A shocking new report by Citizen Lab reveals that popular Chinese keyboard apps transmit your keystrokes in ways that leave them shockingly vulnerable to interception. Even passwords, financial details, and sensitive conversations you type...
The post Your Keyboard May Be Spilling Your Secrets – Critical Flaws Expose Keystrokes of Millions appeared first…
Category: Cyber Attack
In a concerning development, a threat actor has purportedly announced the sale of a comprehensive database encompassing the personal information of iPhone iOS and Huawei mobile phone users across China. Allegedly sourced from major Chinese telecom giants like China Telecom, China Mobile, and China Unicom, the dataset comprises crucial details such…
In April 2024, an alleged breach reportedly affected around 770,000 rows of data associated with the complete chain of gyms operated by “Synergym” in Malaga, Spain. The company’s facilities are reputedly equipped with modern equipment developed in conjunction with advanced medical science, technology, and professional guidance, purportedly enabling users to comfortably…
In a coordinated message, GLORIAMIST, LAPSUS, and Anonymous groups have issued a statement regarding their forthcoming action targeting the French Ministry of Agriculture’s database. They have announced their intention to release a portion of this extensive database to the public, with only 5% of its contents being made available as a…
A new group of ransomware dubbed Qiulong has recently emerged, wreaking havoc on various businesses across Brazil. Its victims are Rosalvo Automóveis and Dr. Lincoln, two prominent ransomed whose servers were compromised by the ransomware software. The compromised data includes Confidential Personal Data, financial data, user data, Email and message archives,…
People’s CyberArmy, in conjunction with other Russian hacker collectives, has allegedly a string of Distributed Denial of Service (DDoS) attacks targeting Spanish websites. Notably, these attacks have honed in on critical entities within Spain, including the Madrid Metro. Among the specific websites targeted are metromadrid.es and estacionsurmadrid.avanzagrupo.com. These attacks underscore the…
Amidst heightened geopolitical tensions, the Cyber Army of Russia has purportedly executed a distributed denial-of-service (DDoS) assault against CONSOL Energy, a major player in the coal and natural gas sectors. Established in 1860 and based in Canonsburg, Pennsylvania, CONSOL Energy holds a significant presence in global energy markets, supplying coal and…
In a concerning development for iOS users, a threat actor has recently surfaced, claiming to possess a potent zero-day exploit targeting Apple’s iMessage platform. This exploit, characterized by its “0-click” attack type, signifies a particularly insidious threat as it requires no user interaction to be initiated. Leveraging the SMS payload delivery…
A threat actor, known as USDoD, has allegedly leaked databases belonging to Bureau van Dijk and US Consumer. Comprising a remarkable 11.7 million lines of data, this leak provides a comprehensive snapshot of valuable information. Delivered in CSV format, the dataset includes crucial fields such as Last Name, First Name (in…
L’agence gouvernementale de Washington D.C., DISB, a confirmé que des données volées et divulguées par le groupe de rançongiciels LockBit provenaient d’un fournisseur de technologie tiers, Tyler Technologies, qui a subi une violation de données affectant le stockage cloud de données client du système STAR de DISB. LockBit a menacé de divulguer 1 Go de données pour inciter l’organisation à payer une rançon après l’échec des négociations. Tyler Technologies, ayant découvert une activité non autorisée dans son environnement cloud, a collaboré avec des experts tiers pour enquêter sur l’incident et a confirmé que certaines informations du système STAR avaient été publiées par LockBit.
Reports have surfaced indicating that a threat actor is offering a zero-day exploit for WhatsApp, a popular messaging application used by millions worldwide. This exploit, said to support both Android and iOS platforms, presents a serious security concern due to its Remote Code Execution (RCE) capabilities. Allegedly, the exploit enables attackers…
Speedy France, une entreprise de réparation automobile, a annoncé avoir subi un “incident de cybersécurité” qui pourrait avoir compromis les données personnelles de ses clients inscrits dans ses bases de données. L’entreprise a immédiatement mobilisé des équipes d’experts et des partenaires pour prendre les mesures de protection nécessaires et mener des investigations. La Commission nationale de l’informatique et des libertés (Cnil) a été informée de l’incident, et Speedy France souligne l’importance qu’elle accorde à la sécurité et à la protection des données de ses clients et partenaires.
Le réseau du système de l’hôpital Union a été attaqué par des hackers, affectant partiellement ses opérations, mais jusqu’à présent, aucune fuite ou utilisation abusive des données des patients n’a été détectée. L’attaque a été identifiée comme une attaque de ransomware “LockBit”, avec les hackers demandant une rançon de 10 millions de dollars américains, que l’hôpital n’a pas payée. Des experts suggèrent que l’attaque pourrait être due à des systèmes non mis à jour ou à des employés ouvrant des e-mails de phishing, soulignant l’importance de la mise à jour des systèmes et de la sensibilisation à la sécurité.
In a recent statement, the Anonymous Collective has reiterated its commitment to targeting the Government of Japan as part of their ongoing #OpImmigration campaign. The group condemns what they perceive as the Japanese Government’s racist immigration laws, which they argue deny immigrants basic rights and contribute to a climate of hostility….
People’s CyberArmy, in conjunction with other Russian hacker collectives, has allegedly commenced a string of Distributed Denial of Service (DDoS) attacks targeting Spanish websites. Notably, these attacks have honed in on critical entities within Spain, including the Spanish National Police Corps. Among the specific websites targeted are policia.es and servicioselectronicos.policia.es. These…