Bugs in gym management software let hackers change user workout results Security researchers found vulnerabilities in the Wodify fitness platform that allows an attacker to view and modify user workouts from any of the more than 5,000 gyms that use the solution worldwide. User data (e.g. personal, workout, payments) may currently Read more…
Vice Society ransomware joins ongoing PrintNightmare attacks The Vice Society ransomware gang is now also actively exploiting Windows print spooler PrintNightmare vulnerability for lateral movement through their victims’ networks. PrintNightmare is a set of recently disclosed security flaws (tracked as CVE-2021-1675, CVE-2021-34527, and CVE-2021-36958) found to affect the Windows Print Spooler service, Windows print Read more…
GitHub Deprecates Account Passwords For Authenticating Git Operations GitHub has announced today that account passwords will no longer be accepted for authenticating Git operations starting tomorrow. This change was first announced last year, in July, when GitHub said that authenticated Git operations would require using an SSH key or token-based authentication. GitHub also deprecated Read more…
Microsoft: Evasive Office 365 Phishing Campaign Active Since July 2020 Microsoft says that a year-long and highly evasive spear-phishing campaign has targeted Office 365 customers in multiple waves of attacks starting with July 2020. The ongoing phishing campaign lures targets into handing over their Office 365 credentials using invoice-themed XLS.HTML Read more…
Notorious AlphaBay Darknet Market Comes Back to Life The AlphaBay darkweb market has come back to life after an administrator of the original project relaunched it over the weekend. At the same time, the admin announced plans for setting up a platform for darknet markets to set up shop with Read more…
Ukraine Shuts Down Money Laundering Cryptocurrency Exchanges The Security Service of Ukraine (SBU) took down a network of cryptocurrency exchanges used to anonymize transactions since the beginning of 2021. Over 1,000 “customers” used the clandestine exchanges to launder funds received from Russian electronic payments processors, including Yandex.Money, Qiwi, and Webmoney. Read more…
Accenture Confirms Hack After LockBit Ransomware Data Leak Threats Accenture, a global IT consultancy giant has allegedly been hit by a ransomware cyberattack from the LockBit ransomware gang. Accenture is an IT giant known to serve a wide range of industries including automobiles, banks, government, technology, energy, telecoms, and many Read more…
New AdLoad Malware Variant Slips Through Apple’s XProtect Defenses A new AdLoad malware variant is slipping through Apple’s YARA signature-based XProtect built-in antivirus to infect Macs as part of multiple campaigns tracked by cybersecurity firm SentinelOne. AdLoad is a widespread trojan targeting the macOS platform since at least since late 2017 and used to deploy various Read more…
Kaseya’s Universal REvil Decryption Key Leaked on a Hacking Forum The universal decryption key for REvil’s attack on Kaseya’s customers has been leaked on hacking forums allowing researchers their first glimpse of the mysterious key. On July 2nd, the REvil ransomware gang launched a massive attack on managed service providers worldwide by Read more…
Crytek Confirms Egregor Ransomware Attack, Customer Data Theft Game developer and publisher Crytek has confirmed that the Egregor ransomware gang breached its network in October 2020, encrypting systems and stealing files containing customers’ personal info later leaked on the gang’s dark web leak site. The company acknowledged the attack in Read more…
Let us help you out.
Singapore
7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987
Thailand
The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand
Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!
Click one of our contacts below to chat on WhatsApp
