A novel phishing campaign is targeting SEO experts by utilizing counterfeit Semrush Google Ads crafted with the aim of capturing Google login information. Cybercriminals are leveraging these advertisements in order to gain access to valuable Google Ads and analytics accounts. These could then be
SpyX, a consumer-grade spyware app marketed as parental monitoring software, has suffered a major data breach affecting nearly 2 million, including thousands of Apple users. The breach occurred in June 2024 but remained unreported until now, with no notification issued to affected users. The
More than 500,000 individuals are being notified after a cyberattack on the Pennsylvania State Education Association (PSEA) compromised their personal data in July 2024. The union, which represents over 178,000 education professionals across Pennsylvania, said in breach notification letters that
Hackers are actively exploiting vulnerabilities in Fortinet firewalls to deploy ransomware, targeting organizations that have yet to patch their systems. The Mora_001 ransomware gang, which has ties to the notorious LockBit group, has been using two specific Fortinet flaws — CVE-2024-55591 and
vpnMentor’s Research Team observed a whopping 10.000% surge in VPN demand in Turkey amidst the controversial detention of Istanbul Mayor Ekrem İmamoğlu. Following his arrest, authorities restricted access to social media and messaging platforms across the country. Key facts: On the morning of
A new phishing campaign has been targeting Coinbase users, tricking them into setting up a new wallet with a pre-generated recovery phrase that’s controlled by the attackers. The scam email masquerades as an official communication from Coinbase, instructing users to switch to self-custodial
Amazon Web Services (AWS) is under scrutiny for continuing to host stolen data from victims of three stalkerware apps — Cocospy, Spyic, and Spyzie — weeks after being alerted to its presence. These apps, designed for covert surveillance, secretly extract and upload victims' personal data to
Levi & Korsinsky LLP has launched an investigation into Yahoo over claims that the company unlawfully shared private user information. The law firm is preparing arbitration demands for Yahoo account holders who may have been impacted by improper data sharing. California residents who used Yahoo
PowerSchool, a major provider of education software solutions, was compromised months before its December 2024 data breach, according to a forensic investigation by cybersecurity firm CrowdStrike. The company had initially reported that hackers gained unauthorized access between December 19 and
A growing phishing scam is tricking US residents into paying fake parking fines. Since December 2024, scammers have been sending text messages stating that recipients have unpaid parking violations and face a $35 daily penalty unless they settle immediately. The scam is widespread, with