🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

300 restaurants and at least 50,000 payment cards compromised by two separate campaigns against MenuDrive, Harbortouch and InTouchPOS services. threatpost.com/magecart-resta…

Also known as the Atlantis Cyber-Army, the emerging organization has an enigmatic leader and a core set of admins that offer a range of services, including exclusive data leaks, #DDoS and RDP. threatpost.com/hackers-cyber-…

The CISA has seen a resurgence of the #malware targeting a range of verticals and critical infrastructure organizations by exploiting RDP, firewall vulnerabilities. threatpost.com/zeppelin-ranso…

Twitter is blasted for #security and #privacy lapses by the company’s former head of security who alleges the social media giant’s actions amount to a national security risk. threatpost.com/twitter-whistl…

An insufficient validation input flaw, one of 11 patched in an update this week, could allow for arbitrary code execution and is under active attack. threatpost.com/google-patches…

Researcher shows how Instagram and Facebook’s use of an in-app browser within both its iOS apps can track interactions with external websites. threatpost.com/facebook-ios-t…

Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed. threatpost.com/cybercriminals…

Instances of #phishing attacks leveraging the Microsoft brand increased 266 percent in Q1 compared to the year prior. threatpost.com/popular-bait-i…

Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack. threatpost.com/iphone-users-u…

Four newly discovered attack paths could lead to PII exposure, account takeover, even organizational data destruction. threatpost.com/risks-okta-sso…

Researcher shows how Instagram and Facebook’s use of an in-app browser within both its iOS apps can track interactions with external websites. threatpost.com/facebook-ios-t…

Lockbit is by far this summer’s most prolific #ransomware group, trailed by two offshoots of the Conti group. threatpost.com/ransomware-att…

Over 130 companies tangled in sprawling #phishing campaign that spoofed a multi-factor authentication system. threatpost.com/0ktapus-victim…

Fake #travel reservations are exacting more pain from the travel weary, already dealing with the misery of canceled flights and overbooked hotels. threatpost.com/reservation-li…

The incident disrupted corporate IT systems at one company while attackers misidentified the victim in a post on its website that leaked stolen data. threatpost.com/water-supplier…

Attackers are spoofing the widely used #cryptocurrency exchange to trick users into logging in so they can steal their credentials and eventually their funds. threatpost.com/phishers-2fa-c…

Twitter is blasted for #security and #privacy lapses by the company’s former head of security who alleges the social media giant’s actions amount to a national security risk. threatpost.com/twitter-whistl…

Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool. threatpost.com/watering-hole-…

2.5 million people were affected, in a breach that could spell more trouble down the line. threatpost.com/student-loan-b…

Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed. threatpost.com/cybercriminals…