Apple patched ninth zero-day bug exploited in the wild this year

Apple has patched two iOS zero-day flaws that “could have been actively exploited” to gain access to older iPhone, iPad, and iPod devices.   Memory corruption and use after free…

U.S. recovers 63.7 of 75 bitcoins ransom paid to Colonial Pipeline hackers

The US Department of Justice said on Monday that it has recovered 63.7 bitcoins (worth $2.3 million) paid by Colonial Pipeline to the DarkSide ransomware extortionists on May 8, due…

Latvian woman charged for developing trickbot banking malware

Max, the 55-year-old Latvian lady was charged on multiple counts, for her participation in programming malware for the infamous Trickbot group.   After being detained in February in Miami, Alla…

Apple releases fixes zero-day vulnerabilities for its operating systems

Apple released security updates for iOS, macOS, tvOS, watchOS, and the Safari web browser on Monday to patch a number of issues, including an actively exploited zero-day vulnerability in macOS…

New Bluetooth flaws allow hackers to impersonate legit devices

Adversaries may impersonate legitimate devices and carry out man-in-the-middle (MitM) attacks using newly discovered security flaws in Bluetooth Core and Mesh Profile Specifications.   Devices that support the Bluetooth Core…

UK regulator fined £90,000 Amex for sending 4 million spam emails

The UK data regulator fined American Express (Amex) £90,000 for sending over 4 million spam emails to customers in a year.   During the inquiry, the UK Information Commissioner’s Office…

Domino’s data breach: Users’ data available on dark web

Domino’s, the famous pizza chain, has once again been the victim of a data breach.   According to cybersecurity expert, the dark web has data on 18 million orders.  …

Microsoft warns of data stealing malware (StrRAT Fake-Ransomware RAT)

Microsoft has issued an alert about a “massive email campaign” that uses the Java-based STRRAT malware to steal sensitive data from compromised systems while masquerading as a ransomware infection.  …

E-commerce giant Mercari data breach: several data exposed

Mercari, an e-commerce platform, has revealed a significant data breach that occurred as a result of the Codecov supply-chain attack.   Mercari is a publicly listed Japanese online marketplace that…

Air India Data Breach: Over 4.5 million customers’ data impacted

Following the hack of Passenger Service System provider SITA in February 2021, Air India revealed a data breach that exposed the personal details of about 4.5 million of its customers.…