A security researcher was recently awarded a bug bounty of $107,500 for identifying security issues in Google Home smart speakers that could have been exploited to turn them into wiretapping devices.
Experts estimate as much as 70% of security incidents and breaches are employee related. Paired with the seasonal spike in e-commerce shopping for the holidays, as well as staff away for vacation, could spell disaster. As most people are distracted by the holidays, hackers take advantage of this, increasing their attacks.
According to new estimates from Statista's Cybersecurity Outlook, the worldwide cost of cybercrime is expected to soar in the next five years. Statista estimates cybercrime's fiscal damage to rise from $8.44 trillion in 2022 to $23.84 trillion by 2027, nearly tripling in only five years.
Year after year, the holiday season brings a heightened threat of cybercrime, with hackers waiting to exploit security vulnerabilities.
An exodus of Twitter's security staff, including a surprising departure from the company's Chief Information Security Officer Lea Kissner, has proven detrimental thus far - with security experts warning that a massively reduced cybersecurity team would allow for potential bad actors to take advantage of growing security vulnerabilities.
Cybercriminals have successfully launched a malicious black hat search engine optimization (SEO) campaign, redirecting website visitors to fake Q&A portals. This hostile SEO scheme can be "described as malware designed to hijack a website in order to abuse its resources (especially website traffic and rankings)". Hackers managed to compromise over 15,000 WordPress websites to redirect to these fraudulent Q&A websites. The attack aims to promote low-quality websites, preparing these pages for future use as malware droppers or phishing sites.
Recently uncovered by cybersecurity researchers, a set of four Android apps have been found to link users to malicious sites. These malicious sites either install adware or attempt to steal information from the user, in what has found to be a massive cybercrime campaign. The apps were all created by
Recently unearthed by investigators, a group of cybercriminals called the 'Daixin Team' have been discovered to be targeting the Healthcare and Public Health (HPH) sector with ransomware and data extortion methods. The group has been active since at least June 2022.
Fraudsters on the Internet have found a new method for stealing cash from ordinary people. Disguising their fraudulent activity as legitimate invoices, scammers pose as PayPal sellers requesting invoices for different cryptocurrencies.
Paid subscriptions are required to access the vast amount of features the cybercriminal Caffeine platform boasts. These features include customized phishing kits, campaign success tracking tools, management of redirect pages, tools to configure attacks, and generation of dynamic URLs that host payloads. Researchers also discovered templates earmarked for use against Russian or Chinese targets.
A new scam is targeting business owners who own and maintain their company’s website and domain. In what appears to be a legitimate invoice mailed to your business address, a phony directory company called ‘Domain Networks’ requests up to $289 for ‘listing maintenance’.
Scammers on online shopping websites like Craigslist and Facebook Marketplace are finding new ways to defraud people through VIN reports and Google Voice Authenticator.