UEFI Firmware Vulnerabilities Affect At Least 25 Computer Vendors Researchers from firmware protection company Binarly have discovered critical vulnerabilities in the UEFI firmware from InsydeH2O used by multiple computer vendors such as Fujitsu, Intel, AMD, Lenovo, Dell, ASUS, HP, Siemens, Microsoft, and Acer. UEFI (Unified Extensible Firmware Interface) software is an Read more…
FBI Warns of Fake Job Postings Used to Steal Money, Personal Info Scammers are trying to steal job seekers’ money and personal information through phishing campaigns using fake advertisements posted on recruitment platforms. The warning was published today as a public service announcement (PSA) on the Bureau’s Internet Crime Complaint Center (IC3). “The Read more…
Malicious CSV Text Files Used to Install BazarBackdoor Malware A new phishing campaign is using specially crafted CSV text files to infect users’ devices with the BazarBackdoor malware. A comma-separated values (CSV) file is a text file containing lines of text with columns of data separated by commas. In many cases, Read more…
Cloudflare Launches a Paid Public Bug Bounty Program Cloudflare, an American company focused on web infrastructure and website security, has announced the launch of a new public bug bounty program. “Today we are launching Cloudflare’s paid public bug bounty program,” said Rushil Shah, a Product Security Engineer at Cloudflare. “We Read more…
A Data Protection Officer in Singapore (DPO) is more than just a mandate. Having one means having a reliable partner to ensure that your organisation is compliant to the PDPA and data protection requirements.
Telco Fined €9 million for Hiding Cyberattack Impact from Customers The Greek data protection authority has imposed fines of 5,850,000 EUR ($6.55 million) to COSMOTE and 3,250,000 EUR ($3.65 million) to OTE, for leaking sensitive customer communication due to a cyberattack. As the agency says in an announcement, COSMOTE infringed at least Read more…
Microsoft Defender Now Detects Android and iOS Vulnerabilities Microsoft says threat and vulnerability management support for Android and iOS has reached general availability in Microsoft Defender for Endpoint, the company’s enterprise endpoint security platform. “With this new cross-platform coverage, threat and vulnerability management capabilities now support all major device platforms Read more…
Cyberspies Linked to Memento Ransomware Use New PowerShell Malware An Iranian state-backed hacking group tracked as APT35 (aka Phosphorus or Charming Kitten) is now deploying a new backdoor called PowerLess and developed using PowerShell. The threat group also used the previously unknown malware to deploy additional modules, including info stealers and keyloggers, according Read more…
Powerful New Oski Variant ‘Mars Stealer’ Grabbing 2FAs and Crypto A new and powerful malware named ‘Mars Stealer’ has appeared in the wild, and appears to be a redesign of the Oski malware that shut down development abruptly in the summer of 2020. Mars Stealer is an information-stealing malware that steals data Read more…
British Council Exposed More than 100,000 Files with Student Records More than 100,000 files with student records belonging to British Council were found exposed online. An unsecured Microsoft Azure blob discovered on the internet by a cybersecurity firm revealed student names, IDs, usernames and email addresses, and other personal information. British Council promotes the Read more…
Let us help you out.
Singapore
7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987
Thailand
The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand
Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!
Click one of our contacts below to chat on WhatsApp
