Cisco says Chinese hackers are exploiting its customers with a new zero-day
Cisco said it discovered a Chinese hacking campaign targeting its customers by exploiting a zero-day in some of the company’s most popular products.
hacking
Hacking group says it’s extorting Pornhub after stealing users’ viewing data
The Scattered Lapsus$ Hunters hacking collective stole Pornhub premium users’ data, including email addresses and viewing history.
Google and Apple roll out emergency security updates after zero-day attacks
Apple released patches for all of its flagship devices to fix security flaws under attack. Google also updated Chrome to remediate one vulnerability exploited in the attacks.
Flaw in photo booth maker’s website exposes customers’ pictures
Hama Film makes photo booths that upload pictures and videos online. But their backend systems have a simple flaw that allows anyone to download customer pictures.
Petco’s security lapse affected customers’ SSNs, drivers’ licenses and more
Petco said the exposure was due to an error in an application, and that it is notifying victims’ whose data was affected.
Google says hackers stole data from 200 companies following Gainsight breach
Notorious hacking collective Scattered Lapsus$ Hunters takes credit for the breach that affected Salesforce customers’ data, and said it is planning another extortion campaign.
Salesforce says some of its customers’ data was accessed after Gainsight breach
Salesforce said it’s investigating an incident where hackers compromised some of its customers’ data after breaching customer experience company Gainsight.
How the classic anime ‘Ghost in the Shell’ predicted the future of cybersecurity 30 years ago
The story of the Ghost in the Shell’s main villain the Puppet Master hinted at a future where governments use hackers for espionage, at a time when most of the world had never connected to the internet.
Five people plead guilty to helping North Koreans infiltrate US companies as ‘remote IT workers’
The U.S. Department of Justice said five people — including four U.S. nationals — “facilitated” North Korean IT workers to get jobs at American companies, allowing the regime to earn money from their remote labor.
Why a lot of people are getting hacked with government spyware
Government surveillance vendors want us to believe their spyware products are only used in limited and targeted operations against terrorists and serious criminals. That claim is increasingly difficult to justify, given the broad range of victims — journalists, activists, and now political consultants — that have come forward.