Cybercriminals Are Selling Access to Chinese Surveillance Cameras
Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed.
August 25, 2022
Security
Cybersecurity threats, protection strategies, and best practices
Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.
August 29, 2022
Watering Hole Attacks Push ScanBox Keylogger
Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool.
August 30, 2022
Student Loan Breach Exposes 2.5M Records
2.5 million people were affected, in a breach that could spell more trouble down the line.
August 31, 2022
I moved all my 'secret' group chats to this privacy-focused app, and I'm never going back
Signal offers end-to-end encryption, disappearing messages, and local backups to protect user data
March 04, 2026
Great, another reason not to trust public Wi-Fi
On an unsecured network—like public Wi-Fi networks—hackers can quietly insert themselves between you and the websites you visit. These “machine-in-the-middle” attacks (previously known as man-in-the-m...
March 04, 2026
Refund scam impersonates Avast to harvest credit card details
A convincing fake Avast site displays a €499.99 charge and promises a refund. Instead, it harvests your name, address, and full credit card details.
February 24, 2026
Fake Zoom meeting “update” silently installs unauthorized version of monitoring tool abused by cybercriminals to spy on victims
A fake Zoom meeting page looks real, triggers a bogus “update,” and silently installs a legitimate commercial monitoring product.
February 24, 2026
Roblox gives predators “powerful tools” to target children, says LA County
Los Angeles County sued the online gaming platform Roblox for its alleged failure to protect children from danger.
February 24, 2026
Reddit, porn sites fined by UK regulators over children’s safety and privacy
Ofcom and the Information Commissioner's Office respectively fined a US porn company and Reddit for failing to protect children online.
February 24, 2026
Instagram flagged explicit messages to minors in 2018. Image-blurring arrived six years later
Unsealed court records reveal Instagram executives discussed explicit messages to teens years before a blur feature was introduced.
February 26, 2026
The Conduent breach; from 10 million to 25 million (and counting)
A third-party breach at Conduent now affects 25 million Americans—many never knew their data flowed through its systems.
February 26, 2026
How to understand and avoid Advanced Persistent Threats
APT stands for Advanced Persistent Threat. But what does that actually mean, and how does it translate into the kind of threat you’re facing?
February 26, 2026
Fake Zoom and Google Meet scams install Teramind: A technical deep dive
Attackers don’t always need custom malware. Sometimes they just need a trusted brand and a legitimate tool.
February 26, 2026
Inside a fake Google security check that becomes a browser RAT
Disguised as a security check, this fake Google alert uses browser permissions to harvest contacts, location data, and more.
February 27, 2026
Public Google API keys can be used to expose Gemini AI data
Researchers found that Google API keys long treated as harmless can now unlock access to Gemini.
February 27, 2026
Purchase order attachment isn’t a PDF. It’s phishing for your password
A fake purchase order attachment turned out to be a phishing page designed to harvest your login details.
March 02, 2026
A fake FileZilla site hosts a malicious download
A tampered copy of FileZilla quietly contacts attacker-controlled servers using encrypted DNS traffic that can slip past traditional monitoring.
March 02, 2026
Samsung TVs stop spying on viewers in Texas. Here’s how to disable ACR anywhere
As Samsung settles a lawsuit over how its smart TVs collect and monetize viewing data using ACR, here's how the rest of us can limit the data we're sharing.
March 02, 2026
Pentagon ditches Anthropic AI over “security risk” and OpenAI takes over
At the center of the dispute is how far AI models should be allowed to go inside military systems.
March 03, 2026