91Articles
7Categories
2024-08-01Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 6[−]
1 Aug KEVApple Extends Zero-Day Patch to Older Macs, Urges Immediate UpdateApple has released a critical zero-day patch for older Macs running macOS Monterey 12.7.6, addressing an actively exploited vulnerability (CVE-2024-23296). The flaw in Apple’s RTKit real-time OS could allow unauthorized access to kernel memory.SECURITYONLINE.INFO
1 AugBitdefender Flaw Let Attackers Trigger Server-Side Request Forgery AttacksA recently discovered vulnerability in Bitdefender’s GravityZone Update Server has raised significant security concerns. Identified as CVE-2024-6980, this flaw allows attackers to execute server-side request forgery (SSRF) attacks, potentially compromising sensitive data an…GBHACKERS.COM
1 AugOver 300 Indian banks suffer payment disruption from ransomware attackC-Edge Technologies — a State Bank of India (SBI) and Tata Consultancy Services (TCS) joint venture — has suffered a ransomware attack, disrupting payment systems in nearly 300 small banks in India. The company, which caters to payment technologies and solutions to Indian banks i…CSOONLINE.COM
1 AugChromium: CVE-2024-7255 Out of bounds read in WebTransportThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
1 AugChromium: CVE-2024-6990 Uninitialized Use in DawnThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
1 AugChromium: CVE-2024-7256 Insufficient data validation in DawnThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 17[−]
1 AugDigiCert validation bug sets up 83,267 SSL certs for revokingMonday turned into a hectic day for some admins whose sites’ SSL/TLS certificates came from DigiCert. The company announced that it was revoking a small percentage of certificates that it discovered were lacking proper Domain Control Verification (DCV). DCV is the process through…CSOONLINE.COM
1 AugDashlane study reveals massive spike in passkey adoptionThe adoption of passkeys, a passwordless technology for authenticating user access to cloud-hosted applications, is continuing its upward trend, findings released this week from password manager maker Dashlane reveal. While passkey use overall is still nascent compared to passwor…CSOONLINE.COM
1 AugOAuth Vulnerability Exposes 1 Million Websites To XSS AttacksDespite robust defenses, Cross-Site Scripting (XSS) remains a persistent web vulnerability, as its exploitation has become increasingly challenging. A recent discovery highlights how integrating OAuth, a modern authentication standard, with vulnerable websites can resurrect XSS r…GBHACKERS.COM
1 Aug5 recommendations for acing the SEC cybersecurity rulesRules implemented in 2023 by the US Securities and Exchange Commission (SEC) regarding risk management, strategy, governance, and incident disclosure have raised important considerations for security leaders of public companies ranging from grasping the rules themselves to managi…CSOONLINE.COM
1 AugBegging for Bounties and More Info Stealer LogsPresently sponsored by: 1Password Extended Access Management: Secure every sign-in for every app on every device. TL;DR — Tens of millions of credentials obtained from info stealer logs populated by malware were posted to Telegram channels last month and used to shake down…TROYHUNT.COM
1 AugFacebook Ads Lead to Fake Websites Stealing Credit Card InformationFacebook users are the target of a scam e-commerce network that uses hundreds of fake websites to steal personal and financial data using brand impersonation and malvertising tricks. Recorded Future's Payment Fraud Intelligence team, which detected the campaign on April 17, 2024,…THEHACKERNEWS.COM
1 AugTycoon 2FA Phishing Kit Exploits Amazon SES to Steal User CredentialsThe attack begins with emails from an Amazon SES client containing empty PDF attachments and a message from Docusign. Despite some checks failing, the emails can still appear legitimate due to the compromised source.CYBERSECURITYNEWS.COM
1 AugVoice Over Wi-Fi Vulnerability Let Attackers Eavesdrop Calls And SMSUsers use Voice Over Wi-Fi (VoWiFi) quite frequently nowadays, as it’s a technology that enables them to make voice calls over a Wi-Fi network. This technology does so without relying on traditional cellular networks. Besides this, doing so allows the users to enhance their…GBHACKERS.COM
