Security experts fret over hacking of British Army’s social media
The Bitish Army's Twitter and YouTube accounts have been advertizing NFTs over the weekend.
The cybersecurity of the British Army was questioned by experts after its social media accounts were compromised on Sunday, according to a report in ITPro.
The British Army’s Twitter and YouTube acc... Read more
Bug bounty platform employee dupes customers
An employee of bug bounty platform HackerOne copied the work of hackers to get paid by companies. Internal threats are a tricky issue for security providers.
HackerOne was founded in 2012. The organization develops a bug bounty platform. Companies sign up and pay hackers to find vulnerabilities... Read more
Fraudulent Android apps can disable wifi and sign contracts
A new generation of Android scamware employs several tricks to register users to costly services.
According to Microsoft, Android malware developers have stepped up their billing fraud games with applications that disable WiFi connections, covertly subscribe individuals to costly wireless servic... Read more
‘Personal data of 1 billion Chinese residents for sale’
An anonymous user of a hacker forum claims to hold the personal data of 1 billion Chinese citizens. Although proof is lacking, enterprises are upping their security measures.
The user goes by the forum name of 'ChinaDan'. In a recent post, the user offered 23 terabytes of data for 10 bitcoin (ap... Read more
Azure AD update adds time-limited credentials
Microsoft is allowing Azure Active Directory (Azure AD) administrators to generate time-limited credentials. These credentials can be used for passwordless authentication and restoring accounts after losing credentials or FIDO2 keys.
The Temporary Access Pass (TAP) functionality can be used for ... Read more
Google blocks over thirty malicious domains used by hackers
Google blocked over thirty malicious domains connected to cybercriminal groups in Russia, UAE and India.
The domains actively targeted AWS, Gmail and many other personal accounts to perform corporate espionage against organizations and human activists.
According to the threat analysis group a... Read more
New SessionManager malware attacks Exchange servers
Kaspersky researchers discovered a new malware variant that attacks Microsoft Exchange servers. 'SessionManager' installs a backdoor on affected systems. According to the researchers, mitigation is a difficult process.
Kaspersky notes that SessionManager has been active for 15 months. Some 34 s... Read more
Google Workspace now alerts key changes to administrator accounts
Alert Center will inform administrators of sensitive and critical changes to configurations of Google Workspace.
Previously known as G Suite, Google Workspace has been upgraded to inform administrator of sensitive alterations to accounts. The new alerts are accessible to all Google Workspace use... Read more
Microsoft patches vulnerability in Service Fabric
Microsoft patched a serious vulnerability in Service Fabric. The threat was discovered by security specialists from Unit42 of Palo Alto Networks.
The vulnerability ('FabricScape') allows attacks on all services and applications that Service Fabric supports. These include Azure Service Fabric, Az... Read more
Google Cloud Armor adds rate limiting to combat DDoS attacks
In light of recent attacks against cloud-based users, Google added new capabilities to Cloud Armor.
In a recent blog post, Google stated that modern cyberattacks use increasingly comprehensive techniques like volumetric floods, bot-based attacks, API abuse and DDoS attacks.
Google Cloud Armor... Read more