Facebook pays $725 million to settle lawsuit over Cambridge Analytica data breach
Meta Platforms, the parent company of Facebook, Instagram, and WhatsApp, has agreed to pay $725 million to settle a lengthy class-action lawsuit filed in 2018. application used by Cambridge Analytica to access users’ personal information without consent for political advertising purposes. The proposed settlement, first reported by Reuters last week, is the latest penalty the […]
The Era of Cyber Threat Information Sharing
We have spent 40 years protecting ourselves as individuals. We tried to trick and outsmart the cybercriminals, but when all our efforts failed, we thought of working with our peers to outnumber them. Cybercriminals don’t remake themselves every time. They have limited resources and limited budgets. So they use playbooks to attack a lot of […]
Over 829 million cyberattacks blocked in Q4
In the fourth quarter (Q4) of 2022, over 829 million cyberattacks were blocked globally, including 59% of Indian websites. According to application security firm Industace, the report said there was a sharp increase in the intensity and frequency of DDoS and bot attacks in 2004 compared to the third quarter. “During the quarter, we saw […]
BrasDex is a new Android malware from Casbaneiro Actors
A new Android malware called BrasDex was exposed to users in Brazil as part of a multi-platform campaign. The malware targets a series of Brazilian applications and high-performance Automated Transfer System (ATS) engines in an ongoing multi-platform campaign. Diving into Details BrasDex, a trojan for Android, was developed by the attackers who created the Casbaneiro […]
85% of attacks now use encrypted channels
According to Zscaler, malware continues to be the biggest threat to individuals and businesses across nine key industries, with manufacturing, education, and healthcare being the most common targets. Encryption attacks remain a serious problem for countries around the world, with the United States, India and Japan seeing the largest increases in attacks in 12 years. […]
Google takes Gmail security to the next level with client-side encryption
Google announced Friday that client-side encryption for Gmail is in beta for workspace and education customers. This is part of an effort to secure emails sent through her web version of the platform. This development comes at a time when online privacy and data security concerns are at an all-time high, and is a welcome […]
South Delhi businessman duped of over Rs 50 lakh through missed calls, cops say no OTP was shared
A South Delhi-based businessman was duped of more than Rs 50 lakh by unknown fraudsters through missed calls, the police said Tuesday, adding that the businessman had not shared his OTP or personal details with the accused. According to the man’s complaint, he received a series of missed calls from an unknown number. He even […]
24% of Technology applications contain high-risk security vulnerabilities
With a higher percentage of applications arguably processed than other industries, technology companies can benefit from implementing improved secure coding training and practices for their development teams. In fact, Veracode revealed that 24% of applications in the technology sector contain vulnerabilities considered high-risk. “Expanding software security intuition by providing developers with hands-on experience of what […]
Tech InDepth: Understanding a future without passkeys and passwords
Tech giants like Apple and Google don’t always have the same mindset when it comes to innovation. For example, take the RCS vs. iMessage debate. But if there’s one thing they’ve agreed on over the years, it’s to do away with passwords and introduce the next step in online security: passkeys. As this report shows, […]
Unpatched ModSecurity CRS vulnerabilities leave web servers open to denial-of-service attacks
ReDoS flaws discovered in the OWASP Core Rule Set A clutch of unpatched vulnerabilities in ModSecurity’s OWASP Core Rule Set has left potentially thousands of web servers open to denial-of-service (DoS) attacks. ModSecurity is a popular open source web application firewall (WAF) that are designed to help stop attacks or unwanted behavior against applications by […]