Credit to Author: Ryan Maglaque| Date: Fri, 10 Jan 2025 00:00:00 +0000
Our research shows how attackers use platforms like YouTube to spread fake installers via trusted hosting services, employing encryption to evade detection and steal sensitive browser data.
Read moreCompanies are showing customers different prices for the same goods and services based what data they have on them, including details like their precise location or browser history.
Read more
Credit to Author: Lily Hay Newman, Matt Burgess| Date: Sun, 19 Jan 2025 05:39:26 +0000
TikTok is now unavailable in the United States—and getting around the ban isn’t as simple as using a VPN. Here’s what you need to know.
Read moreCredit to Author: Lily Hay Newman, Andy Greenberg| Date: Sat, 18 Jan 2025 11:30:00 +0000
Plus: New details emerge about China’s cyber espionage against the US, the FBI remotely uninstalls malware on 4,200 US devices, and victims of the PowerSchool edtech breach reveal what hackers stole.
Read more
Credit to Author: Eric Geller| Date: Fri, 17 Jan 2025 18:48:19 +0000
As the US faces “the worst telecommunications hack in our nation’s history,” by China’s Salt Typhoon hackers, the outgoing FCC chair is determined to bolster network security if it’s the last thing she does.
Read moreA cybercriminal campaign linked to Russia is deploying QR codes to access the WhatsApp accounts of high-profile targets like journalists, members…
Read more
Credit to Author: Lily Hay Newman| Date: Fri, 17 Jan 2025 00:14:45 +0000
A breach of AT&T that exposed “nearly all” of the company’s customers may have included records related to confidential FBI sources, potentially explaining the bureau’s new embrace of end-to-end encryption.
Read moreCredit to Author: Trend Micro Research| Date: Fri, 17 Jan 2025 00:00:00 +0000
Since the end of 2024, we have been continuously monitoring large-scale DDoS attacks orchestrated by an IoT botnet exploiting vulnerable IoT devices such as wireless routers and IP cameras.
Read moreCredit to Author: Microsoft Threat Intelligence| Date: Thu, 16 Jan 2025 17:00:00 +0000
In mid-November 2024, Microsoft Threat Intelligence observed the Russian threat actor we track as Star Blizzard sending their typical targets spear-phishing messages, this time offering the supposed opportunity to join a WhatsApp group. This is the first time we have identified a shift in Star Blizzard’s longstanding tactics, techniques, and procedures (TTPs) to leverage a […]
The post New Star Blizzard spear-phishing campaign targets WhatsApp accounts appeared first on Microsoft Security Blog.
Read more