1 AugSecretive: Open-Source App for Storing and Managing SSH Keys in the Secure EnclaveSecretive is an open-source app that securely stores and manages SSH keys in the Secure Enclave for Macs. Storing keys in the Secure Enclave prevents copying or exporting by malicious users or malware, ensuring a higher level of security.HELPNETSECURITY.COM
1 AugDriving lessons: The kernel drivers in Sophos Intercept X AdvancedOperating in kernel-space is necessary, but risky – here’s how we do it in Sophos Intercept X AdvancedSOPHOS.COM
1 AugExploited Vulnerability Could Impact 20k Internet-Exposed VMware ESXi InstancesShadowserver has observed over 20,000 internet-accessible VMware ESXi instances impacted by an exploited vulnerability. The post Exploited Vulnerability Could Impact 20k Internet-Exposed VMware ESXi Instances appeared first on SecurityWeek .SECURITYWEEK.COM
1 AugCISA Releases Nine Industrial Control Systems AdvisoriesCISA released nine Industrial Control Systems (ICS) advisories on August 1, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-214-01 Johnson Controls exacqVision Client and exacqVision Server IC…CISA.GOV
1 AugOver 1 Million Domains at Risk of 'Sitting Ducks' Domain Hijacking TechniqueOver a million domains are susceptible to takeover by malicious actors by means of what has been called a Sitting Ducks attack. The powerful attack vector, which exploits weaknesses in the domain name system (DNS), is being exploited by over a dozen Russian-nexus cybercriminal ac…THEHACKERNEWS.COM
1 AugKey Advice for GRC Success: Jonathan Ruf's Top TipsIn this clip from the CISO Stories podcast, Jonathan Ruf shares essential advice for building a successful GRC program. He emphasizes the importance of knowing your data and sources, establishing strong processes, and integrating source systems as the foundation for your GRC solu…YOUTUBE.COM
1 AugWill the public nature of ransom payments change CISO strategy over whether to pay?Reports that a Fortune 50 company paid a $75 million ransom to the Dark Angels ransomware group back in March is raising questions about whether CISOs should revisit their ransomware decision processes. The payment, which Zscaler said is almost double the previous top ransom paid…CSOONLINE.COM
1 AugCrowdStrike failure: the beginning of the end of software without guarantees?Everyone knows now how a flawed update crashed 8.5 million computers running the Windows version of CrowdStrike’s Falcon cybersecurity software — but what does the failure of one company’s software testing regime mean for the IT industry as a whole? Experts and analysts say that …CSOONLINE.COM
1 AugKeeping your Android device safe from text message fraudPosted by Nataliya Stanetsky and Roger Piqueras Jover, Android Security & Privacy Team Cell-site simulators , also known as False Base Stations (FBS) or Stingrays, are radio devices that mimic real cell sites in order to lure mobile devices to connect to them. These devices are c…SECURITY.GOOGLEBLOG.COM
📢 SECURITY ADVISORIES 4[−]
1 AugInaugural Pentagon Cyber Policy Chief Nominee Sails Through Senate Armed Services CommitteeThe Senate Armed Services Committee has approved Michael Sulmeyer, the Army’s top digital adviser, as the inaugural assistant secretary of defense for cyber policy, paving the way for his nomination to the Senate floor for a vote.THERECORD.MEDIA
🔥 INCIDENT REPORTING 16[−]
1 AugStealer Logs Posted to Telegram - 26,105,473 breached accountsIn July 2024, info stealer logs with 26M unique email addresses were collated from malicious Telegram channels . The data contained 22GB of logs consisting of email addresses, passwords and the websites they were used on, all obtained by malware running on infected machines.HAVEIBEENPWNED.COM
1 AugGermany has accused China of Attack on Critical Infrastructure Since 2021Following extensive analyses and investigations by German security authorities, the Federal Government has officially attributed responsibility for a significant cyberattack on the Federal Office of Cartography and Geodesy (BKG) at the end of 2021 to Chinese state actors. The fed…GBHACKERS.COM
