Cybersecurity

Uber hacked

Posted: September 16, 2022 by Pieter Arntz Uber informed the public on Thursday it was responding to a cybersecurity incident after somebody breached its network. From what we have been able to find out so far, the attacker managed to compromise an employee’s access to the chat app Slack. The intruder may also have gained access to the […]

Uber hacked Read More »

Update now! Microsoft patches two zero-days

Posted: September 14, 2022 by Pieter Arntz The Microsoft September 2022 Patch Tuesday includes fixes for two publicly disclosed zero-day vulnerabilities, one of which is known to be actively exploited. Five of the 60+ security vulnerabilities were rated as “Critical”, and 57 as important. Two vulnerabilities qualify as zero-days, with one of them being actively exploited. Zero-days The first zero-day, CVE-2022-37969,

Update now! Microsoft patches two zero-days Read More »

Facebook engineers aren’t sure where all user data is kept

Posted: September 12, 2022 by Malwarebytes Labs If it takes a village to raise a child, apparently it takes Facebook a team to tell you what data the company keeps about you and where they keep it. In the recently unsealed transcript of a hearing led by “Discovery Special Master” Daniel Garrie, an expert appointed by the court, two

Facebook engineers aren’t sure where all user data is kept Read More »

The North Face hit by credential stuffing attack

Posted: September 12, 2022 by Christopher Boyd The North Face clothing brand, which specialises in outdoor and heavy weather outerwear, has experienced a “large-scale” credential stuffing attack. This has resulted in no fewer than 194,905 accounts being compromised. What is credential stuffing, and how did it affect The North Face customers? What is credential stuffing? Credential stuffing is an

The North Face hit by credential stuffing attack Read More »

Your HP Support Assistant needs an update!

Posted: September 8, 2022 by Pieter Arntz HP has issued a new version of its HP Support Assistant tool. Users of HP Support Assistant versions earlier than 9.11 and Fusion versions earlier than 1.38.2601.0 are affected by a high severity vulnerability. According to HP it is possible for an attacker to exploit a dynamic-link library (DLL) hijacking vulnerability and elevate

Your HP Support Assistant needs an update! Read More »

Warning issued about Vice Society ransomware targeting the education sector

Posted: September 7, 2022 by Pieter Arntz The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) have released a joint  Cybersecurity Advisory (CSA) after observing Vice Society threat actors disproportionately targeting the education sector with ransomware attacks. Over the past several years, the

Warning issued about Vice Society ransomware targeting the education sector Read More »

Sextortionists used mobile malware to steal nude videos, contact lists from victims

Posted: September 7, 2022 by Pieter Arntz In an international police operation supported by Interpol, law enforcement agencies have uncovered and dismantled an international sextortion ring that managed to extract at least US$ 47,000 from victims. Sextortion is a form of cybercrime in which the victim is blackmailed by threatening to make embarrassing pictures or videos public. Interpol says there’s been a

Sextortionists used mobile malware to steal nude videos, contact lists from victims Read More »

How to set up an Android for your kids

Posted: September 7, 2022 by Jovi Umawing Last week, we gave you some tips on how you can set up a new iPhone for your child to use as they start this school year. Today, we’ll look at doing the same for Android phones. Setting up an Android isn’t very different from setting up an iPhone as both platforms follow a similar logic to making devices child-friendly.

How to set up an Android for your kids Read More »

Update now! QNAP warns users DeadBolt is exploiting Photo Station vulnerability

Posted: September 6, 2022 by Pieter Arntz QNAP (Quality Network Appliance Provider) has warned users to update Photo Station to the latest available version. The warning comes after QNAP detected that cybercriminals known as DeadBolt have been exploiting a Photo Station vulnerability in order to encrypt QNAP NAS systems that are directly connected to the internet. QNAP produces NAS (Network Attached Storage) devices,

Update now! QNAP warns users DeadBolt is exploiting Photo Station vulnerability Read More »