DeepSource Resets Logins After Employee Falls For Sawfish Phishing GitHub notified DeepSource earlier this month of detecting malicious activity related to the startup’s GitHub app after one of their employees fell victim to the Sawfish phishing campaign. DeepSource provides developers with automated static code analysis tools for GitHub, GitLab, and Bitbucket repositories that help Read more…
New ‘Meow’ Attack Has Deleted Almost 4,000 Unsecured Databases 07/25 Update added below. This post was originally published on July 22nd, 2020. Hundreds of unsecured databases exposed on the public web are the target of an automated ‘meow’ attack that destroys data without any explanation. The activity started recently by hitting Read more…
US Offers $2 Million For Info On Ukrainians Charged For SEC Hack The U.S. Department of State today announced rewards of up to $1 million for information that would lead to the arrest or conviction of Ukrainian nationals Artem Viacheslavovich Radchenko and Oleksandr Vitalyevich Ieremenko. The State Department is offering the Read more…
Critical SharePoint Flaw Dissected, RCE Details Now Available Details are now available for exploiting a critical security vulnerability that affects Microsoft SharePoint, increasing the risk of attacks on unpatched systems. A technical blog post this week explains how the bug works and how a low-privileged user can leverage it to Read more…
D-Link Blunder: Firmware Encryption Key Exposed In Unencrypted Image Security researchers have demonstrated a method to decrypt proprietary firmware images embedded in D-Link routers. Firmware is the piece of code that powers low-level functions on hardware devices. It is typically hard-coded within the read-only memory. Companies encrypt firmware images in their devices to prevent their reverse Read more…
Lazarus Hackers Deploy Ransomware, Steal Data Using MATA Malware A recently discovered malware framework known as MATA and linked to the North Korean-backed hacking group known as Lazarus was used in attacks targeting corporate entities from multiple countries since April 2018 for ransomware deployment and data theft. Among the targeted countries, security Read more…
Joker Android Malware Keeps Evading Google Play Store Defenses The threat actor behind the Joker Android malware has once again succeeded to successfully slip spyware infected apps onto the Play Store, Google’s official Android app store. Android applications infected with Joker malware, a spyware and premium dialer tool also known as Bread and Read more…
Companies Start Reporting Ransomware Attacks As Data Breaches Corporate victims are finally starting to realize that ransomware attacks are data breaches and have begun to notify employees and clients about data stolen data. A tactic used by almost all enterprise-targeting ransomware is to steal unencrypted files before encrypting a breached Read more…
DOJ Indict Fxmsp Hacker For Selling Access To Hacked Orgs, AV Firms The US Department of Justice has indicted a hacker known as ‘Fxmsp’ for hacking into and selling access to over three hundred organizations worldwide. In an indictment unsealed today, the DOJ is charging a citizen of Kazakhstan named Read more…
Personal Details Of More Than 3,000 People In Singapore Leaked Online The scam features a celeb in the victim’s location, like Bryan Wong in Singapore, saying he or she had made a fortune on a cryptocurrency investment platform. The personal records of 3,499 people in Singapore have been leaked online, Read more…
Let us help you out.
Singapore
7 Temasek Boulevard
#12-07, Suntec Tower One
Singapore 038987
Thailand
The Royal Place 1
2, 2/399 Mahatlek Luang 1 Alley, Lumphini, Pathum Wan, Bangkok 10330, Thailand
Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!
Click one of our contacts below to chat on WhatsApp
