A significant cybersecurity threat has emerged as the Kinsing group exploits a severe vulnerability in Apache ActiveMQ servers, leading to infections of Linux systems with cryptocurrency miners and rootkits. This critical flaw is identified as CVE-2023-46604, categorized as having a maximum CVSS score of 10.0, which allows remote code execution.…
Image credit: Times of Israel. Aleksei Burkov, a 29-year-old hacker from Russia, recently pleaded guilty to numerous charges linked to the operation of two illicit online platforms, enabling cybercriminal activities that led to over $20 million in credit card fraud. Burkov’s first venture was a site named Cardplanet, an online…
The Equifax data breach has intensified, revealing that an additional 2.5 million U.S. consumers were affected, raising the total number of potential victims from 143 million to 145.5 million. This data breach, initially reported last month, involves the exposure of highly sensitive personal information, including names, Social Security numbers, birth…
Finance & Banking, Fraud Management & Cybercrime, Fraud Risk Management Limited Advances in Mandating Customer Compensation for Financial Scams Suparna Goswami (gsuparna) • December 26, 2025 Ken Palla, Fraud Expert and Former Director at MUFG Bank In 2025, financial scams and synthetic identity fraud persisted with little indication of decline,…
On December 25, coinciding with global Christmas celebrations, the Everest ransomware group released a statement on its dark web leak site alleging a breach of Chrysler systems, a prominent American automobile manufacturer. The group claims to have extracted a staggering 1,088 GB (over 1 TB) of data, which they characterize…
Recent cybersecurity alerts highlight the exploitation of a critical vulnerability in Citrix NetScaler application delivery control (ADC) and Gateway appliances by numerous threat actors, including affiliates of the notorious LockBit ransomware group. This new wave of attacks takes advantage of CVE-2023-4966, a severe flaw that has allowed adversaries to infiltrate…
Emotet Malware Adopts New Wi-Fi Hacking Methodology Emotet, an infamous trojan responsible for numerous botnet-driven spam campaigns and ransomware attacks, has evolved its attack techniques by exploiting already infected devices to identify new victims connected to nearby Wi-Fi networks. Researchers at Binary Defense have identified a new strain of Emotet…
In one of the most significant data breaches in modern history, Yahoo has revised the estimated number of compromised accounts from 1 billion to an astonishing 3 billion. This information comes in the wake of an investigation following Verizon’s acquisition of Yahoo and indicates a breach that affected every account…
In the evolving landscape of healthcare, the surge of mergers and acquisitions (M&A) presents heightened vulnerabilities in cybersecurity and data privacy for both buyers and sellers, according to attorney Jonian Rafti from Proskauer. He emphasizes that while entities are often focused on financial gains, they must also be acutely aware…
