APT41, a Chinese state-sponsored hacking group, has targeted the gambling and gaming industry in a sophisticated cyberattack. The attack spanned several months and saw hackers collect sensitive data from their victims’ infrastructure, including network configurations and passwords. APT41, also
An ongoing malware campaign has compromised over 6,000 WordPress sites, installing malicious plugins that push infostealing malware. The campaign, known as ClearFake, began in 2023 and tricks users into installing malware through fake browser error messages. As reported by BleepingComputer, the
Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password-protected database that contained 115,000 records associated with the UN Trust Fund to End Violence against Women — aimed at preventing and addressing violence against women and girls by providing
Iranian hackers have been actively targeting critical infrastructure sectors worldwide. They have been breaching such networks and then selling access to other cybercriminals. A joint advisory from US, Canadian, and Australian cybersecurity agencies highlights that the hackers have focused on
Freedom House’s Freedom on the Net 2024 report exposed a continued global decline in internet freedom for the 14th consecutive year. It found that a significant number of governments across 72 analyzed countries employed censorship and violent retaliation for online speech, particularly during
Fidelity Investments, one of the largest asset managers in the world, has reported a data breach impacting the personal information of more than 77,000 customers. The breach occurred between August 17 and 19, 2024, and was linked to two customer accounts that had been created by unknown
Recently I discovered and shared with vpnMentor about 15 unprotected and publicly exposed databases. They contained 4.6 million records, including sensitive Illinois voter information. Now that the dust has settled and as the US election nears, I wanted to reflect on the potential vulnerabilities
Casio, the Japanese electronics giant, confirmed that a ransomware attack earlier this month resulted in the exposure of over 200 GB of sensitive data. The breach, which occurred on October 5, was linked to the Underground ransomware group, a relatively new player in the cybercrime world. This
Money transfer giant MoneyGram has confirmed a major data breach in which hackers stole sensitive personal and transaction information of customers following a cyberattack between September 20 and 22, 2024. The attack, which resulted in a temporary system outage, has left customers vulnerable to
Elon Musk's X, formerly known as Twitter, returned to service in Brazil on October 9, 2024, following a month-long suspension imposed by the Brazilian Supreme Court. The platform had been banned for failing to meet court demands related to content moderation, particularly concerning the spread of