Hackers are actively exploiting vulnerabilities in Fortinet firewalls to deploy ransomware, targeting organizations that have yet to patch their systems. The Mora_001 ransomware gang, which has ties to the notorious LockBit group, has been using two specific Fortinet flaws — CVE-2024-55591 and
vpnMentor’s Research Team observed a whopping 10.000% surge in VPN demand in Turkey amidst the controversial detention of Istanbul Mayor Ekrem İmamoğlu. Following his arrest, authorities restricted access to social media and messaging platforms across the country. Key facts: On the morning of
A new phishing campaign has been targeting Coinbase users, tricking them into setting up a new wallet with a pre-generated recovery phrase that’s controlled by the attackers. The scam email masquerades as an official communication from Coinbase, instructing users to switch to self-custodial
Amazon Web Services (AWS) is under scrutiny for continuing to host stolen data from victims of three stalkerware apps — Cocospy, Spyic, and Spyzie — weeks after being alerted to its presence. These apps, designed for covert surveillance, secretly extract and upload victims' personal data to
Levi & Korsinsky LLP has launched an investigation into Yahoo over claims that the company unlawfully shared private user information. The law firm is preparing arbitration demands for Yahoo account holders who may have been impacted by improper data sharing. California residents who used Yahoo
PowerSchool, a major provider of education software solutions, was compromised months before its December 2024 data breach, according to a forensic investigation by cybersecurity firm CrowdStrike. The company had initially reported that hackers gained unauthorized access between December 19 and
A growing phishing scam is tricking US residents into paying fake parking fines. Since December 2024, scammers have been sending text messages stating that recipients have unpaid parking violations and face a $35 daily penalty unless they settle immediately. The scam is widespread, with
The UK government has quietly removed advice from its official cybersecurity guidelines that told high-risk individuals to enable Apple’s Advanced Data Protection (ADP), just weeks after demanding that Apple provide a backdoor that would allow the bypassing of this encryption. The removal, first
ExpressVPN has unveiled a major update for Linux users, introducing a full graphical user interface (GUI) for its VPN app. This update is designed to make the app more accessible for those who would rather not use the command line. Previously, ExpressVPN’s Linux app was command-line only,
A ransomware attack targeting newspaper giant Lee Enterprises has disrupted its ability to process payments for its hired freelancers and contractors, leaving many without compensation. The cyberattack, which began on February 3, 2025, has caused ongoing operational issues, affecting print