Cybercrime
-
Meta Faces Legal Challenge Over AI Training Data Amid GDPR Concerns
Meta is facing legal scrutiny as Noyb, a privacy advocacy group, challenges the tech giant’s AI training plans, arguing they violate GDPR. The situation highlights the ongoing conflict over user data consent in Europe.
-
Dior Reports Data Breach Affecting Customer Information Amid Cybersecurity Incident
Dior has disclosed a significant cybersecurity incident affecting customer information, emphasizing that payment details were not compromised while investigations continue into the breach’s scope.
-
Security Lapse Exposes Millions of Student-Athlete Records on PrepHero
A security lapse on PrepHero has exposed the personal data of over three million student-athletes and coaches, raising significant privacy concerns.
-
North Korean Konni APT Expands Phishing Attacks Targeting Ukraine
Konni APT, a North Korean threat actor, is reportedly conducting a phishing campaign aimed at Ukrainian government entities, signaling a strategic shift in its operations from Russia. The group aims to collect critical intelligence on the ongoing conflict, utilizing sophisticated phishing techniques and malware.
-
Marks and Spencer Reports Customer Data Breach Following Ransomware Attack
Marks and Spencer has confirmed a customer data breach resulting from a ransomware attack that occurred last month, affecting service across its stores and necessitating password resets for customers.
-
European Union Launches Robust Vulnerability Database as US Faces Cybersecurity Challenges
The European Union has launched the European Vulnerability Database (EUVD), a vital tool for managing security flaws, amid concerns about the future of the US Common Vulnerabilities and Exposures program. The EUVD aims to enhance transparency and provide real-time updates on critical vulnerabilities.
-
Turkish Espionage Group Exploits Messaging App Vulnerability to Target Kurdish Military
A Turkish espionage group, Marbled Dust, has exploited a zero-day vulnerability in the Output Messenger app to target the Kurdish military in Iraq, marking a significant shift in their cyber operations. Microsoft reveals that the attacks have been active since April 2024, urging users to upgrade their software to mitigate risk.
-
Moldova Arrests Suspect Linked to Major Ransomware Attacks on Dutch Companies
Moldovan police have arrested a 45-year-old man suspected of involvement in ransomware attacks against Dutch companies, including a significant incident impacting the Netherlands Organization for Scientific Research. The operation resulted in the seizure of over €84,000 in cash and various electronic devices.
-
Roblox Faces Class Action Lawsuit Over Alleged Privacy Violations Involving Children’s Data
Roblox is facing legal action for allegedly tracking children’s data without consent, raising concerns under the Children’s Online Privacy Protection Act (COPPA) and highlighting the need for better parental oversight regarding app security.
-
International Cybercrime Ring Disrupted as Four Arrested in Botnet Operation
Four individuals, including three Russians, have been arrested in connection with a global botnet operation that allegedly generated $46 million by selling access to infected routers. The FBI has seized associated domains as international law enforcement partners disable the botnet.
