Cyber Bites

TikTok to No Longer Operate in Hong Kong

Following the imposition of new national security laws by Beijing, TikTok has announced its withdrawal to operate in Hong Kong. Owned by China-based ByteDance, TikTok has been persistent in denying any affiliation with Chinese authorities or in sharing user data. This withdrawal from Hong Kong app stores is expected to take several days. Source: The Guardian

Read more
Data breach

According to a study by DSA Connect, out of a thousand workers interviewed, 37% believe there will be an increase in fines for data breaches between 2020 and 2025, whilst 6% affirm the rise will be dramatic. The principal reason behind this anticipated rise is due to employees gaining greater access to data. In the last 12 months, 30% of respondents have accessed more data at work than before. Source: Infosecurity Magazine

Read more
Ransomware

Xchanging, a managed service provider for those in the insurance industry, has recently informed its investors of a ransomware attack on some of its systems. The incident was initially reported on the 5th of July but representatives of the company claimed that the ransomware did not spread outside of the Xchanging network. Moreover, investigations appear to suggest that the data has been left unaffected. Source: Bleeping Computer

Read more

According to research conducted by Frauhofer Institute, out of 127 home routers from seven different manufacturers throughout Europe, 46 were not updated in 12 months. Others had not been updated for more than five years, leaving many routers vulnerable to attack. Despite the fact that vendors have the capability to distribute security patches more often, they do not. Source: SC Magazine

Read more

Israel has been accused of executing cyberattacks in retaliation for an Iranian attempt to hack the Israelian water infrastructure. These attacks have supposedly been the cause of two explosions at Iranian nuclear sites, one working on uranium enrichment and the other on missile production. According to an unnamed senior source, Iran's nuclear enrichment programme has now been pushed back for about two months. Source: Daily Mail

Read more
vulnerability

OnePlus, a Chinese phone manufacturer, recently spotted a vulnerability in its system which deals with out-of-warranty repairs for devices in the US. Through a link used to make a payment for repairs, customers could access the personal information of other customers. This includes names, addresses, phone numbers, email addresses as well as further information on the device they use.  Fortunately, this vulnerability has now been patched. Source: Phone Arena

Read more
cyberattack

As a result of a Path Traversal bug in the .NET Core library of Microsoft, attackers could now implement malicious code on to a system without being detected by antivirus and end-point detection software. Paul Laîné of Context Information Security was the first to find this vulnerability and claims that this is made possible because of two main reasons. Firstly, .NET Core allows one to use a custom DLL as its garbage collector. Secondly, the...

Read more
Card theft

According to a report released by SanSec, a state-sponsored hacking group from North Korea may be behind the cyberattacks of online stores ongoing since May 2019. This includes, the breach of the accessories store chain, Claire's. The hacking group have been hacking into online stores to insert malicious code which then steals payment card details as consumers go through the checkout page. Source: ZDNet

Read more
Smart Krampus-3PC Malware attacks iPhone Users

Apple has actively been working on making iPhone the sole thing people have to carry while out and about. The company has successfully eliminated the need to carry items such as diary, laptop, car insurance card, credit card, home keys, etc. They also recently announced plans to help humanity get rid of the need for car keys. However, in the USA iPhones have not yet been able to be used as an official I.D. such...

Read more

A new vulnerability in some popular bitcoin wallets can be exploited by scammers to commit fraud and even make the wallets themselves unusable. Discovered by wallet startup ZenGo, the vulnerability, dubbed “BigSpender,” was found in bitcoin wallets from Ledger Live, Edge and Breadwallet - but potentially affects others as well. The vulnerability allows a scammer to double-spend bitcoin, a process whereby the owner of a wallet is tricked into believing he had received a bitcoin...

Read more
Page 1 of 152 1 2 152