FTC Fines Mental Health Startup Cerebral $7 Million for Major Privacy Violations

/in

The U.S. Federal Trade Commission (FTC) has ordered the mental telehealth company Cerebral from using or disclosing personal data for advertising purposes.
It has also been fined more than $7 million over charges that it revealed users’ sensitive personal health information and other data to third parties for advertising purposes and failed to honor its easy cancellation policies.
“Cerebral and

The Hacker News – ​Read More

Delinea Scrambles to Patch Critical Flaw After Failed Responsible Disclosure Attempt

/in

PAM company Delinea over the weekend rushed to patch a critical authentication bypass vulnerability after it apparently ignored the researcher who found the flaw.

The post Delinea Scrambles to Patch Critical Flaw After Failed Responsible Disclosure Attempt appeared first on SecurityWeek.

SecurityWeek – ​Read More

Researchers Stop ‘Credible Takeover Attempt’ Similar to XZ Utils Backdoor Incident

/in

Researchers at the OpenJS Foundation said Monday that they “received a suspicious series of emails with similar messages, bearing different names and overlapping GitHub-associated emails.”

Cyware News – Latest Cyber News – ​Read More

Hive RAT Creators and $3.5M Cryptojacking Mastermind Arrested in Global Crackdown

/in

Two individuals have been arrested in Australia and the U.S. in connection with an alleged scheme to develop and distribute a remote access trojan called Hive RAT (previously Firebird).
The U.S. Justice Department (DoJ) said the malware “gave the malware purchasers control over victim computers and enabled them to access victims’ private communications, their login credentials, and

The Hacker News – ​Read More

CISA Warns of Critical Vulnerability in Chirp Smart Locks

/in

Some smart locks controlled by Chirp Systems’ software can be remotely unlocked by strangers thanks to a critical security vulnerability. This remote exploitation is possible due to passwords and private keys being hard-coded in Chirp’s Android app.

Cyware News – Latest Cyber News – ​Read More

Cyber Operations Intensify in Middle East, With Israel the Main Target

/in

Cyberattacks tripled over the past year in Israel, making it the most targeted nation in 2023, as cyber operations become a standard part of military conflicts and global protests.

darkreading – ​Read More

IntelBroker Claims Space-Eyes Breach, Targeting US National Security Data

/in

By Waqas

Hacker “IntelBroker” claims to have breached Space-Eyes, a geospatial intelligence firm, exposing US national security data. Authorities investigate the claim that could impact sensitive government operations.

This is a post from HackRead.com Read the original post: IntelBroker Claims Space-Eyes Breach, Targeting US National Security Data

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Roku Mandates 2FA for Customers After Credential-Stuffing Compromise

/in

Roku assures customers that no financial information was stolen and that any purchases made through user accounts have been reimbursed.

darkreading – ​Read More

Cisco Duo’s Multifactor Authentication Service Breached

/in

A third-party telephony service provider for Cisco Duo falls prey to social engineering, and the company advises customer vigilance against subsequent phishing attacks.

darkreading – ​Read More