Nerds "R" Us Inc.

Warning for iPhone Users: Experts Warn of Sneaky Fake Lockdown Mode Attack -

Warning for iPhone Users: Experts Warn of Sneaky Fake Lockdown Mode Attack Malicious actors can deceive you into thinking your iPhone is in Lockdown Mode when it's not. Find out how this fake Lockdown Mode works.

23andMe confirms nearly 7 million customers affected in data leak -

23andMe confirms nearly 7 million customers affected in data leak The company told SC Media about 14,000 accounts were accessed, with millions more DNA Relatives caught in the crossfire.

Booking.com customers targeted in hotel booking scam - Help Net Security - https://bit.ly/49YMHZ3

Booking.com customers targeted in hotel booking scam - Help Net Security Scammers are hijacking hotels' Booking.com accounts and using them as part of a hotel booking scam aimed at tricking guests.

Staples confirms cyberattack behind service outages, delivery issues -

Staples confirms cyberattack behind service outages, delivery issues American office supply retailer Staples took down some of its systems earlier this week after a cyberattack to contain the breach's impact and protect customer data.

Secure Your Home During the Holidays -- Security Today -

Secure Your Home During the Holidays -- Security Today The most wonderful time of the year can easily transform into a nightmare. Being vigilant, while still enjoying the holiday season, is possible. The holiday season is the perfect time to start implementing security measures to protect one’s home and ensure security while out and about.

The Role of Stronger Authentication in Protecting Rewards Programs - CPO Magazine -

The Role of Stronger Authentication in Protecting Rewards Programs - CPO Magazine Due to their large membership pools, the rewards programs offered by top brands represent sizable assets. Attacks against rewards programs are becoming more frequent as these customer accounts often fly under the radar as potential targets for cybercrime.

Retailers brace for cyberthreat feast ahead of Thanksgiving shopping weekend -

Retailers brace for cyberthreat feast ahead of Thanksgiving shopping weekend A rise in social engineering and generative AI pose increased risks as phishing attacks and ransomware gain speed and grow more sophisticated.

How to combat AI-produced phishing attacks -

How to combat AI-produced phishing attacks The bad guys are taking full advantage of AI to improve the production and effectiveness of their phishing attacks. Here’s how security practitioners can fight fire with fire.

Despite Hype, the Password-Free Workplace Is Still a Long Way Off -

Despite Hype, the Password-Free Workplace Is Still a Long Way Off More than half of organizations are nowhere near ditching passwords, even as cyberattackers continue to have a field day with workers' poor credential choices.

The evolution of ransomware: Lessons for the future -

The evolution of ransomware: Lessons for the future Ransomware remains one of the greatest cyber threats. While the future of ransomware is full of unknowns, we can look to the past to predict the future.

Royal Ransom Demands Exceed $275M, Rebrand in Offing -

Royal Ransom Demands Exceed $275M, Rebrand in Offing The swift-moving ransomware crew continues to evolve quickly and has already attacked more than 350 victims since it was first detected just over a year ago.

ChatGPT Down? OpenAI Blames Outages on DDoS Attacks -

ChatGPT Down? OpenAI Blames Outages on DDoS Attacks Follow us on Twitter (X) - Facebook @ /Hackread

Hacker Leaks 35 Million Scraped LinkedIn User Records -

Hacker Leaks 35 Million Scraped LinkedIn User Records Follow us on Twitter (X) - Facebook @ /Hackread

Offensive and Defensive AI: Let’s Chat(GPT) About It -

Offensive and Defensive AI: Let’s Chat(GPT) About It Get the full story on the dangers of the rapidly growing consumer application, ChatGPT, and learn how to resist cyber crime.

How global password practices are changing - Help Net Security -

How global password practices are changing - Help Net Security Password health and hygiene improved globally over 2023, reducing the risk of account takeover for consumers and businesses.

3D Printing: Unpacking Facts and Safeguarding from Cybersecurity Threats -

3D Printing: Unpacking Facts and Safeguarding from Cybersecurity Threats Follow us on Twitter (X) - Facebook @ /Hackread

G7 Unveils Rules for AI Code of Conduct - Will They Stick? -

G7 Unveils Rules for AI Code of Conduct - Will They Stick? The Group of Seven industrial countries has unveiled a voluntary set of guidelines and expectations for the safe and secure development of AI systems. While the

Surge in QR Code Quishing: Check Point Records 587% Attack Spike -

Surge in QR Code Quishing: Check Point Records 587% Attack Spike Follow us on Twitter (X) - Facebook @ /Hackread

Second Leak From 23andMe Data Breach Includes 4 Million More Genetic Profiles - CPO Magazine -

Second Leak From 23andMe Data Breach Includes 4 Million More Genetic Profiles - CPO Magazine A hacker who leaked one million genetic profiles from 23andMe in early October has returned with an even larger trove, this time dumping a little over four million files and including the DNA Relatives feature that allows for connections between relations to be made.

Ransomware boom hits all-time high -

Ransomware boom hits all-time high A wave of fresh actors joining the fray helped propel a monthly tally of double-extortion victims to a new record high.

'Log in with...' Feature Allows Full Online Account Takeover for Millions -

'Log in with...' Feature Allows Full Online Account Takeover for Millions Hundreds of millions of users of Grammarly, Vidio, and the Indonesian e-commerce giant Bukalapak are at risk for financial fraud and credential theft due to OAuth misfires — and other online services likely have the same problems.

