PayPal and Twitter abused in Turkey relief donation scams and hackers breach Reddit

Cybercriminals have once again abused a crisis to profit from in appalling techniques that are worryingly successful. Relief donation scams rely on targeting people’s emotions and luring them into donating their money before or without any prior due diligence. According to Bleeping Computer, multiple scams are running on Twitter and abusing legitimate platforms like PayPal’s … More PayPal and Twitter abused in Turkey relief donation scams and hackers breach Reddit

New ransomware attacking Android mobiles by tricking Reddit users

ESET researchers discover a new Android ransomware family that attempts to spread to victims’ contacts and deploys some unusual tricks. NOTE: Users with ESET Mobile Security receive a warning about the malicious link; should they ignore the warning and download the app, the security solution will block it. After two years of decline in Android … More New ransomware attacking Android mobiles by tricking Reddit users

Scam iOS apps promise fitness, steal money instead

Fitness-tracking apps use dodgy in-app payments to steal money from unaware iPhone and iPad users. Multiple apps posing as fitness-tracking tools were caught misusing Apple’s Touch ID feature to steal money from iOS users. The dodgy payment mechanism used by the apps is activated while victims are scanning their fingerprint seemingly for fitness-tracking purposes. There … More Scam iOS apps promise fitness, steal money instead

Reddit reveals breach as attacker circumvents staff’s 2FA

The company has learned the hard way that there are better ways to deliver two-factor authentication than via text messages. Reddit has announced that a hacker has broken into some of its systems and accessed some user data, including an old database backup copy containing user credentials, email addresses, and messages. Additionally, the breach affected … More Reddit reveals breach as attacker circumvents staff’s 2FA

10 things to know about the October 21 IoT DDoS attacks

On Friday, October 21, a series of Distributed Denial of Service (DDoS) attacks caused widespread disruption of legitimate internet activity in the US. Because the attacks targeted the Domain Name System (DNS) that makes sure information requests on the internet are delivered to the right address, a lot of normal activities such as online shopping, … More 10 things to know about the October 21 IoT DDoS attacks