Hackers hijack govt and business accounts on X for crypto scams
Source: Bleeping Computer
Hackers are increasingly targeting verified accounts on X (formerly Twitter) belonging to government and business profiles and marked with 'gold' and 'grey' checkmarks to promote cryptocurrency scams, phishing sites, and sites with crypto drainers.
A recent high-profile case is the X account of cyber threat intelligence company Mandiant, a Google subsidiary, which was hijacked yesterday to distribute a fake airdrop that emptied cryptocurrency wallets.
The TsuKing Threat: New DNS Vulnerability Explained
Source: Info Risk Today
Domain name system or DNS attacks have persisted as a popular method for carrying out distributed denial-of-service attacks. DNS plays a crucial role in cybersecurity, mapping domain names and IP addresses and ensuring that the internet remains reliable and accessible. But DNS is susceptible to attacks.
Merry 'Leaksmas'! Hackers Give Away 50 Million Pieces of PII
Source: Data Breach Today
Hackers celebrated the year-end holidays with a malicious "Free Leaksmas" posting on the dark web, releasing 50 million stolen consumer records, including credit card information.
State AG Hits Hospital With $300K Fine for Web Tracker Use
Source: Info Risk Today
State regulators have fined a large New York academic medical center $300,000 to settle privacy violations related to the organization's prior use of tracking tools in its websites and patient portal. Regulators said the hospital had violated HIPAA rules in sharing patient information with third parties for marketing purposes.
Cyberattackers Target Nuclear Waste Company via LinkedIn
Source: Dark Reading
Last week, a group of hackers targeted Radioactive Waste Management (RWM), a UK government-owned company behind the country's multibllion-dollar Geological Disposal Facility (GDF) nuclear waste-storage project, using social engineering and LinkedIn.
Komentar