LATEST NEWS
Amazon blocked 1,800 employment attempts by North Korean agents
Amazon has intercepted over 1,800 attempts by suspected North Korean operatives to fraudulently secure remote IT roles at the …
Trust Wallet suffers supply chain compromise, millions in crypto stolen
Trust Wallet has acknowledged a critical security incident affecting version 2.68 of its browser extension, following mounting …
Stolen crypto from 2022 LastPass breach enables multi-year theft campaign
TRM Labs has traced more than USD 35 million in cryptocurrency thefts linked to encrypted vault backups stolen in the 2022 …
France fines Nexpublica €1.7M for failure to secure sensitive data
France’s data protection authority (CNIL) has imposed a €1.7 million fine on Nexpublica France for inadequate security measures …
US bans foreign-made consumer drone products over security concerns
The US Federal Communications Commission (FCC) has officially added foreign-manufactured drones and their critical components …
NPM registry abused in targeted Microsoft phishing campaign
A targeted spearphishing campaign has abused the npm package registry as a long-term hosting platform for credential-stealing …
Cyberattack cripples La Poste and La Banque Postale services across France
A major disruption affecting France’s national postal and banking services has been traced to a suspected distributed …
TP-Link Tapo C200 IP cameras vulnerable to critical pre-auth exploits
A security researcher has disclosed several critical vulnerabilities in TP-Link's Tapo C200 home surveillance camera, revealing …
Fake Chrome VPN extensions hijack traffic and steal user credentials
Two malicious Chrome extensions posing as VPN tools under the name Phantom Shuttle (幻影穿梭) have been uncovered by Socket’s …
Apple fined €98.6M in Italy for anti-trust abuse via privacy rules
Italy's competition authority has fined Apple over €98.6 million for abusing its dominant market position through privacy rules …
Anna's Archive releases massive 300TB Spotify music scrape
The volunteer-run project Anna's Archive has announced the creation of a massive open-access backup of Spotify's metadata and …
Breach at University of Phoenix exposed data of 3.5 million people
The University of Phoenix has confirmed that a cybersecurity breach resulting from the exploitation of a zero-day vulnerability …
Malicious WhatsApp API library NPM package caught stealing messages
A malicious NPM package masquerading as a WhatsApp API library has been discovered exfiltrating users' messages, credentials, …
Mullvad unveils GotaTun, its own Rust-based WireGuard implementation
Mullvad VPN has introduced GotaTun, a new Rust-based WireGuard implementation designed to improve stability, efficiency, and …
New spyware deployed on journalist's phone while in police custody
A joint investigation by RESIDENT.NGO and Reporters Without Borders (RSF) has exposed a state-sponsored Android spyware …