1 AugEvilProxy Phishing Kit Used in Over One Million Attacks MonthlyEvilProxy, known as the "LockBit of phishing," is a popular phishing kit used in over a million attacks each month. It allows cybercriminals to launch ransomware infections, steal data, and compromise business emails.THEREGISTER.COM
1 AugPersonal, Health Information Stolen From Pharma Giant CencoraPharma giant Cencora has confirmed that personal and health information was stolen in a February 2024 cyberattack. The post Personal, Health Information Stolen From Pharma Giant Cencora appeared first on SecurityWeek .SECURITYWEEK.COM
1 AugSecurity Flaws at UK Elections Agency Left Door Open for Chinese Hackers, Privacy Watchdog FindsThe UK's Electoral Commission was criticized by the Information Commissioner’s Office (ICO) for failing to protect the personal data of 40 million people from Chinese hackers in a cyberattack three years ago.THERECORD.MEDIA
1 AugMultiplayer.it - 503,957 breached accountsIn April 2024, over half a million records taken from the Italian gaming website Multiplayer.it were posted to a popular hacking forum . The impacted data included email addresses, usernames and salted MD5 password hashes.HAVEIBEENPWNED.COM
1 AugSome Companies Pay Ransomware Attackers Multiple Times, Survey FindsSome companies are paying ransomware attackers multiple times, with more than a third not receiving the decryption keys or getting corrupted keys after paying, according to a survey by Semperis.CYBERSECURITYDIVE.COM
1 AugTelegram-Controlled TgRat Trojan Now Targets Linux ServersTgRat Trojan, previously targeting Windows, now focuses on Linux, using Telegram to control infected machines. Discovered by Dr. Web, this RAT allows cybercriminals to exfiltrate data and execute commands.HACKREAD.COM
1 AugNew "Sitting Ducks" DNS Attack Lets Hackers Easy Domain Takeover, Data Breachessubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/sitting-ducks-dns-attack-domain-takeover-data-breaches/HACKREAD.COM
1 AugRansomware Attack On Service Provider Hits 300 Small Banks Across IndiaThe attack targeted C-Edge Technologies, a provider of banking systems for these banks. As a precaution, the National Payment Corporation of India (NPCI) has isolated these banks from the broader payment network to contain the attack.NDTV.COM
1 AugNew Android Banking Trojan BingoMod Steals Money, Wipes DevicesCybersecurity researchers have uncovered a new Android remote access trojan (RAT) called BingoMod that not only performs fraudulent money transfers from the compromised devices but also wipes them in an attempt to erase traces of the malware. Italian cybersecurity firm Cleafy, wh…THEHACKERNEWS.COM
1 AugResearchers Uncover Largest Ever Ransomware Payment of $75mSecurity researchers have uncovered the largest ransomware payment ever recorded, amounting to $75m, which was made to the Dark Angels group. This finding was revealed in Zscaler's ThreatLabz Ransom Report for 2024.INFOSECURITY-MAGAZINE.COM
1 Aug$75 million record-breaking ransom paid to cybercriminals, say researchersThe staggering sum of US $75 million has reportedly been paid to a ransomware gang in what is believed to be the largest known ransom payment made by a cyber attack victim since records began. Read more in my article on the Hot for Security blog.TRIPWIRE.COM
1 AugCencora confirms patient health info stolen in February attackPharmaceutical giant Cencora has confirmed that patients' protected health information and personally identifiable information (PII) was exposed in a February cyberattack. [...]BLEEPINGCOMPUTER.COM
1 AugTransatlantic Cable podcast episode 358 | Kaspersky official blogEpisode 358 has a North Korean hacker accidently getting hired by an American Cybersecurity firm, deepfake bullying woes for children, Grok is reading your tweets, and a data breach impacting 4.3 million people.KASPERSKY.COM
🕵️ THREAT INTELLIGENCE 27[−]
1 AugISC Stormcast For Thursday, August 1st, 2024 https://isc.sans.edu/podcastdetail/9078, (Thu, Aug 1st)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
1 AugBlack Hat Fireside Chat: Consumers demand secure mobile apps; it’s high time for brands to deliverTwo-plus decades of enduring wave after wave of mobile app malware and fraud has finally taken its toll on users. Now comes a global survey from Appdome and OWASP that reveals the vast majority of consumers are fed up. I … (more…) The post Black Hat Fireside Chat: Consumers…LASTWATCHDOG.COM
