Phishing risks escalate as Celsius confirms client emails leaked
Celsius depositors should be on the lookout for phishing scams after the company revealed some of its customer data had been leaked in a third-party data breach. On Tuesday, Celsius...
In a Post-Macro World, Container Files Emerge as Malware-Delivery Replacement
Threat actors have sharply reduced the use of one of their favorite malware distribution tactics following Microsoft's decision earlier this year to disable Office macros in documents downloaded from the...
1,000s of Phishing Attacks Blast Off From InterPlanetary File System
The distributed, peer-to-peer (P2P) InterPlanetary File System (IPFS) has become a hotbed of phishing-site storage: Thousands of emails containing phishing URLs utilizing IPFS are showing up in corporate inboxes.
According to a...
APT-Like Phishing Threat Mirrors Landing Pages
A phishing campaign is underway that uses mirror images of target organizations' landing pages to trick victims into entering login credentials.
According to a report from security firm Avanan, the...
Patch Now: Atlassian Confluence Bug Under Active Exploit
A critical Atlassian Confluence vulnerability that was disclosed last week is now being actively exploited in the wild, researchers are warning.
According to researchers at Rapid7, the bug in question...
Average Data Breach Costs Soar to $4.4M in 2022
Sixty percent of breaches have resulted in companies recouping the cost of fines, clean-up, and technological improvements by increasing prices, essentially making consumers pay for breaches and companies' lack...
US Offers $10M Double-Reward for North Korea Cyberattacker Info
The federal Rewards for Justice program has doubled, to $10 million, the available reward for useful information about North Korean state-sponsored actors' attacks on US healthcare systems and other...
Multiple Windows, Adobe Zero-Days Anchor Knotweed Commercial Spyware
A cyber-weapons broker dubbed Knotweed has been outed, with Microsoft flagging it as being behind numerous spyware attacks on law firms, banks, and strategic consultancies in countries around the...
GitGuardian launches ggcanary project to help detect open-source software risks
Code security platform provider GitGuardian has announced the launch of a new open-source canary tokens project to help organizations detect compromised developer and DevOps environments. According to the firm,...
Backlash as Harmony proposes minting 4.97B tokens to reimburse victims
The team behind the Harmony blockchain project has proposed the minting of up to 4.97 billion worth of its native token ONE to compensate victims of the $100 million...