News

American Airlines suffers data breach after phishing incident

Posted: September 20, 2022 by Pieter Arntz Major airline American Airlines has fallen victim to a data breach after a threat actor got access to the email accounts of several employees via a phishing attack. According to a published notice of a security incident, the data breach was discovered in July 2022. How it happened American Airlines said the successful phishing attack led […]

American Airlines suffers data breach after phishing incident Read More »

Grand Theft Auto 6 suffers grand theft

Posted: September 20, 2022 by Christopher Boyd For games publisher Take-Two Interactive, damage control is in full effect as word spreads of a Grand Theft Auto-centric network compromise. Developer Rockstar Games has suffered a major leak of upcoming game content, specifically unfinished video footage of Grand Theft Auto 6. The first anyone knew of the attack was when the

Grand Theft Auto 6 suffers grand theft Read More »

Here are the new security and privacy features of iOS 16

Posted: September 15, 2022 by Jovi Umawing On Monday, September 12, Apple released iOS 16, which included a host of new security and privacy features. Let’s look at what these are—and some quality-of-life (QoL) changes.  Lockdown Mode As Macrumors calls it, Lockdown Mode is an “extreme” security setting ideal for those who regularly find themselves in the crosshairs of online risk and targeted

Here are the new security and privacy features of iOS 16 Read More »

Uber hacked

Posted: September 16, 2022 by Pieter Arntz Uber informed the public on Thursday it was responding to a cybersecurity incident after somebody breached its network. From what we have been able to find out so far, the attacker managed to compromise an employee’s access to the chat app Slack. The intruder may also have gained access to the

Uber hacked Read More »

Update now! Microsoft patches two zero-days

Posted: September 14, 2022 by Pieter Arntz The Microsoft September 2022 Patch Tuesday includes fixes for two publicly disclosed zero-day vulnerabilities, one of which is known to be actively exploited. Five of the 60+ security vulnerabilities were rated as “Critical”, and 57 as important. Two vulnerabilities qualify as zero-days, with one of them being actively exploited. Zero-days The first zero-day, CVE-2022-37969,

Update now! Microsoft patches two zero-days Read More »

Facebook engineers aren’t sure where all user data is kept

Posted: September 12, 2022 by Malwarebytes Labs If it takes a village to raise a child, apparently it takes Facebook a team to tell you what data the company keeps about you and where they keep it. In the recently unsealed transcript of a hearing led by “Discovery Special Master” Daniel Garrie, an expert appointed by the court, two

Facebook engineers aren’t sure where all user data is kept Read More »

The North Face hit by credential stuffing attack

Posted: September 12, 2022 by Christopher Boyd The North Face clothing brand, which specialises in outdoor and heavy weather outerwear, has experienced a “large-scale” credential stuffing attack. This has resulted in no fewer than 194,905 accounts being compromised. What is credential stuffing, and how did it affect The North Face customers? What is credential stuffing? Credential stuffing is an

The North Face hit by credential stuffing attack Read More »

Your HP Support Assistant needs an update!

Posted: September 8, 2022 by Pieter Arntz HP has issued a new version of its HP Support Assistant tool. Users of HP Support Assistant versions earlier than 9.11 and Fusion versions earlier than 1.38.2601.0 are affected by a high severity vulnerability. According to HP it is possible for an attacker to exploit a dynamic-link library (DLL) hijacking vulnerability and elevate

Your HP Support Assistant needs an update! Read More »

YouTube transparency report shows battle against misinformation

Posted: September 7, 2022 by Christopher Boyd Statistics for YouTube community guidelines enforcement are now available for the period April to June 2022, via Google’s Transparency Report. YouTube channels are terminated if they accrue three community guideline strikes in 90 days, have a case of severe abuse (predatory behaviour, for example), or are determined to be wholly dedicated to violating YouTube’s community

YouTube transparency report shows battle against misinformation Read More »

Warning issued about Vice Society ransomware targeting the education sector

Posted: September 7, 2022 by Pieter Arntz The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) have released a joint  Cybersecurity Advisory (CSA) after observing Vice Society threat actors disproportionately targeting the education sector with ransomware attacks. Over the past several years, the

Warning issued about Vice Society ransomware targeting the education sector Read More »