Much is at stake for popular brands once again. A U.S-based digital marketing agency, which caters to the likes of brands like Dunkin Doughnuts, Henkel, Lego, and Loctite, exposed millions of records. In a different streak, Huawei’s AppGallery was found hosting dozens of malicious apps. That’s not all. Experts claim, approximately 37% of the world's smartphones could be hijacked for spying. On that note, hop in to learn more about the top cybersecurity updates for the day.
01
Marketing firm Cronin laid bare 92 million records with employee and client information via an unprotected database. The records also contain sensitive financial data.
02
A misconfigured AWS bucket at WSpot exposed nearly 226,000 files containing extensive details of high-profile firms. The incident impacted around 2.5 million users connected to its public WiFi networks.
03
Dr.Web disclosed that Cynos mobile trojan, which disguises itself as games on Huawei’s AppGallery marketplace, infected at least 9.3 million Android devices to steal data.
04
Researchers unearthed a new crypter, dubbed Babadeda, targeting cryptocurrency enthusiasts through Discord. Some of its recent attempts are also aimed at NFT and DeFi communities.
05
A report by Outpost24 claims that 90% of the web apps used by U.S. healthcare operators are vulnerable to various cybercrimes.
06
Sophos is warning against an evolved version of Android spyware, allegedly used by an APT group called C-23, targeting individuals in the Middle East.
07
The FBI warned of malicious email campaigns targeting customers of top brands in a new series of brand phishing attacks and tricking them into revealing their personal and financial details.
08
Security analysts revealed new vulnerabilities in a popular Android chip manufactured by MediaTek, that could allow cybercriminals to eavesdrop on nearly 37% of the world’s smartphones.
09
Researchers from Italy formulated Printjack, a set of three attacks that can help threat actors in launching DDoS and performing data breaches by taking over printers.
10
DNV, an assurance and risk management solutions provider, acquired Applied Risk, a provider of industrial cybersecurity solutions.
