- Verizon’s DBIR Reveals 34% Jump in Vulnerability Exploitationon April 23, 2025 at 3:15 pm
After a 180% rise in last year’s report, the exploitation of vulnerabilities continues to grow, now accounting for 20% of all breaches
- FBI Reveals “Staggering” $16.6bn Lost to Cybercrime in 2024on April 23, 2025 at 2:30 pm
The FBI found that cybercrime losses climbed by 33% compared to 2023, driven by tactics like investment fraud and BEC
- Vulnerability Exploitation and Credential Theft Now Top Initial Access Vectorson April 23, 2025 at 1:01 pm
Mandiant’s M-Trends report found that credential theft rose significantly in 2024, driven by the growing use of infostealers
- US Data Breach Victim Count Surges 26% Annuallyon April 23, 2025 at 9:30 am
The latest ITRC data finds breach volumes remained flat in Q1 but victim numbers increased 26% annually
- M&S Grapples with Cyber Incident Affecting In-Store Serviceson April 23, 2025 at 9:15 am
Marks and Spencer has confirmed that it has been managing a cyber incident for the past few days which affected its contactless payments and click and collect services
Hacks – Threatpost The First Stop For Security News
- Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firmsby Nate Nelson on August 29, 2022 at 2:56 pm
Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.
- iPhone Users Urged to Update to Patch 2 Zero-Daysby Elizabeth Montalbano on August 19, 2022 at 3:25 pm
Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack.
- APT Lazarus Targets Engineers with macOS Malwareby Elizabeth Montalbano on August 17, 2022 at 3:07 pm
The North Korean APT is using a fake job posting for Coinbase in a cyberespionage campaign targeting users of both Apple and Intel-based systems.
- Black Hat and DEF CON Roundupby Threatpost on August 15, 2022 at 1:56 pm
‘Summer Camp’ for hackers features a compromised satellite, a homecoming for hackers and cyberwarfare warnings.
- New Hacker Forum Takes Pro-Ukraine Stanceby Elizabeth Montalbano on August 11, 2022 at 3:14 pm
A uniquely politically motivated site called DUMPS focuses solely on threat activity directed against Russia and Belarus
Mobile Security – Threatpost The First Stop For Security News
- iPhone Users Urged to Update to Patch 2 Zero-Daysby Elizabeth Montalbano on August 19, 2022 at 3:25 pm
Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack.
- Xiaomi Phone Bug Allowed Payment Forgeryby Nate Nelson on August 16, 2022 at 12:26 pm
Mobile transactions could’ve been disabled, created and signed by attackers.
- Google Boots Multiple Malware-laced Android Apps from Marketplaceby Elizabeth Montalbano on July 18, 2022 at 12:32 pm
Google removed eight Android apps, with 3M cumulative downloads, from its marketplace for being infected with a Joker spyware variant.
- Leaky Access Tokens Exposed Amazon Photos of Usersby Nate Nelson on June 29, 2022 at 8:18 pm
Hackers with Amazon users’ authentication tokens could’ve stolen or encrypted personal photos and documents.
- Google Warns Spyware Being Deployed Against Android, iOS Usersby Elizabeth Montalbano on June 24, 2022 at 11:02 am
The company is warning victims in Italy and Kazakhstan that they have been targeted by the malware from Italian firm RCS Labs.
Krebs on Security In-depth security news and investigation
- DOGE Worker’s Code Supports NLRB Whistleblowerby BrianKrebs on April 23, 2025 at 8:45 pm
A whistleblower at the National Labor Relations Board (NLRB) alleged last week that denizens of Elon Musk’s Department of Government Efficiency (DOGE) siphoned gigabytes of data from the agency’s sensitive case files in early March. The whistleblower said accounts created for DOGE at the NLRB downloaded three code repositories from GitHub. Further investigation into one of those code bundles shows it is remarkably similar to a program published in January 2025 by Marko Elez, a 25-year-old DOGE employee who has worked at a number of Musk’s companies.
- Whistleblower: DOGE Siphoned NLRB Case Databy BrianKrebs on April 22, 2025 at 1:48 am
A security architect with the National Labor Relations Board (NLRB) alleges that employees from Elon Musk’s Department of Government Efficiency (DOGE) transferred gigabytes of sensitive data from agency case files in early March, using short-lived accounts configured to leave few traces of network activity. The NLRB whistleblower said the unusual large data outflows coincided with multiple blocked login attempts from an Internet address in Russia that tried to use valid credentials for a newly-created DOGE user account.
- Funding Expires for Key Cyber Vulnerability Databaseby BrianKrebs on April 16, 2025 at 3:59 am
A critical resource that cybersecurity professionals worldwide rely on to identify, mitigate and fix security vulnerabilities in software and hardware is in danger of breaking down. The federally funded, non-profit research and development organization MITRE warned today that its contract to maintain the Common Vulnerabilities and Exposures (CVE) program — which is traditionally funded each year by the Department of Homeland Security — expires on April 16.
- Trump Revenge Tour Targets Cyber Leaders, Electionsby BrianKrebs on April 15, 2025 at 3:27 am
President Trump last week revoked security clearances for Chris Krebs, the former director of the Cybersecurity and Infrastructure Security Agency (CISA) who was fired by Trump after declaring the 2020 election the most secure in U.S. history. The White House memo, which also suspended clearances for other security professionals at Krebs’s employer SentinelOne, comes as CISA is facing huge funding and staffing cuts.
- China-based SMS Phishing Triad Pivots to Banksby BrianKrebs on April 10, 2025 at 3:31 pm
China-based purveyors of SMS phishing kits are enjoying remarkable success converting phished payment card data into mobile wallets from Apple and Google. Until recently, the so-called “Smishing Triad” mainly impersonated toll road operators and shipping companies. But experts say these groups are now directly targeting customers of international financial institutions, while dramatically expanding their cybercrime infrastructure and support staff.