1 AugThreat Actor Impersonates Google via Fake Ads for AuthenticatorA threat actor recently impersonated Google through a fake ad for the Google Authenticator, a popular multi-factor authentication program. This resulted in innocent users unknowingly downloading malware or falling victim to phishing scams.MALWAREBYTES.COM
1 AugSocial Media Malvertising Campaign Promotes Fake AI Editor Website for Credential TheftWe uncovered a malvertising campaign where the threat actor hijacks social media pages, renames them to mimic popular AI photo editors, then posts malicious links to fake websites.TRENDMICRO.COM
1 AugCrowdStrike & Microsoft to Face Lawsuit from Delta Air Lines Following System CrashDelta Air Lines has enlisted the legal expertise of David Boies, chairman of Boies Schiller Flexner, to seek damages from cybersecurity firm CrowdStrike and tech giant Microsoft. This follows a catastrophic system crash on July 19 that resulted in the cancellation of thousands of…GBHACKERS.COM
1 AugMeta to Pay Texas $1.4bn for Unlawful Biometric Data CaptureMeta has agreed to pay the State of Texas $1.4 billion in a settlement for unlawfully capturing and using biometric data of millions of Texans. This is the largest privacy settlement in US history.INFOSECURITY-MAGAZINE.COM
1 AugDigiCert Revoking 83,000 Certificates of 6,800 CustomersDigiCert has started revoking 83,000 certificates impacted by a validation issue, but critical infrastructure customers are asking for more time. The post DigiCert Revoking 83,000 Certificates of 6,800 Customers appeared first on SecurityWeek .SECURITYWEEK.COM
1 AugBeware Of Malicious Crypto Management App That Drains Your WalletA forwarded Telegram video advertises heavily discounted, high-profile cryptocurrency projects, enticing viewers with links to a seemingly legitimate second-tier exchange and a concealed malicious link.  Through the use of this social engineering strategy, which is intended …GBHACKERS.COM
1 AugEducation in Secure Software DevelopmentThe Linux Foundation and OpenSSF released a report on the state of education in secure software development. …many developers lack the essential knowledge and skills to effectively implement secure software development. Survey findings outlined in the report show nearly one…SCHNEIER.COM
1 AugBingoMod Android RAT Wipes Devices After Stealing MoneyThe BingoMod Android trojan steals user information and communication and allows attackers to steal money via account takeover. The post BingoMod Android RAT Wipes Devices After Stealing Money appeared first on SecurityWeek .SECURITYWEEK.COM
1 AugHomebrew Security Audit Finds 25 VulnerabilitiesVulnerabilities in Homebrew could have allowed attackers to load executable code and modify binary builds, security audit finds. The post Homebrew Security Audit Finds 25 Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
1 AugKnowBe4 Named a Leader in the Summer 2024 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR) SoftwareWe are excited to announce that KnowBe4 has been named a leader in the Summer  2024 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR) for the PhishER platform for the 13th consecutive quarter!KNOWBE4.COM
1 AugCuckoo Spear – the latest Nation-state Threat Actor targeting Japanese companiessubmitted by kid to cybersecurity 1 points | 0 comments https://www.cybereason.com/blog/cuckoo-spearCYBEREASON.COM
1 AugUnmasking the SMS Stealer: Targeting Several Countries with Deceptive Appssubmitted by kid to cybersecurity 1 points | 0 comments https://www.zimperium.com/blog/unmasking-the-sms-stealer-targeting-several-countries-with-deceptive-apps/ZIMPERIUM.COM
1 AugEndari Emerges From Stealth With Cybersecurity Solutions for StartupsEndari has emerged from stealth mode with cybersecurity solutions for SMBs and startups and with $4 million in seed funding. The post Endari Emerges From Stealth With Cybersecurity Solutions for Startups appeared first on SecurityWeek .SECURITYWEEK.COM
1 AugTgRAT Malware Attacking Linux Servers with New VariantA new variant of the TgRAT malware, initially discovered in 2022 targeting Windows systems, has been observed attacking Linux servers. This evolution marks a significant shift in the malware’s capabilities, broadening its potential impact on a wider range of systems. The Li…GBHACKERS.COM
