Category: security
Fake PDF converters are spreading malware to steal user information and worse – here’s how to stay secure
Fake PDF converters are tricking users with cloned sites and fake CAPTCHAs PowerShell command installs malware that steals browser and crypto wallet data Attackers use realistic designs and social engineering to avoid detection Cybercriminals are using fake PDF converters to install powerful malware on victims’ systems, experts have warned. Research…
Read More
Beware, hackers can apparently now send phishing emails from “[email protected]”
Crooks are abusing Google’s notification system to bypass email protection Through OAuth apps, they are able to generate convincing phishing emails The campaign also uses sites.google.com Researchers have discovered a clever and elaborate phishing scheme that abused Google’s services to trick people into giving away their credentials for the platform.…
Read More
A Microsoft Entra security update is locking users out of their accounts
Some Entra ID accounts were being flagged as having compromised credentials Seems it was just Microsoft “inadvertently generat[ing] [false] alerts” However, users were getting different explanations from Microsoft Windows administrators have been reporting mass account lockouts across various organizations following a Microsoft Entra ID update. Many believe these were false…
Read More
Cisco Webex security flaw could let hackers hijack your system via a meeting invite
Cisco found and fixed three vulnerabilities, including a high-severity one The high-severity issue was found in the Cisco Webex app It allowed criminals to run commands remotely Cisco has patched a high-severity vulnerability in its Webex video conferencing platform which allowed threat actors to mount remote code execution (RCE) attacks…
Read More
ASUS reveals critical security flaw affecting AiCloud routers, so patch now
ASUS patches a 9.2-rated security flaw in certain routers The flaw stems from AiCloud, a personal cloud server feature There’s no evidence of abuse yet, but users should be wary ASUS has released a fix for a critical-severity vulnerability affecting routers with AiCloud enabled which could allow threat actors to…
Read More
$25 software kits to steal your personal details are freely on sale on dark web — here’s how to remain safe
Phishing kits sold for $25 give low-skilled criminals powerful tools to steal data Drag-and-drop website builders and fake emails make launching professional scams easy Phishing-as-a-service platforms help criminals run large attack campaigns The world of cybercrime is ever-evolving, and phishing attacks are becoming easier to carry out. New research by…
Read More