Category: security
Ransomware cost US victims $16.6 billion in 2024, FBI warns
FBI report reveals a serious rise in ransomware in 2024 Ransomware attacks rose 9% in 2024 Cryptocurrency fraud also claimed more victims than ever The FBI has released a report outlining just how costly ransomware attacks were in 2024, with attacks once again rising to claim more victims than ever.…
Read More
Asus patches security flaw which could have bricked servers
American Megatrends International released a fix for MegaRAC Baseboard Management Controller (BMC) Different OEMs are now implementing the fix in their products ASUS released a patch to address the bug Asus has patched a security flaw which could have bricked servers. The flaw is tracked as CVE-2024-54085, and has the…
Read More
A huge online fraud operation is hijacking WordPress sites to send out 1.4 billion ad requests per day
Researchers found a huge ad fraud scheme called Scallyway The scheme monetizes pirated sites through a series of redirects At its peak, there were 1.4 billion daily requests Cybersecurity researchers from HUMAN have spotted a major ad fraud operation that leverages people’s interest in pirated content to generate ad revenue…
Read More
Ripple cryptocurrency software library hit by major security issue, wallets under threat
A malicious actor used a compromised Ripple dev account to publish commits to NPM The commits would grant access to people’s crypto wallets They were downloaded around 450 times before being pulled down A JavaScript library recommended by a major cryptocurrency company has been hijacked, with users now being at…
Read More
Major electronics store sees millions of user records allegedly leaked online
A database stolen in a 2024 ransomware attack is being offered for free It was grabbed from the French retail company Boulanger Electroménager & Multimédia. It affects at least a million people Sensitive customer information stolen from a French electronics shop in 2024 has now surfaced online and is being…
Read More
North Korean hackers are using LinkedIn to entice developers to coding challenges – here’s what you need to know
Slow Pisces targets crypto developers with bad code disguised as stock analysis tools Malicious code hides in plain sight, using GitHub projects and YAML deserialization tricks Victims unknowingly install RN Loader and RN Stealer through rigged Python repositories A hacker group from North Korea known as Slow Pisces has launched…
Read More