Catalin Cimpanu

Magazines

Flips

Technology
Congress wants Facebook to explain why closed groups leaked user data
ZDNet - Catalin Cimpanu
Little-known user data leak uncovered in July 2018 comes back to haunt Facebook. Members of the US House of Representatives Energy and Commerce …
Technology
Malvertising campaign hits US users hard over Presidents' Day weekend
ZDNet - Catalin Cimpanu
Cyber-security firm Confiant reports as many as 800 million malicious ad impressions recorded over a three-day period. A massive malvertising campaign …
Technology
Rietspoof malware spreads via Facebook Messenger and Skype spam
ZDNet - Catalin Cimpanu
Avast researchers spot new malware spreading via instant messaging clients. Avast security researchers have discovered a new malware strain named …
Technology
Bitdefender releases third GandCrab ransomware free decrypter in the past year
ZDNet - Catalin Cimpanu
Recent decrypter update lets victims who got infected with GandCrab between November 2018 and February 2019 recover files without paying the ransom …
Cybersecurity
You have around 20 minutes to contain a Russian APT attack
ZDNet - Catalin Cimpanu
Russian state hackers don't leave room for error in your cyber-security defenses. Governments and private organizations have around 20 minutes to …
Technology
Splunk pulls out of Russia with mysterious statement
ZDNet - Catalin Cimpanu
Company to honor ongoing contracts, but the long term plan is to stop selling Splunk access to Russian companies. Cyber-security and data analytics …
Technology
White hats spread VKontakte worm after social network doesn't pay bug bounty
ZDNet - Catalin Cimpanu
VKontakte flooded with spam over Valentine's Day as part of a revenge prank. White hat hackers have flooded VKontakte (VK) with spam on Valentine's …
Technology
Tor traffic from individual Android apps detected with 97 percent accuracy
ZDNet - Catalin Cimpanu
New machine learning algorithm can detect when you're using a specific app, such as YouTube, Instagram, Spotify, others. Italian academics say they've …
Technology Policy
Hacker puts up for sale third round of hacked databases on the Dark Web
ZDNet - Catalin Cimpanu
Hacker is selling 93 million user records from eight companies, including GfyCat. A hacker going by the name of Gnosticplayers has put up for sale …
Technology
Google backtracks on Chrome modifications that would have crippled ad blockers
ZDNet - Catalin Cimpanu
Google changes stance on upcoming Chrome Manifest V3 changes as benchmark shows they lied about performance hit. A study analyzing the performance of …
Apps
Microsoft removes eight cryptojacking apps from official store
ZDNet - Catalin Cimpanu
Eight Windows 10 apps removed from the Microsoft Store after getting caught mining Monero behind users' backs. Microsoft has removed from the official …
Technology
GAO gives Congress go-ahead for a GDPR-like privacy legislation
ZDNet - Catalin Cimpanu
Government officials, academia, and advocacy groups say it's time for the US to get its own GDPR-type law. An independent report authored by a US …
Technology
The EU's new copyright laws threaten to destroy the internet
ZDNet - Steven J. Vaughan-Nichols
The EU's new copyright laws will force all websites to check all posts to see if anything ever published might be a copyright violation. That will …
Technology
Google working on new Chrome security feature to 'obliterate DOM XSS'
ZDNet - Catalin Cimpanu
Google announces Trusted Types browser API, a new defense against DOM-based XSS attacks. Google has created a new browser API that will help Chrome …
Technology
Google is running an auto-update-to-HTTPS experiment in Chrome
ZDNet - Catalin Cimpanu
Google engineers are looking for a fix for HTTPS mixed content errors and they appear to have the right idea. The Google Chrome team will be running …
Another WordPress commercial plugin gets exploited in the wild
ZDNet - Catalin Cimpanu
The large number of WordPress commercial plugins are creating a new attack surface on the WordPress site landscape. Hackers are exploiting an old …
Cybersecurity
GandCrab ransomware gang infects customers of remote IT support firms
ZDNet - Catalin Cimpanu
At least 126 managed service providers forgot to update a plugin back in 2017 and are now vulnerable to attacks. Hackers have used a two-year-old …
Artificial Intelligence
Chinese company leaves Muslim-tracking facial recognition database exposed online
ZDNet - Catalin Cimpanu
Researcher finds one of the databases used to track Uyghur Muslim population in Xinjiang. One of the facial recognition databases that the Chinese …
Technology
127 million user records from 8 companies put up for sale on the dark web
ZDNet - Catalin Cimpanu
The same hacker sold 620 million user accounts from 16 other companies earlier this week. An individual who earlier this week was selling 620 million …
Technology
Hackers tried to steal €13 million from Malta's Bank of Valletta
ZDNet - Catalin Cimpanu
Hackers tried to send funds to banks in the UK, the US, the Czech Republic, and Honk Kong. Transactions are being reverted. Malta's oldest bank …
Google Play
Google Play Store app rejections up 55% from last year, app suspensions up 66%
ZDNet - Catalin Cimpanu
80% of Google Play Store policy violations caused by repeat offenders In a year-in-review announcement today, Google said Play Store app rejections …
Game of Thrones
Game of Thrones hacker worked with US defector to hack Air Force employees for Iran
ZDNet - Catalin Cimpanu
Former US Air Force intelligence agent passed crucial information to Iranian state hackers after she defected to Iran in 2013. The US Department of …
Technology
FBI arrests second Apophis Squad hacker in the US
ZDNet - Catalin Cimpanu
First hacker already serving a three-year prison sentence in the UK. The FBI arrested yesterday a hacker part of a hacking team known as Apophis …
Apps
New macOS security flaw lets malicious apps steal your Safari browsing history
ZDNet - Catalin Cimpanu
Vulnerability is not remotely exploitable. Users need to install a malicious app beforehand. Exploitation details have been shared privately with …
Microsoft
Microsoft February Patch Tuesday fixes 77 security flaws, including IE zero-day
ZDNet - Catalin Cimpanu
Microsoft's February security updates address 76 bugs, 20 of which have been classified as "critical." Microsoft released today its monthly roll-up of …
Ubuntu
Dirty Sock vulnerability lets attackers gain root access on Linux systems
ZDNet - Catalin Cimpanu
After Dirty COW caused headaches in 2016, now Linux sysadmins have to worry about Dirty Sock. A security researcher published today proof-of-concept …
Researchers hide malware in Intel SGX enclaves
ZDNet - Catalin Cimpanu
Researchers also publish proof-of-concept code for enclave malware on GitHub. A team of academics has found a way to abuse Intel SGX enclaves to hide …
Technology
Google publishes 14 official Chrome themes
ZDNet - Catalin Cimpanu
This marks the first time Google has released any official Chrome themes. Google's Chrome team has published yesterday 14 official themes for the …
Technology
Hackers wipe US servers of email provider VFEmail
ZDNet - Catalin Cimpanu
Hackers did not ask for a ransom. VFEmail described the incident as "attack and destroy." Hackers have breached the severs of email provider …
Technology
Dunkin' Donuts accounts compromised in second credential stuffing attack in three months
ZDNet - Catalin Cimpanu
Hacked Dunkin' Donuts accounts are now being sold on Dark Web forums. Dunkin' Donuts announced today that it was the victim of a credential stuffing …