Hackers target US Facebook biz accounts with potent malware cocktail -

Hackers target US Facebook biz accounts with potent malware cocktail Multiple threat actors are using a malware as a service toolset and targeting Facebook business accounts in the U.S., UK and India.

FBI: Hackers Are Extorting Plastic Surgery Providers, Patients -

FBI: Hackers Are Extorting Plastic Surgery Providers, Patients The sensitive nature of medical records, combined with providers' focus on patient care, make small doctor's offices ideal targets for cyber extortion.

Watch Out: Attackers Are Hiding Malware in 'Browser Updates' -

Watch Out: Attackers Are Hiding Malware in 'Browser Updates' Updating your browser when prompted is a good practice, just make sure the notification comes from the vendor themselves.

Skype message threads hijacked to spread DarkGate malware -

Skype message threads hijacked to spread DarkGate malware Researchers have noticed a surge in campaigns deploying DarkGate malware via messaging platforms Skype and Microsoft Teams.

How to Identify and Avoid Online Trading Scams -

How to Identify and Avoid Online Trading Scams Follow us on Twitter - Facebook @ /Hackrea

Data Thieves Test-Drive Unique Certificate Abuse Tactic -

Data Thieves Test-Drive Unique Certificate Abuse Tactic An SEO poisoning campaign is spreading the RecordBreaker/Raccoon Stealer and LummaC2 infostealers by attempting to confound software certificate checks.

$2.7 billion lost to social media scams since 2021 -

$2.7 billion lost to social media scams since 2021 Scams originating on social media are responsible for $2.7 billion in losses since 2021, more than any other contact method, according to new data shared by the FTC.

Unkillable? Qakbot Infections Fly On Even After Its High-Profile Raid -

Unkillable? Qakbot Infections Fly On Even After Its High-Profile Raid A literal seven-nation (cyber) army wasn't enough to hold back the famous initial access broker (IAB) for long — it's been chugging along, spreading ransomware, despite a massive takedown in August.

US executives targeted in EvilProxy recruitment phishing campaign -

US executives targeted in EvilProxy recruitment phishing campaign C-level staff working across a range of industries were lured to phishing sites via redirect links purportedly from the popular Indeed job-search site.

Silent Skimmer: A Year-Long Web Skimming Campaign Targeting Online Payment Businesses -

Silent Skimmer: A Year-Long Web Skimming Campaign Targeting Online Payment Businesses Silent Skimmer - A year-long web skimming campaign targets businesses in Asia, North America, and Latin America, stealing sensitive payment data.

FBI Warns of Rising Trend of Dual Ransomware Attacks Targeting U.S. Companies -

FBI Warns of Rising Trend of Dual Ransomware Attacks Targeting U.S. Companies FBI Alert: Dual ransomware attacks are surging, targeting U.S. businesses with multiple variants.

Snapchat Safety for Parents: How to Safeguard Your Child -

Snapchat Safety for Parents: How to Safeguard Your Child Twitter - Facebook @ /Hackread

Clorox Cyber Attack to Cause Product Shortages, Impact First Quarter Results - CPO Magazine -

Clorox Cyber Attack to Cause Product Shortages, Impact First Quarter Results - CPO Magazine A cyber attack disclosed by Clorox in mid-August is now expected to negatively impact first quarter results for 2024 due to "widescale disruption" that the company is still struggling to recover from. A recent SEC filing indicates that product shortages through this period should also be expected.

Amidst MGM, Caesar's Incidents, Attackers Focus on Luxury Hotels -

Amidst MGM, Caesar's Incidents, Attackers Focus on Luxury Hotels A fast-growing cyber campaign solely takes aim at luxury hotel and resort chains, using security-disruptive tactics to spread info-stealing malware.

NFL, CISA Look to Intercept Cyber Threats to Super Bowl LVIII -

NFL, CISA Look to Intercept Cyber Threats to Super Bowl LVIII The league is working with more than 100 partners to workshop responses to a host of hypothetical cyberattacks on the upcoming Big Game in Las Vegas.

Feds issue Sn**ch ransomware warning as gang claims latest victim -

404: Not Found Copyright © 2023 CyberRisk Alliance, LLC All Rights Reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorization.

Facebook Messenger Phishing Campaign Targets Millions of Business Accounts Locking Out Owners - CPO Magazine -

Facebook Messenger Phishing Campaign Targets Millions of Business Accounts Locking Out Owners - CPO Magazine Facebook Messenger phishing campaign targeted millions of business accounts using fake and hijacked personal accounts to trick business owners into installing an infostealer that harvests passwords and cookies before locking them out.

Payment Card-Skimming Campaign Now Targeting Websites in North America -

Payment Card-Skimming Campaign Now Targeting Websites in North America "Silent Skimmer" is a technically complex campaign that has successfully targeted online businesses in the Asia Pacific region for over a year.

Healthcare IT Service Provider IBM Data Breach Impacts Johnson & Johnson Customers - CPO Magazine -

Healthcare IT Service Provider IBM Data Breach Impacts Johnson & Johnson Customers - CPO Magazine Johnson & Johnson’s IT service provider IBM has notified over 1 million Janssen CarePath customers of a data breach that leaked personal and medical information.