identity theft – Threat Note

From Cybersecurity Help – China-based Smishing Triad targets US and UK consumers with toll payment scams

The campaigns involve fake text messages impersonating legitimate tolling services, such as FasTrak, E-ZPass, and I-Pass. Read More

Samir K April 7, 2025

News

From Dark Reading – Accused Snowflake Attacker ‘Judische’ Agrees to US Extradition

Though there is no confirmation as to when this extradition will occur, Alexander Moucka agreed to be transferred in writing before a judge. Read More

shaikh Saqib March 25, 2025

News

From Dark Reading – 23andMe Bankruptcy Filing May Put Sensitive Data at Risk

Security experts worry the company's Chapter 11 status and aim to sell its assets could allow threat actors to exploit and misuse the genetic information it collected. Read More

shaikh Saqib March 25, 2025

News

From Cyber Security News – Beware of Free File Word To PDF Converter That Delivers Malware

The FBI has issued an urgent warning about the rising threat of malicious file conversion tools that are being used to spread malware across the United States. Cybercriminals are targeting…

shaikh Saqib March 17, 2025

Vulnerabilities

From Cybersecurity Help – Blind Eagle APT targeting Colombian entities in ongoing espionage campaign

In the recent campaign, the group has been observed exploiting CVE-2024-43451. Read More

shaikh Saqib March 11, 2025

News

From Cyber Security News – 49,000+ Access Management Systems Worldwide Configured With Massive Security Gaps

Dutch IT security consultancy Modat has uncovered alarming security vulnerabilities in approximately 49,000 access management systems (AMS) deployed worldwide. These systems, designed to control building access through authentication methods like…

shaikh Saqib March 4, 2025

News

From Cyber Security News – Yodobashi Camera Users Under Attack from a New Wave of Phishing Attack

A new wave of phishing attacks impersonating Japanese electronics retail giant Yodobashi Camera has emerged, leveraging urgency and brand trust to steal customer credentials. Cybersecurity firm Symantec reported the campaign,…

shaikh Saqib February 27, 2025

Articles

From Krebs on Security – U.S. Soldier Charged in AT&T Hack Searched “Can Hacking Be Treason”

A U.S. Army soldier who pleaded guilty last week to leaking phone records for high-ranking U.S. government officials searched online for non-extradition countries and for an answer to the question…

shaikh Saqib February 27, 2025

News

From Cyber Security News – Indian Post Office Portal Exposed Thousands of KYC Records With Username & Mobile Number

The Indian Post Office portal was found vulnerable to an Insecure Direct Object Reference (IDOR) attack, exposing sensitive Know Your Customer (KYC) data of thousands of users. This breach highlights…

Samir K February 17, 2025

News

From Security Week – Alabama Man Pleads Guilty to Hacking SEC’s X Account

[[{"value":"Eric Council Jr. pleaded guilty to hacking the X (formerly Twitter) account of the US Securities and Exchange Commission. The post Alabama Man Pleads Guilty to Hacking SEC’s X Account…

shaikh Saqib February 11, 2025

News

From Cyber Security News – High School Dropout Sentenced to 20 Years for $38M Retirement Fund Hack

Evan Frederick Light, a 22-year-old from Lebanon, Indiana, has been sentenced to 20 years in federal prison for orchestrating a sophisticated cyber intrusion that led to the theft of over…

shaikh Saqib February 11, 2025