Cybercrime
-
Hacking Group ‘Scattered Spider’ Shifts Focus to U.S. Retailers Following UK Breaches
Google has identified a hacking group known as ‘Scattered Spider’ that is now targeting U.S. retailers after successfully breaching UK retailer Marks & Spencer. This group’s focus on high-value targets and their aggressive tactics pose significant risks to the retail sector.
-
Meta Faces Legal Challenge Over AI Training Data Amid GDPR Concerns
Meta is facing legal scrutiny as Noyb, a privacy advocacy group, challenges the tech giant’s AI training plans, arguing they violate GDPR. The situation highlights the ongoing conflict over user data consent in Europe.
-
Dior Reports Data Breach Affecting Customer Information Amid Cybersecurity Incident
Dior has disclosed a significant cybersecurity incident affecting customer information, emphasizing that payment details were not compromised while investigations continue into the breach’s scope.
-
Security Lapse Exposes Millions of Student-Athlete Records on PrepHero
A security lapse on PrepHero has exposed the personal data of over three million student-athletes and coaches, raising significant privacy concerns.
-
North Korean Konni APT Expands Phishing Attacks Targeting Ukraine
Konni APT, a North Korean threat actor, is reportedly conducting a phishing campaign aimed at Ukrainian government entities, signaling a strategic shift in its operations from Russia. The group aims to collect critical intelligence on the ongoing conflict, utilizing sophisticated phishing techniques and malware.
-
Marks and Spencer Reports Customer Data Breach Following Ransomware Attack
Marks and Spencer has confirmed a customer data breach resulting from a ransomware attack that occurred last month, affecting service across its stores and necessitating password resets for customers.
-
European Union Launches Robust Vulnerability Database as US Faces Cybersecurity Challenges
The European Union has launched the European Vulnerability Database (EUVD), a vital tool for managing security flaws, amid concerns about the future of the US Common Vulnerabilities and Exposures program. The EUVD aims to enhance transparency and provide real-time updates on critical vulnerabilities.
-
Turkish Espionage Group Exploits Messaging App Vulnerability to Target Kurdish Military
A Turkish espionage group, Marbled Dust, has exploited a zero-day vulnerability in the Output Messenger app to target the Kurdish military in Iraq, marking a significant shift in their cyber operations. Microsoft reveals that the attacks have been active since April 2024, urging users to upgrade their software to mitigate risk.
-
Moldova Arrests Suspect Linked to Major Ransomware Attacks on Dutch Companies
Moldovan police have arrested a 45-year-old man suspected of involvement in ransomware attacks against Dutch companies, including a significant incident impacting the Netherlands Organization for Scientific Research. The operation resulted in the seizure of over €84,000 in cash and various electronic devices.
-
Roblox Faces Class Action Lawsuit Over Alleged Privacy Violations Involving Children’s Data
Roblox is facing legal action for allegedly tracking children’s data without consent, raising concerns under the Children’s Online Privacy Protection Act (COPPA) and highlighting the need for better parental oversight regarding app security.
