News

Sextortionists used mobile malware to steal nude videos, contact lists from victims

Posted: September 7, 2022 by Pieter Arntz In an international police operation supported by Interpol, law enforcement agencies have uncovered and dismantled an international sextortion ring that managed to extract at least US$ 47,000 from victims. Sextortion is a form of cybercrime in which the victim is blackmailed by threatening to make embarrassing pictures or videos public. Interpol says there’s been a […]

Sextortionists used mobile malware to steal nude videos, contact lists from victims Read More »

Update now! QNAP warns users DeadBolt is exploiting Photo Station vulnerability

Posted: September 6, 2022 by Pieter Arntz QNAP (Quality Network Appliance Provider) has warned users to update Photo Station to the latest available version. The warning comes after QNAP detected that cybercriminals known as DeadBolt have been exploiting a Photo Station vulnerability in order to encrypt QNAP NAS systems that are directly connected to the internet. QNAP produces NAS (Network Attached Storage) devices,

Update now! QNAP warns users DeadBolt is exploiting Photo Station vulnerability Read More »

Twilio data breach turns out to be more elaborate than suspected

Posted: August 29, 2022 by Pieter Arntz Earlier this month, messaging service Twilio got compromised by a sophisticated social engineering attack. After deploying phishing attacks against company employees, hackers were able to access user data, but now it seems that the impact of the hack was more elaborate than originally assumed. In a first update, Twilio, a cloud-based communication platform provider, revealed

Twilio data breach turns out to be more elaborate than suspected Read More »

YouTuber on the run after allegedly swiping $55m from followers

Posted: September 6, 2022 by Christopher Boyd We mostly hear about bogus advertising and offers via compromised accounts on Instagram or Facebook. Strict advertising rules on social media involve making it clear that someone is promoting an ad or offering up a risky venture. However, sometimes things go wrong on other platforms like YouTube. The immediacy of video

YouTuber on the run after allegedly swiping $55m from followers Read More »

Don’t share the WhatsApp ‘Martinelli’ phone hacking alert: It’s a hoax

Posted: September 6, 2022 by Christopher Boyd Everyone loves a good campfire story prone to exaggeration. However, when told online it’s not quite got the same effect. Long ago, sites like Myspace would play host to very certain types of messages. “Don’t open this post from Johnny Cyberhack, or your account will be stolen and your C drive

Don’t share the WhatsApp ‘Martinelli’ phone hacking alert: It’s a hoax Read More »

Phishers use verified status as bait for Instagram users

Posted: September 5, 2022 by Christopher Boyd Another Instagram phish is doing the rounds, and will appeal to a wide variety of platform users. Bleeping Computer reports that verified status is once again being dangled as bait. The “importance” of being verified Being verified gives the impression of status, or importance, on social media platforms. Often, verification is more

Phishers use verified status as bait for Instagram users Read More »

Thousands of Hikvision video cameras remain unpatched and vulnerable to takeover

Posted: August 23, 2022 by Pieter Arntz In September 2021 we told you about insecure Hikvision security cameras that were ready to be taken over remotely. However, according to a whitepaper published by CYFIRMA, tens of thousands of systems used by 2,300 organizations across 100 countries have still not applied the security update, and are therefore vulnerable to exploitation. The vulnerability According to the

Thousands of Hikvision video cameras remain unpatched and vulnerable to takeover Read More »

Apple releases security update for iPhones and iPads to address vulnerability

Pieter Arntz Malware Intelligence Researcher Apple has released a security update for iOS 12.5.6 to patch a remotely exploitable WebKit vulnerability that allows attackers to execute arbitrary code on unpatched devices. The WebKit zero-day that is known as CVE-2022-32893 was fixed for iOS 15.6.1, iPadOS 15.6, and macOS Monterey 12.5.1 on August 17, and for Safari in macOS Big Sur

Apple releases security update for iPhones and iPads to address vulnerability Read More »

TikTok vulnerability could have allowed hijackers to take over accounts

Posted: September 1, 2022 by Christopher Boyd Microsoft has released a detailed rundown of an issue, now fixed, which was potentially dangerous for users of TikTok. The problem, flagged as a “high-severity vulnerability” by Microsoft, required several steps chained together in order to function. Attackers making use of it could have compromised accounts with one click. From there, the

TikTok vulnerability could have allowed hijackers to take over accounts Read More »

Binance chief says a “sophisticated hacking team” turned him into a deepfake hologram

Posted: August 24, 2022 by Christopher Boyd Deepfakes are back, and causing major problems for people involved in financial circles. Scammers have been targeting people in the cryptocurrency community for some time now. There’s huge money to be made via the act of ripping folks off. Some of it is phishing, other attacks focus on breaking into currency

Binance chief says a “sophisticated hacking team” turned him into a deepfake hologram Read More »