Broadvoice Leak Exposes 350M Records, Personal Voicemail Transcripts
Companies that use Broadvoice’s cloud-based VoIP platform may find their patients, customers, suppliers and partners to be impacted by a massive data exposure.
Barnes & Noble Hack: A Reading List for Phishers and Crooks
Customers’ lists of book purchases along with email addresses and more could have been exposed — and that’s a problem.
Carnival Corp. Ransomware Attack Affects Three Cruise Lines
Hackers accessed personal information of guests, employees and crew for Carnival Cruise, Holland America and Seabourn as well as casino operations.
IAmTheKing and the SlothfulMedia malware family
On October 1, 2020, the DHS CISA agency released information about a malware family called SlothfulMedia, which they attribute to a sophisticated threat actor. We have been tracking this set of activity through our private reporting service, and we would like to provide the community with additional context. In June 2018, we published the first…
Travelex, Other Orgs Face DDoS Threats as Extortion Campaign Rages On
Organizations worldwide – including Travelex – have been sent letters threatening to launch DDoS attacks on their network unless a $230K ransom is paid.
BEC Attacks: Nigeria No Longer the Epicenter as Losses Top $26B
BEC fraudsters now have bases of operation across at least 39 counties and are responsible for $26 billion in losses annually — and growing.
Critical SonicWall VPN Portal Bug Allows DoS, Worming RCE
The CVE-2020-5135 stack-based buffer overflow security vulnerability is trivial to exploit, without logging in.
Silent Librarian Goes Back to School with Global Research-Stealing Effort
The Iranian hacker group is targeting universities in 12 countries.
FIN11 Cybercrime Gang Shifts Tactics to Double-Extortion Ransomware
The Clop ransomware has become a tool of choice for the financially motivated group.
Intel Adds Memory Encryption, Firmware Security to Ice Lake Chips
Intel’s addition of memory encryption to its upcoming 3rd generation Xeon Scalable processors matches AMD’s Secure Memory Encryption (SME) feature.