Cybersecurity Blog category • Page 9 of 15

There is a new phishing campaign to keep a watchful eye on according to email security firm INKY. It’s a particularly fiendish one. The attackers have designed an email template that does an admirable job of imitating the look and feel of emails sent from the US Department of Labor....

Scammers delight in impersonating government agencies and well-known brands to lure email recipients into giving up their personal information. That information is then either exploited directly or sold to the highest bidder on the Dark Web. Have you ever wondered which agencies, companies or brands are the most imitated by...

Chalk up another first for the hackers.  For the first time that we know of, a successful hacking attack caused prisoners in New Mexico to be confined to their cells for a time. The Metropolitan Detention Center in Bernalillo County, New Mexico went into lockdown on January 5th of this year...

By now you’re almost certainly aware of the Log4j Java issue. It’s a serious and fixable flaw relating to java logging. Recently the United States Federal Trade Commission (FTC) has issued a chilling warning to anyone who hasn’t yet fixed the flaw and protected against the vulnerability. The FTC’s statement...

Do you own and operate a WordPress website?  Do you also use the “All in One” SEO plugin? If you answered yes to both of those questions, then be aware that you’ll want to update that plugin as soon as possible. Recently security researcher Marc Montpas from Automattic Security discovered...

Whatsapp has had a tough year from a security standpoint and has suffered losses in the size of its user base as a result. To their credit, the company has been working hard to make their product more secure. Recently they took another powerful step in that direction with the...

The UK’s National Cyber Security Centre (NCSC) has identified more than 4,000 different retailers that have been compromised by hackers exploiting known vulnerabilities on checkout pages in order to divert payments and steal payment card details. The NCSC has been quietly alerting vulnerable retailers over the past 18 months. Based...

According to a report recently released by Abnormal Security there’s been a huge upsurge of instances of people getting scammed after visiting what they thought were Global Entry, NEXUS, and TSA PreCheck service sites. The issue is that scammers are building very convincing fakes of these types of sites and...

Apple released a very important security update today. The update fixes a pair of zero-day vulnerabilities that have been spotted in use in the wild to attack both Macs and iPhones. One of the two has been used to install the Pegasus spyware onto iPhones. These two vulnerabilities are being...

Hackers recently released a list of nearly half a million Fortinet VPN usernames and passwords onto the Dark Web. The group behind the attack claims that all the credentials were scraped from exploitable devices last summer. The group also claims that while the vulnerability that made the hack possible has...