Twitter breach: Staff tricked by ‘phone spear phishing’
The attackers exploited the human factor to gain access to Twitter’s internal systems and the accounts of some of the world’s most prominent figures
Archives - July 2020
10 billion records exposed in unsecured databases, study says
The databases contain personal information that could be used for phishing attacks and identity theft schemes
Thunderspy attacks: What they are, who’s at greatest risk and how to stay safe
All you need to know about preventing adversaries from exploiting the recently disclosed vulnerabilities in the Thunderbolt interface
ESET Threat Report Q2 2020
A view of the Q2 2020 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts
FBI warns of disruptive DDoS amplification attacks
The Bureau expects cybercriminals to increasingly abuse new threat vectors for large-scale DDoS attacks
Almost 4,000 databases wiped in ‘Meow’ attacks
The attackers and their motivations remain unknown; however, the incidents yet again highlight the risks of careless data security
Premier League team narrowly avoids losing £1 million to scammers
In another incident, ransomware attackers almost forced the cancellation of a match, a report reveals
Google adds security enhancements to Gmail, Meet and Chat
The tech giant introduces its own version of verified accounts in Gmail, rolls out increased moderation controls in Meet, and enhances phishing protection in Chat
Privacy watchdogs urge videoconferencing services to boost privacy protections
The open letter highlights five security and privacy principles that require heightened attention from videoconferencing services
Argentine telecom company hit by major ransomware attack
Telecom Argentina says it has contained the attack and regained access to its systems without paying up
7 VPN services leaked data of over 20 million users, says report
A report calls into question the providers’ security practices and dismisses their claims of being no-log VPN services
Data breach reports down by one‑third in first half of 2020
The Identity Theft Resource Center doesn't expect the trend to last, however
High‑profile Twitter accounts hacked to promote Bitcoin scam
Tech titans and prominent politicians among victims of a sprawling hack that Twitter says leveraged its internal tools
Mac cryptocurrency trading application rebranded, bundled with malware
ESET researchers lure GMERA malware operators to remotely control their Mac honeypots
Microsoft patches critical, wormable flaw in Windows DNS Server
The company urges organizations to waste no time in installing updates to fix the vulnerability that rates a ‘perfect’ 10 on the severity scale
Details of 142 million MGM hotel guests selling for US$2,900
It appears that the July 2019 breach at MGM Resorts affected far more people than initially thought
Mobile security threats amid COVID‑19 and beyond: A Q&A with Lukas Stefanko
ESET malware researcher Lukas Stefanko gives us a peek behind the scenes of his analysis of CryCryptor ransomware and puts the threat into a broader context
Welcome Chat as a secure messaging app? Nothing could be further from the truth
ESET research uncovers a malicious operation that both spies on victims and leaks their data
Zoom patches zero‑day flaw in Windows client
The vulnerability exposed Zoom users running Windows 7 or earlier OS versions to remote attacks
Popular home routers plagued by critical security flaws
A study paints a dim picture of router security, as none of the 127 devices tested was free of severe vulnerabilities