Google Adds New Pixel Security Features to Block 2G Exploits and Baseband Attacks https://firewall.firm.in/wp-content/uploads/2024/10/android.png Oct 03, 2024Ravie LakshmananMobile Security / Technology Google has revealed the various security guardrails that have been incorporated into its latest Pixel devices to counter the rising threat posed by baseband security attacks. The cellular baseband (i.e., modem) refers to a processor on the device that’s ...

Fake Job Applications Deliver Dangerous More_eggs Malware to HR Professionals https://firewall.firm.in/wp-content/uploads/2024/10/jobs.png A spear-phishing email campaign has been observed targeting recruiters with a JavaScript backdoor called More_eggs, indicating persistent efforts to single out the sector under the guise of fake job applications. “A sophisticated spear-phishing lure tricked a recruitment officer into downloading and executing a malicious file disguised as a resume, ...

China-Linked CeranaKeeper Targeting Southeast Asia with Data Exfiltration https://firewall.firm.in/wp-content/uploads/2024/10/chinese-hackers.png Oct 02, 2024Ravie LakshmananCyber Espionage / Cloud Security A previously undocumented threat actor called CeranaKeeper has been linked to a string of data exfiltration attacks targeting Southeast Asia. Slovak cybersecurity firm ESET, which observed campaigns targeting governmental institutions in Thailand starting in 2023, attributed the activity cluster as aligned to China, ...

Fake Trading Apps Target Victims Globally via Apple App Store and Google Play https://firewall.firm.in/wp-content/uploads/2024/10/trading.png A large-scale fraud campaign leveraged fake trading apps published on the Apple App Store and Google Play Store, as well as phishing sites, to defraud victims, per findings from Group-IB. The campaign is part of a consumer investment fraud scheme that’s also widely known as pig ...

Free Sniper Dz Phishing Tools Fuel 140,000+ Cyber Attacks Targeting User Credentials https://firewall.firm.in/wp-content/uploads/2024/10/hacker.png More than 140,000 phishing websites have been found linked to a phishing-as-a-service (PhaaS) platform named Sniper Dz over the past year, indicating that it’s being used by a large number of cybercriminals to conduct credential theft. “For prospective phishers, Sniper Dz offers an online admin panel with ...

5 Actionable Steps to Prevent GenAI Data Leaks Without Fully Blocking AI Usage https://firewall.firm.in/wp-content/uploads/2024/10/layerx.png Oct 01, 2024The Hacker NewsGenerative AI / Data Protection Since its emergence, Generative AI has revolutionized enterprise productivity. GenAI tools enable faster and more effective software development, financial analysis, business planning, and customer engagement. However, this business agility comes with significant risks, particularly the potential for ...

U.K. Hacker Charged in $3.75 Million Insider Trading Scheme Using Hacked Executive Emails https://firewall.firm.in/wp-content/uploads/2024/10/haced.png Oct 01, 2024Ravie LakshmananCorporate Security / Financial Fraud The U.S. Department of Justice (DoJ) has charged a 39-year-old U.K. national for perpetrating a hack-to-trade fraud scheme that netted him nearly $3.75 million in illegal profits. Robert Westbrook of London was arrested last week and is expected ...

Cloudflare denies hosting sites linked to data leak at India’s Star Health – ET CISO https://etimg.etb2bimg.com/thumb/msid-113803782,imgsize-24152,width-1200,height=765,overlay-etciso/data-breaches/cloudflare-denies-hosting-sites-linked-to-data-leak-at-indias-star-health.jpg U.S. software firm Cloudflare has denied any role in hosting two websites run by a hacker offering for sale stolen personal data and medical records of customers of top Indian insurer Star Health. The statement comes after the company was made party to an ...

U.S. Charges Three Iranian Nationals for Election Interference and Cybercrimes https://firewall.firm.in/wp-content/uploads/2024/09/fbi.png U.S. federal prosecutors on Friday unsealed criminal charges against three Iranian nationals who are allegedly employed with the Islamic Revolutionary Guard Corps (IRGC) for their targeting of current and former officials to steal sensitive data. The Department of Justice (DoJ) accused Masoud Jalili, 36, Seyyed Ali Aghamiri, 34, and ...

Crypto Scam App Disguised as WalletConnect Steals $70K in Five-Month Campaign https://firewall.firm.in/wp-content/uploads/2024/09/crypto.png Sep 28, 2024Ravie LakshmananCryptocurrency / Mobile Security Cybersecurity researchers have discovered a malicious Android app on the Google Play Store that enabled the threat actors behind it to steal approximately $70,000 in cryptocurrency from victims over a period of nearly five months. The dodgy app, identified by Check ...