An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive developer data and cryptocurrency wallets. […]
PyPI package with 1.1M monthly downloads hacked to push infostealer Read More »
On Thursday, April 30 at 2:00 PM ET, BleepingComputer will host a live webinar with threat intelligence company Flare and threat intelligence researcher Tammy Harper, exploring how security teams can identify early warning signs of attacks before they escalate into incidents. […]
Webinar: Spotting cyberattacks before they begin Read More »
Medical device giant Medtronic disclosed last week that hackers breached its network and accessed data in “certain corporate IT systems.” […]
Medtronic confirms breach after hackers claim 9 million records theft Read More »
Microsoft is investigating an ongoing Outlook.com outage that is causing intermittent signing issues and preventing customers from accessing their mailboxes. […]
Microsoft says Outlook.com outage is causing sign‑in failures Read More »
Three seconds of audio is all it takes to clone a voice for fraud. Adaptive Security shows how deepfake calls trick employees into sending real money—and why most defenses don’t catch them. […]
Deepfake Voice Attacks are Outpacing Defenses: What Security Leaders Should Know Read More »
22-year-old Evan Tangeman of Newport Beach, California, was sentenced to 70 months in prison for laundering funds stolen in a massive $230 million cryptocurrency heist. […]
Money launderer linked to $230M crypto heist gets 70 months in prison Read More »
Cybersecurity researchers have discovered a new Lua-based malware created years before the notorious Stuxnet worm that aimed to sabotage Iran’s nuclear program by destroying uranium enrichment centrifuges. According to a new report published by SentinelOne, the previously undocumented cyber sabotage framework dates back to 2005, primarily targeting high-precision calculation software to tamper
Researchers Uncover Pre-Stuxnet ‘fast16’ Malware Targeting Engineering Software Read More »
Cybersecurity researchers have disclosed details of a telecommunications fraud campaign that uses fake CAPTCHA verification tricks to dupe unsuspecting users into sending international text messages that incur charges on their mobile bills, generating illicit revenue for the threat actors who lease the phone numbers. According to a new report published by Infoblox, the operation is
Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud Read More »
A threat group tracked as UNC6692 uses social engineering to deploy a new, custom malware suite named ‘Snow’ which includes a browser extension, a tunneler, and a backdoor. […]
Threat actor uses Microsoft Teams to deploy new “Snow” malware Read More »
Microsoft says it’s rolling out a revamped Windows Insider Program experience as part of the broader plans to address performance and reliability concerns affecting Windows 11. […]
Microsoft rolls out revamped Windows Insider Program Read More »