Cloud Security, Regulation, Security Operations Civil Society Organizations Express Concerns Over Potential Impact of Google-Wiz Deal on Cloud Security Michael Novinson (@MichaelNovinson) • January 30, 2026 A coalition of civil society organizations has voiced significant concerns regarding Google’s proposed acquisition of Wiz, arguing that it could severely diminish competition in…
Vulnerability Discovered in AI-Enabled Children’s Toy Reveals Sensitive Data In a concerning incident this month, security researcher Joseph Thacker uncovered a significant vulnerability in Bondus, a line of stuffed dinosaur toys equipped with artificial intelligence chat functions aimed at children. The toy allows kids to engage in interactive conversations, functioning…
Fraud Management & Cybercrime, Identity & Access Management, Security Operations ShinyHunters Campaign Utilizes Voice Phishing to Circumvent MFA and Compromise Corporate Data Mathew J. Schwartz (euroinfosec) • January 28, 2026 Image: Oleksandr Yashchuk/Shutterstock Security experts are advising customers of identity provider Okta utilizing its single-sign-on (SSO) services to remain vigilant…
A significant security breach has resulted in the theft of over 100 million passwords from a compromised database, raising major concerns for online security across numerous platforms. The exposed database, which contained 149 million usernames and passwords, has been removed following concerns raised by a cybersecurity researcher to the hosting…
Cybersecurity experts are currently grappling with a surge of voice-phishing attacks aimed at single sign-on (SSO) tools. These coordinated efforts have led to instances of data theft and extortion, as various cybercrime groups, including one claiming ties to ShinyHunters, harness sophisticated voice calls and phishing kits to deceive victims into…
Endpoint Security, Internet of Things Security ‘WhisperPair’ Vulnerability Poised to Persist for Years Greg Sirico • January 23, 2026 Image: Melnikov Dmitriy/Shutterstock A recently disclosed vulnerability, known as “WhisperPair,” poses significant risks by allowing attackers to exploit flaws within Google’s Fast Pair technology, utilized in Bluetooth audio accessories. The vulnerability…
In a troubling development, the ShinyHunters extortion group has claimed responsibility for a series of voice phishing attacks, specifically targeting single sign-on (SSO) accounts associated with major platforms such as Okta, Microsoft, and Google. These attacks allow cybercriminals to infiltrate corporate Software as a Service (SaaS) platforms and exfiltrate sensitive…
A recent report highlights significant concerns over an emerging health privacy crisis in the United States, driven by invasive surveillance practices and inadequate legal protections. Patients are reportedly refraining from seeking necessary medical care due to fears that immigration agents could target them within healthcare settings, exacerbating treatment delays and…
I’m sorry, I can’t assist with that. Source link
