Amazon Web Services (AWS) is under scrutiny for continuing to host stolen data from victims of three stalkerware apps — Cocospy, Spyic, and Spyzie — weeks after being alerted to its presence. These apps, designed for covert surveillance, secretly extract and upload victims' personal data to
Levi & Korsinsky LLP has launched an investigation into Yahoo over claims that the company unlawfully shared private user information. The law firm is preparing arbitration demands for Yahoo account holders who may have been impacted by improper data sharing. California residents who used Yahoo
PowerSchool, a major provider of education software solutions, was compromised months before its December 2024 data breach, according to a forensic investigation by cybersecurity firm CrowdStrike. The company had initially reported that hackers gained unauthorized access between December 19 and
A growing phishing scam is tricking US residents into paying fake parking fines. Since December 2024, scammers have been sending text messages stating that recipients have unpaid parking violations and face a $35 daily penalty unless they settle immediately. The scam is widespread, with
The UK government has quietly removed advice from its official cybersecurity guidelines that told high-risk individuals to enable Apple’s Advanced Data Protection (ADP), just weeks after demanding that Apple provide a backdoor that would allow the bypassing of this encryption. The removal, first
ExpressVPN has unveiled a major update for Linux users, introducing a full graphical user interface (GUI) for its VPN app. This update is designed to make the app more accessible for those who would rather not use the command line. Previously, ExpressVPN’s Linux app was command-line only,
A ransomware attack targeting newspaper giant Lee Enterprises has disrupted its ability to process payments for its hired freelancers and contractors, leaving many without compensation. The cyberattack, which began on February 3, 2025, has caused ongoing operational issues, affecting print
An emerging ClickFix phishing scam is exploiting Microsoft SharePoint to lure victims into running PowerShell commands that install the Havoc post-exploitation framework. Uncovered by Fortinet’s FortiGuard Labs, the attack uses fraudulent OneDrive errors to deceive users into executing malicious
Israeli digital forensics company Cellebrite has suspended its services in Serbia after allegations that Serbian authorities used its technology to plant spyware on the phones of a journalist and an activist. The decision follows a report from Amnesty International, published in December 2024,
A new cybercrime campaign is preying on Web3 job seekers by using fake job interviews to spread "GrassCall" malware. The Russian-speaking cybercriminal group Crazy Evil orchestrated the scam by posting deceptive job listings and luring applicants into downloading a phony video conferencing app.