1 AugHackers Distributing Malicious Python Packages via Popular Developer Q&A PlatformIn yet another sign that threat actors are always looking out for new ways to trick users into downloading malware, it has come to light that the question-and-answer (Q&A) platform known as Stack Exchange has been abused to direct unsuspecting developers to bogus Python packa…THEHACKERNEWS.COM
1 AugPK Fail - John Loucaides - PSW #837John is one of the foremost experts in UEFI and joins us to talk about PK Fail! What happens when a vendor in the supply chain accidentally loses a key? It's one of the things that keeps me up at night. Well, now my nightmare scenario has come true as a key has been leaked. Learn…YOUTUBE.COM
1 AugAlex Stamos Named CISO at SentinelOneLongtime security executive Alex Stamos tapped by SentinelOne to manage its security engineering and operations teams. The post Alex Stamos Named CISO at SentinelOne appeared first on SecurityWeek .SECURITYWEEK.COM
1 AugIt's Always DNS - PSW #837Hacking traffic lights (for real this time), the Docker API strikes again, access Github deleted data, using EDR to elevate privileges on Windows, computers I need in my life, failed experiments and Raspberry PI access points, sitting ducks and TuDoor - its always DNS times 2, nu…YOUTUBE.COM
1 AugCyber A.I. Group Announces LOI to Acquire Prominent North American Cyber Security CompanyCyber A.I. Group, Inc., an emerging growth global cybersecurity, A.I. and IT services company, announced today that it has executed a Letter of Intent (LOI) to acquire a prominent North American-based cybersecurity firm. The announcement was made by Walter Hughes, CEO of Cyber A.…GBHACKERS.COM
1 AugSitting Ducks DNS attacks let hackers hijack over 35,000 domainsThreat actors have hijacked more than 35,000 registered domains in so-called Sitting Ducks attacks that allow claiming a domain without having access to the owner's account at the DNS provider or registrar. [...]BLEEPINGCOMPUTER.COM
1 AugHackers abuse free TryCloudflare to deliver remote access malwareResearchers are warning of threat actors increasingly abusing the Cloudflare Tunnel service in malware campaigns that usually deliver remote access trojans (RATs). [...]BLEEPINGCOMPUTER.COM
1 AugConvicted Cybercriminals Included in Russian Prisoner SwapTwo Russians serving time for insider trading, computer hacking and credit card theft were released in a prisoner swap deal with Moscow. The post Convicted Cybercriminals Included in Russian Prisoner Swap appeared first on SecurityWeek .SECURITYWEEK.COM
1 AugStackExchange abused to spread malicious PyPi packages as answersThreat actors uploaded malicious Python packages to the PyPI repository and promoted them through the StackExchange online question and answer platform. [...]BLEEPINGCOMPUTER.COM
1 AugSecurity Risk Advisors Announces Launch of VECTR Enterprise EditionSecurity Risk Advisors (SRA) announces the launch of VECTR Enterprise Edition, a premium version of its widely-used VECTR platform for purple teams and adversary management program reporting and benchmarking. VECTR Enterprise is designed to support organizations that want to matu…GBHACKERS.COM
1 AugChrome: Essential Tools for Secure BrowsingIn 2024, the safety of the internet has become paramount. Let’s be clear—we do not want cybercriminals to steal our private data. One of the ways to stay safe and sound online is by using a VPN.  So, what is a VPN? It’s a virtual private network that secures web …GBHACKERS.COM
🌐 CYBER THREAT LANDSCAPE 6[−]
1 AugBeware of Fake AI Tools Masking a Very Real Malware ThreatAttackers disguise malicious tools as legitimate GenAI apps through phishing sites, web browser extensions, fake apps on mobile stores, and malicious ads on social media.WELIVESECURITY.COM
1 AugLineaje Secures $20 Million in Funding To Address Software Supply Chain IssuesLineaje has raised $20 million in a Series A funding round, led by Prosperity7 Ventures, Neotribe, and Hitachi Ventures, with Tenable Ventures also participating. This investment highlights the increasing demand for software supply chain security.HELPNETSECURITY.COM
