Audio player loading… DuckDuckGo may face a user backlash after security researchers discovered a hidden tracking agreement with Microsoft. The privacy-focused company offers a search engine that claims not to track people’s searches, or behavior, and also doesn't build user profiles that can be used to display personalized advertising. Search engine aside, DuckDuckGo also offers a mobile browser (opens in new tab) of the same name, but this has raised concerns, as although this promises to block hidden third-party trackers, some from a certain tech giant are allowed to continue operating. (opens in new tab) Share your thoughts on Cybersecurity and get a free copy of the Hacker's Manual 2022 (opens in new tab) . Help us find how businesses are preparing for the post-Covid world and the implications of these activities on their cybersecurity plans. Enter your email at the end of this survey (opens in new tab) to get the bookazine, … [Read more...] about DuckDuckGo in hot water over hidden tracking agreement with Microsoft
Cybersecurity
Google warns Android smartphones targeted by dangerous Predator spyware
Audio player loading… Android smartphones in a number of countries around the world have been targeted by powerful PREDATOR spyware, researchers from Google’s Threat Analysis Group (TAG) have warned. The company’s recent report (opens in new tab) says that the spyware, allegedly developed by a commercial entity - a company called Cytrox, headquartered in Skopje, North Macedonia - is capable of recording audio, adding CA certificates, and hiding apps. Cytrox is being distributed via email , with victims receiving a message carrying a one-time link mimicking a URL shortener service. Once clicked, the victim would then be redirected to a domain owned by the attacker, that would deliver simple Android spyware (opens in new tab) called ALIEN. (opens in new tab) Share your thoughts on Cybersecurity and get a free copy of the Hacker's Manual 2022 (opens in new tab) . Help us find how businesses are preparing for the post-Covid world and the … [Read more...] about Google warns Android smartphones targeted by dangerous Predator spyware
Python libraries are being attacked for AWS keys
Audio player loading… When a GitHub repository that hasn’t been touched for almost a decade suddenly gets an “update”, users should be wary, as it might just be a hostile takeover with the intention of distributing viruses (opens in new tab) . That’s exactly what happened to the PyPI module “ctx”, which apparently has millions of downloads. Earlier this month, following a software supply chain attack, someone replaced the safe “ctx” code with an updated version that steals developer environment variables and collects secrets such as Amazon AWS keys and credentials. These are then sent to a Heroku endpoint (opens in new tab) at https://anti-theft-web.herokuapp[.]com/hacked/ (opens in new tab) Share your thoughts on Cybersecurity and get a free copy of the Hacker's Manual 2022 (opens in new tab) . Help us find how businesses are preparing for the post-Covid world and the implications of these activities on their cybersecurity plans. Enter … [Read more...] about Python libraries are being attacked for AWS keys
A dastardly new phishing scam is targeting tax software users
Audio player loading… QuickBooks users are being attacked by an unknown threat actor phishing for sensitive personal information, the software’s maker has warned. According to a BleepingComputer report, a number of users reached out to Intuit, the maker of the tax software (opens in new tab) , and alerted the company to a phishing email campaign that tries to scare people into giving away sensitive information. Subsequently, Intuit issued a warning to all users, detailing the campaign. Apparently, victims will receive an email pretending to be from Intuit, which warns that the company has conducted an account review has not been able to verify some important information. (opens in new tab) Share your thoughts on Cybersecurity and get a free copy of the Hacker's Manual 2022 (opens in new tab) . Help us find how businesses are preparing for the post-Covid world and the implications of these activities on their cybersecurity plans. Enter … [Read more...] about A dastardly new phishing scam is targeting tax software users
This ransomware looks to make the world a better place
Audio player loading… A yet unknown threat actor wants to be the Robin Hood of the cyber-era, albeit with a twist. Instead of stealing from the rich and giving to the poor, this group forces the poor to give directly to the rich - by holding their precious data hostage until they do. Cybersecurity researchers from CloudSEK recently discovered a ransomware strain named “GoodWill” that still infects companies, but instead of asking for payment, it’s asking for acts of goodwill against those less fortunate, all of which need to be documented and presented both publicly, and to the threat actor itself. (opens in new tab) Share your thoughts on Cybersecurity and get a free copy of the Hacker's Manual 2022 (opens in new tab) . Help us find how businesses are preparing for the post-Covid world and the implications of these activities on their cybersecurity plans. Enter your email at the end of this survey (opens in new tab) to get the bookazine, worth … [Read more...] about This ransomware looks to make the world a better place