Hackers Use GitHub Servers for Cryptocurrency Mining
Cybercriminals have infiltrated the code-hosting platform’s server infrastructure to use its resources for illicit cryptocurrency mining. The information comes from a report published by The Record, whose team confirmed the story with a GitHub spokesperson. The electronic break-ins started in t
APT actors exploiting vulnerabilities in the Fortinet VPN operating system
The FBI and the U.S. Cybersecurity and Infrastructure Security Agency (CISA) have warned that APT (advanced persistent threat) nation-state actors are exploiting security vulnerabilities in the Fortinet cybersecurity operating system. According to the alert issued by these agencies, APT actors are s
Personal Data of 533 Million Facebook Users Leaked Online
Personal information belonging to more than 533 million Facebook users has been posted online in a low-level hacker forum. An anonymous user leaked this data in a forum post on Saturday. It contains compromised user information including email addresses, phone numbers, and physical addresses. The
Google Faces $5-Billion Lawsuit for Tracking Users in Incognito Mode
In yet another Google controversy, the tech giant has allegedly been tracking users and collecting their data even when they used Google Chrome’s private browsing version - Incognito Mode.  Google failed to dismiss the June 2020 class-action lawsuit claiming the company collects data from user
SolarWinds Hackers Obtain Emails of Top DHS Officials
According to a report by the Associated Press, attackers behind the SolarWinds hack gained access to email accounts of top officials from the Department of Homeland Security. Email accounts that were compromised include those belonging to the then-secretary Chad Wolf and the department’s cybersecu
Cyber criminals camouflage malware with Grammy-winning tracks
Songs by three Grammy Award-winning artists took the prize for the most popular hiding places for malware.   According to Kaspersky, more than 30,000 malware files were wrapped behind song titles from Ariana Grande, Taylor Swift and Post Malone. Malicious files bearing the names of these three
Tech executives become targets of swattings 
Police are struggling to find a solution to the growing number of Swatting incidents that are reportedly targeting tech giants and their wealthy executives.  Swatting is a harassment tactic that involves deceiving police with false reports of a violent crime inside a home hoping they deploy a he
Shlayer trojan now spreading through YouTube and Wikipedia
The adware-dropping Shlayer Trojan accounted for nearly 30% of all attacks on macOS devices throughout last year.  Researchers at Kaspersky Labs identified Shlayer as the most common threat to target its macOS userbase over the course of the last two years. The security firm said that one in ten
Microsoft’s customer service database leaked online
Microsoft exposed nearly 250 million customer records, spanning 14 years, by making the data accessible to anyone with a web browser.  Comparitech researchers discovered the massive batch of exposed data that contained customer support logs and other sensitive information, which could have been
Hacker leaks over 500,000 Telnet credentials for IoT devices
A hacker published a trove of credentials for more than 515,000 servers, IOT devices and routers in what is being described as one of the biggest leaks to date. The list, published on a popular hacking forum, exposes usernames, passwords, and IP addresses. The hacker, who himself runs a DDoS-f
Evil Rebranded: New Version of Satan Ransomware Resurfaces in China
The son of Satan has emerged on the scene in China in the form of a new ransomware virus. The malware dubbed 5ss5c is reportedly the rebranded version of the infamous rent-a-ransomware service, Satan.   Its creators offered Satan for tailor-made ransomware attacks by third parties. The malware
Australian bushfire donation site hit by data stealing malware
A website set up to collect donations for victims of Australia’s bushfires has fallen victim to a credit card skimming attack.  Researchers at Malwarebytes reported in a Twitter post that Magecart groups infected the site by implanting a card-skimming script on the checkout page of the website