Following research, identity proofing experts ID R&D have warned businesses that there has been a rise in the number of fraud attempts and cyberattacks leveraging deepfake technology, i.e. the use of AI-powered technology to create convincing videos of people. Research indicates that nearly half (42...
Security researchers have reported observing a threat actor using widespread, ongoing Google Ads campaigns to spread malware, steal passwords, and breach networks for ransomware attacks. It’s been reported that the ads feature websites for popular programs, like LightShot, Rufus, 7-Zip, FileZilla, LibreOffice, AnyDesk, Awesome Miner,...
PayPal has confirmed that nearly 35,000 users may have been affected following a data breach between December 6 and December 8, 2022. The suspected ‘credential stuffing’ attack may have meant that details like users’ names, addresses, Social Security numbers, tax ID numbers, and/or dates of...
It’s been reported that kernel-mode hardware drivers that have been certified (signed) by Microsoft's Windows Hardware Developer Program have been used maliciously in post-exploitation cyber attacks, i.e. where the attacker had already gained administrative privileges on compromised systems. The attacks have been linked to known ransomware...
Password app company LastPass has reported a second data breach that may be related to a previous breach in August where source code and some proprietary LastPass technical information were taken. The company has reported that in this most recent attack, a threat actor using information...
According to a Cybernews report, it has been alleged on a hacking community forum that 487 million WhatsApp user phone numbers from 84 countries, including the UK, are for sale online as part of a database which may have come from a breach. It’s been...
After analysis of 1,237 Google Chrome extensions available via the Chrome Web Store, researchers from data protection company Incogni concluded in a recent report that almost half (48.6 per cent) have a high or very high-risk impact. This means that they may be storing sensitive,...
Kaspersky has warned users about the dangers of malicious WhatsApp knockoff apps YoWhatsApp and WhatsApp Plus. Although both appear to offer the same functionalities as the real WhatsApp, they are reported to be able to download the Triada Trojan to smartphones, and steal legitimate WhatsApp’s...
Energy regulator Ofgem is warning consumers to beware of scam email messages claiming to offer discounts on energy bills. The phishing scam messages invite recipients to apply for the £400 "non-repayable discount" by following a link to a fake Ofgem phishing website to provide personal...
Cybersecurity company Kaspersky has reported that cyber criminals are using malware that can log into compromised YouTube accounts and upload a gaming video (disguised as a game cheat) which distributes malware. The videos prompt gamers to click on a link in the description and disable Windows...