1 AugGoogle Chrome Adds App-Bound Encryption to Protect Cookies from MalwareGoogle has announced that it's adding a new layer of protection to its Chrome browser through what's called app-bound encryption to prevent information-stealing malware from grabbing cookies on Windows systems. "On Windows, Chrome uses the Data Protection API (DPAPI) which protec…THEHACKERNEWS.COM
1 AugSMS Stealer Targeting Several Countries with Over 100,000 Malicious Android AppsThe malware was found monitoring OTP messages from over 600 global brands, with victims detected in 113 countries, including India, Russia, Brazil, Mexico, the U.S., Ukraine, Spain, and Turkey.ZIMPERIUM.COM
1 AugObfuscation: There Are Two Sides To EverythingHow to detect and prevent attackers from using these various techniques Obfuscation is an important technique for protecting software that also carries risks, especially when used by malware authors. In this article, we examine obfuscation, its effects, and responses to it. What …THEHACKERNEWS.COM
1 AugInnovative Approach Promises Faster Bug FixesBirgit Hofer and Thomas Hirsch from TU Graz have developed a new approach to speed up software bug fixes. By identifying bottlenecks in fault localization, they created a scalable solution using NLP and metrics to analyze code for faults.HELPNETSECURITY.COM
📡 INFOSEC NEWS 15[−]
1 AugHow to guard against fake Wi-Fi hotspots on planes and at airports | Kaspersky official blogEvil twin Wi-Fi attacks are taking off at airports and on airplanes. Time to update our security tips!KASPERSKY.COM
1 AugMicrosoft Confirms Azure, 365 Outage Linked to DDoS AttackMicrosoft confirmed that an eight-hour outage on Tuesday affecting its Azure portal, Microsoft 365, and Microsoft Purview services was caused by a DDoS attack. The company mentioned that its response to the outage may have worsened the impact.CYBERSECURITYDIVE.COM
1 AugBEC Attacks Surge 20% Annually Thanks to AI ToolingA report by Vipre Security Group, based on data from processing 1.8 billion emails, revealed that 49% of blocked spam emails were BEC attacks, with CEOs, HR, and IT being common targets. The study also found that 40% of BEC attacks were AI-generated.INFOSECURITY-MAGAZINE.COM
1 AugInsecure File-Sharing Practices in Healthcare Put Patient Privacy at RiskHealthcare organizations are jeopardizing patient privacy due to insecure file-sharing practices, according to a report by Metomic. The study found that 25% of publicly shared files in healthcare contain Personally Identifiable Information (PII).HELPNETSECURITY.COM
1 AugUS Senate Passes Landmark Bill Protecting Children’s Online Safety and PrivacyThe Kids Online Safety and Privacy Act (KOPSA) combines two bills to enhance protections for children under 17, prohibiting targeted advertising, requiring consent for data collection, and limiting exposure to harmful content.THERECORD.MEDIA
1 AugDigiCert Mass-Revoking TLS Certificates Due to Domain Validation BugDigiCert discovered a bug in how domain ownership was verified, leading to the mass revocation of SSL/TLS certificates. Approximately 0.4% of domain validations conducted between August 2019 and June 2024 are affected.BLEEPINGCOMPUTER.COM
1 AugFBI warns of scammers posing as crypto exchange employeesThe Federal Bureau of Investigation (FBI) warns of scammers posing as employees of cryptocurrency exchanges to steal funds from unsuspecting victims. [...]BLEEPINGCOMPUTER.COM
1 AugUK takes down major 'Russian Coms' caller ID spoofing platformThe United Kingdom's National Crime Agency (NCA) has shut down Russian Coms, a major caller ID spoofing platform used by hundreds of criminals to make over 1.8 million scam calls. [...]BLEEPINGCOMPUTER.COM
1 AugTracking Proxy Scans with IPv4.Games, (Thu, Aug 1st)Today, I saw a proxy scan that was a little bit different: ISC.SANS.EDU
1 AugTwilio kills off Authy for desktop, forcibly logs out all usersTwilio has finally killed off its Authy for Desktop application, forcibly logging users out of the desktop application. [...]BLEEPINGCOMPUTER.COM
1 AugTech support scam ring leader gets 7 years in prison, $6M fineThe leader of a tech support fraud scheme was sentenced to seven years in prison after tricking at least 6,500 victims and generating more than $6 million. [...]BLEEPINGCOMPUTER.COM