April 6, 2021

Not only the European Commission, but many other organizations of the European Union have been targeted by a cyberattack in March. A European Commission spokesperson confirmed that the European Commission, along with other European Union organizations, was hit by a cyberattack in March. The authorities did not disclose any details about the type of threats […]

The post European Commission and other institutions were hit by a major cyber-attack appeared first on Security Affairs.

Read More European Commission and other institutions were hit by a major cyber-attack

Fileless malware and cryptominer attack rates grew by nearly 900% and 25% respectively, while unique ransomware payloads plummeted by 48% in 2020 compared to 2019, according to WatchGuard. Q4 2020 also brought a 41% increase in encrypted malware detect…

Read More Massive increase in endpoint attacks, rising rate of encrypted malware and new exploits targeting IoT

Onfido announced it has been selected by Microsoft to enable fast and secure identity verification and onboarding for its Azure Active Directory (Azure AD) verifiable credentials. Azure AD verifiable credentials, now in public preview, provide an open …

Read More Onfido’s identity verification to power onboarding for Microsoft’s digital wallet for identity credentials

Ne’er-do-wells leaked personal data — including phone numbers — for some 553 million Facebook users this week. Facebook says the data was collected before 2020 when it changed things to prevent such information from being scraped from profiles. To my mind, this just reinforces the need to remove mobile phone numbers from all of your online accounts wherever feasible. Meanwhile, if you’re a Facebook product user and want to learn if your data was leaked, there are easy ways to find out.

Read More Are You One of the 533M People Who Got Facebooked?

On-premises SAP systems are targeted by threat actors within 72 hours after security patches are released, security SAP security firm Onapsis warns. According to a joint study published by Onapsis and SAP, on-premises SAP systems are targeted by threat actors within 72 hours after security patches are released. Threat actors perform reverse-engineering of the SAP […]

The post SAP systems are targeted within 72 hours after updates are released appeared first on Security Affairs.

Read More SAP systems are targeted within 72 hours after updates are released

China-linked APT group Cycldek is behind an advanced cyberespionage campaign targeting entities in the government and military sector in Vietnam. China-linked APT group LuckyMouse (aka Cycldek, Goblin Panda, Hellsing, APT 27, and Conimes) is targeting government and military organizations in Vietnam with spear-phishing. The threat actors are sending out spear-phishing messages to compromise diplomatic targets in Southeast […]

The post Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks appeared first on Security Affairs.

Read More Chinese Cycldek APT targets Vietnamese Military and Government in sophisticated attacks

A newspaper in Malaysia is reporting on a cell phone cloning scam. The scammer convinces the victim to lend them their cell phone, and the scammer quickly clones it. What’s clever about this scam is that the victim is an Uber driver and the scamm…

Read More Phone Cloning Scam

Security researcher implemented a service to verify if your mobile number is included in the recent Facebook data leak. Security researcher Yaser Alosefer developed a new tool to help users to determine if their mobile numbers are included within the recent Facebook data leak that impacted 553 million users of the social networking giant. The […]

The post This service allows checking if your mobile is included in the Facebook leak appeared first on Security Affairs.

Read More This service allows checking if your mobile is included in the Facebook leak

Mark Zuckerburg’s personal data gets leaked in the Facebook breach, LG is hanging up its mobile business unit internationally, and emojis are making their way into the professional pandemic workplace. 

The post Hashtag Trending, April 6, 2021 – Zuckerberg’s personal info leaked; LG hangs up smartphone biz; Emojis in the workplace first appeared on IT World Canada.

Read More Hashtag Trending, April 6, 2021 – Zuckerberg’s personal info leaked; LG hangs up smartphone biz; Emojis in the workplace

Experts discovered a vulnerability in the popular CMS Umbraco that could allow low privileged users to escalate privileges to “admin.” Security experts from Trustwave have discovered a privilege escalation vulnerability in the popular website CMS, Umbraco. The vulnerability affects an API endpoint that fails to properly check the user’s authorization prior to returning results found to […]

The post Experts discovered a privilege escalation issue in popular Umbraco CMS appeared first on Security Affairs.

Read More Experts discovered a privilege escalation issue in popular Umbraco CMS