Category: security
A million airport parking customers affected in huge data breach
A million Park’N Fly customers have had their sensitive data stolen after the company suffered a cyberattack. The news was confirmed in a data breach notification letter sent out by the company, which noted the threat actors accessed the company’s IT infrastructure in July 2024 using stolen VPN credentials. The…
Read More
This cybercrime group claims it can help hackers beat CAPTCHA locks
Cybersecurity experts have reported discovering an threat actor selling CAPTCHA-solving services to its customers. Arkose Cyber Threat Intelligence Research (ACTIR) says the Greasy Opal group is allegedly based in the Czech Republic and has, in the past decade and a half, sold all kinds of software, both legitimate and illegal.…
Read More
Microsoft Copilot could have been hacked by some very low-tech methods
Cybersecurity researchers have found a way to force Microsoft 365 Copilot to harvest sensitive data such as passwords, and send them to malicious third parties using “ASCII smuggling” The ASCII smuggling attack required three things: Copilot for Microsoft 365 reading the contents of an email, or an attached document; having…
Read More
Patelco confirms thousands of customers hit in ransomware attack
The ransomware attack on Patelco Credit Union appears to have meant the company lost sensitive data on hundreds of thousands of customers. The firm confirmed the news via a new filing submitted with the Maine Office of the Attorney General, stating 726,000 of its customers have had their data taken.…
Read More
Watch out — those movie downloads could actually just be vicious new Windows malware
Be careful when looking for pirated movies online – experts have warners many files are out there just to infect your Windows PCs with dangerous malware and infostealers. Cybersecurity researchers from Mandiant have recently discovered a new malware dropper, infecting victims with Lumma Stealer, Hijack Loader, and CryptBot. Lumma, for…
Read More
This sneaky Linux malware went undetected for years, and is using all-new attack tactics
A novel piece of Linux malware, which grants its operators the ability to remotely access the compromised device, has been hiding in plain sight for more than two years now, experts have warned. Stroz Friedberg, which discovered the malware and wrote an in-depth explainer, said the malware is called “sedexp”,…
Read More