South Korea Fines Meta $15.67M for Illegally Sharing Sensitive User Data with Advertisers – OfficialSarkar

South Korea Fines Meta $15.67M for Illegally Sharing Sensitive User Data with Advertisers – OfficialSarkar

Nov 06, 2024Ravie LakshmananData Privacy / Tech Regulation Meta has been fined 21.62 billion won ($15.67 million) by South Korea’s data privacy watchdog for illegally collecting sensitive personal information from Facebook users, including data about their political views and sexual orientation, and sharing it with advertisers without their consent. The country’s Personal Information Protection Commission…

Google Cloud to Enforce Multi-Factor Authentication by 2025 for All Users – OfficialSarkar

Google Cloud to Enforce Multi-Factor Authentication by 2025 for All Users – OfficialSarkar

Nov 06, 2024Ravie LakshmananCloud Security / Phishing Protection Google’s cloud division has announced that it will enforce mandatory multi-factor authentication (MFA) for all users by the end of 2025 as part of its efforts to improve account security. “We will be implementing mandatory MFA for Google Cloud in a phased approach that will roll out…

FBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber Intrusions – OfficialSarkar

FBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber Intrusions – OfficialSarkar

The U.S. Federal Bureau of Investigation (FBI) has sought assistance from the public in connection with an investigation involving the breach of edge devices and computer networks belonging to companies and government entities. “An Advanced Persistent Threat group allegedly created and deployed malware (CVE-2020-12271) as part of a widespread series of indiscriminate computer intrusions designed…

CRPF Tradesman Result 2024 OUT, Download Merit List PDF, Cutoff, State Wise Additional Candidate for PET, PST [Career]

CRPF Tradesman Result 2024 OUT, Download Merit List PDF, Cutoff, State Wise Additional Candidate for PET, PST [Career]

CRPF Constable Tradesman Admit Card 2024 Central Reserve Police Force (CRPF) has invited applications for Constable Tradesman posts during March-May 2023. Check more details on Sarkari Result, Applications were invited for a total of 9,212 posts. Now, CRPF has announced CRPF Constable Tradesman Exam Date 2023 which will be held on 01 – 12 July…

New Android Banking Malware ‘ToxicPanda’ Targets Users with Fraudulent Money Transfers – OfficialSarkar

New Android Banking Malware ‘ToxicPanda’ Targets Users with Fraudulent Money Transfers – OfficialSarkar

Nov 05, 2024Ravie LakshmananMobile Security / Cyber Attack Over 1,500 Android devices have been infected by a new strain of Android banking malware called ToxicPanda that allows threat actors to conduct fraudulent banking transactions. “ToxicPanda’s main goal is to initiate money transfers from compromised devices via account takeover (ATO) using a well-known technique called on-device…

Leveraging Wazuh for Zero Trust security – OfficialSarkar

Leveraging Wazuh for Zero Trust security – OfficialSarkar

Zero Trust security changes how organizations handle security by doing away with implicit trust while continuously analyzing and validating access requests. Contrary to perimeter-based security, users within an environment are not automatically trusted upon gaining access. Zero Trust security encourages continuous monitoring of every device and user, which ensures sustained protection after successful user authentication….

Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices – OfficialSarkar

Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices – OfficialSarkar

Nov 05, 2024Ravie LakshmananVulnerability / Data Security Taiwanese network-attached storage (NAS) appliance maker Synology has addressed a critical security flaw impacting DiskStation and BeePhotos that could lead to remote code execution. Tracked as CVE-2024-10443 and dubbed RISK:STATION by Midnight Blue, the zero-day flaw was demonstrated at the Pwn2Own Ireland 2024 hacking contest by security researcher…

Canadian Suspect Arrested Over Snowflake Data Breach and Extortion Attacks – OfficialSarkar

Canadian Suspect Arrested Over Snowflake Data Breach and Extortion Attacks – OfficialSarkar

Nov 05, 2024Ravie LakshmananData Breach / Cybercrime Canadian law enforcement authorities have arrested an individual who is suspected to have conducted a series of hacks stemming from the breach of cloud data warehousing platform Snowflake earlier this year. The individual in question, Alexander “Connor” Moucka (aka Judische and Waifu), was apprehended on October 30, 2024,…

Malware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat Packages – OfficialSarkar

Malware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat Packages – OfficialSarkar

Nov 05, 2024Ravie LakshmananMalware / Blockchain An ongoing campaign is targeting npm developers with hundreds of typosquat versions of their legitimate counterparts in an attempt to trick them into running cross-platform malware. The attack is notable for utilizing Ethereum smart contracts for command-and-control (C2) server address distribution, according to independent findings from Checkmarx, Phylum, and…

Google Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android System – OfficialSarkar

Google Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android System – OfficialSarkar

Nov 05, 2024Ravie LakshmananMobile Security / Vulnerability Google has warned that a security flaw impacting its Android operating system has come under active exploitation in the wild. The vulnerability, tracked as CVE-2024-43093, has been described as a privilege escalation flaw in the Android Framework component that could result in unauthorized access to “Android/data,” “Android/obb,” and…