Tag: security
Tech support scammers are forcing their fake phone numbers into real webpages
Scammers are using legitimate website to post their malicious ‘tech support’ phone numbers It’s called search parameter injection or reflected input vulnerability Attackers modify legitimate URLs with dodgy details Fake tech support scammers are injecting fake phone numbers into legitimate websites, with major companies like Apple, PayPal and Netflix affected…
Read More
Whole big mess – Krispy Kreme data breach sees data on over 160,000 people exposed
Over 160,000 people had their data leaked from Krispy Kreme The victims are mainly employees and their family members The perpetrator is still unknown Krispy Kreme has revealed exactly what details were exposed in the breach that hit the donut company in November 2024. 161,676 people were affected by the…
Read More
WordPress hackers are teaming up with commercial adtech firms to distribute malware to millions of users – here’s how to stay safe
Push notifications are now being used as malware delivery systems, and users are unknowingly subscribing to them Fake CAPTCHA prompts are now the gateway to persistent browser hijacks and phishing attacks WordPress sites are quietly hijacking users through invisible DNS commands and shared JavaScript payloads Recent investigations have revealed a…
Read More
Major US healthcare data provider hit by data breach – over 5 million patients affected, here’s what we know
Episource confirms cyberattack with patient data stolen The theft happened in late January 2025, and includes policy and MedicAid information Customers are urged to remain vigilant American healthcare data giant Episource has confirmed suffering a cyberattack in which it lost sensitive data on more than five million people. In a…
Read More
Over 16 billion records leaked in “unimaginable” major data breach – here’s what we know
Researchers found 30 databases housing 16 billion records online The records were most likely generated by infostealers Records come from a wide range of providers, from Apple to Google and many more Security researchers have reported discovering what could be the mother of all data breaches – a set of…
Read More
Jaw-dropping security flaws found in open source code could allow hackers to spirit away entire projects – here’s what devs need to know
Sysdig exposed how a trusted GitHub feature can silently hand control to attackers pull_request_target isn’t just risky, it’s a loaded weapon in the wrong hands Even top-tier security projects like MITRE’s can fall to simple GitHub workflow misconfigurations Experts have revealed several critical vulnerabilities in GitHub Actions workflows which could…
Read More