Catalin Cimpanu

Magazines

Security

Web

Technology

Privacy

Flips

Congress wants Facebook to explain why closed groups leaked user data

Malvertising campaign hits US users hard over Presidents' Day weekend

Rietspoof malware spreads via Facebook Messenger and Skype spam

Bitdefender releases third GandCrab ransomware free decrypter in the past year

You have around 20 minutes to contain a Russian APT attack

Splunk pulls out of Russia with mysterious statement

White hats spread VKontakte worm after social network doesn't pay bug bounty

Tor traffic from individual Android apps detected with 97 percent accuracy

Hacker puts up for sale third round of hacked databases on the Dark Web

Google backtracks on Chrome modifications that would have crippled ad blockers

Microsoft removes eight cryptojacking apps from official store

GAO gives Congress go-ahead for a GDPR-like privacy legislation

The EU's new copyright laws threaten to destroy the internet

Google working on new Chrome security feature to 'obliterate DOM XSS'

Google is running an auto-update-to-HTTPS experiment in Chrome

Another WordPress commercial plugin gets exploited in the wild

GandCrab ransomware gang infects customers of remote IT support firms

Chinese company leaves Muslim-tracking facial recognition database exposed online

127 million user records from 8 companies put up for sale on the dark web

Hackers tried to steal €13 million from Malta's Bank of Valletta

Google Play Store app rejections up 55% from last year, app suspensions up 66%

Game of Thrones hacker worked with US defector to hack Air Force employees for Iran

FBI arrests second Apophis Squad hacker in the US

New macOS security flaw lets malicious apps steal your Safari browsing history

Microsoft February Patch Tuesday fixes 77 security flaws, including IE zero-day

Dirty Sock vulnerability lets attackers gain root access on Linux systems

Researchers hide malware in Intel SGX enclaves

Google publishes 14 official Chrome themes

Hackers wipe US servers of email provider VFEmail

Dunkin' Donuts accounts compromised in second credential stuffing attack in three months