Acknowledges Serious Data Breach, Password Vaults Stolen Read More »

FBI Files 6 Charges, Seizes 48 Domains Associated with DDoS-for-Hire Service Platforms

Leave a Comment / Cyber Attacks /

In an effort to lower the entrance barrier for malicious activity, the U.S. Department of Justice (DoJ) on Wednesday announced the seizure of 48 domains that provided services to carry out distributed denial-of-service (DDoS) cyberattacks on behalf of other threat actors. Additionally, six individuals were charged for their alleged ownership of the operation: Jeremiah Sam

FBI Files 6 Charges, Seizes 48 Domains Associated with DDoS-for-Hire Service Platforms Read More »