Tag: cloud storage
11 articles

FBI Traces Scattered Spider Hacker via Persistent Windows Device ID
In a brazen ransom email, the attackers boldly declared, "IMPORTANT: WE STOLE THE DATA, CONTACT UMMEDIATELY," leaving no doubt about their malicious intentions. The hackers infiltrated the retailer's network through a clever help-desk ploy, tricking staff into resetting passwords and gaining control of critical accounts.

Google Vertex AI SDK Flaw Exposes Model Uploads to Hijacking
A newly discovered flaw in the Google Vertex AI SDK for Python left model uploads vulnerable to hijacking, allowing attackers to swap models and execute code within Google's serving infrastructure in a matter of seconds. This vulnerability, found by Palo Alto Networks Unit 42, could be exploited in just 2.5 seconds - a window of opportunity for attackers to wreak havoc.

Ransomware Gang Pink Exploits Helpdesk Calls to Steal Credentials
Meet Pink, a notorious ransomware gang that's exploiting helpdesk calls to steal sensitive credentials using clever tactics like vishing and IT impersonation. They're using these stolen secrets to exfiltrate valuable data from enterprise cloud storage and productivity systems, leaving victims with a tough choice: pay up or face the consequences.

payment data breach: Stunning Alarming Risk Exposed
About 180,000 people had names and payment details left exposed — putting them at heightened risk of fraud and identity theft; here’s what to do now to protect yourself and why companies must tighten their defenses.

PII and payment data: Stunning Risky Exposure Alert
About 180,000 records — including names and payment card data — were left exposed, turning everyday transactions into a potential headache for consumers and a regulatory and reputational crisis for businesses; monitor your accounts, enable alerts, and favor virtual or tokenized payment options while companies patch misconfigurations and tighten security.

pet records Exposed: Exclusive Risky Security Warning
More than 85,000 pet and owner records were left exposed, turning beloved pets’ details into a roadmap for scammers and raising real risks like spam, identity theft and fraudulent claims—here’s what went wrong and what you can do now to protect yourself.

healthcare records Devastating Leak: Exclusive Alert
A misconfigured healthcare database left roughly 145,000 patient records — including names, contact details and sensitive treatment notes — publicly accessible, raising urgent questions about privacy, trust and what steps providers will take to secure care data.

data breaches: Stunning, Alarming Q3 — 23M Victims
Over 23 million people had personal data exposed in Q3, according to the ITRC — a wake-up call that privacy can’t be an afterthought as breaches across sectors put identities, finances and long-term security at risk.

stronger data access rules: Must-Have, Best Cybercrime Fix
Europol warns that AI, encryption and decentralized tech are letting cybercriminals outrun investigators — Europe needs clearer, faster data laws so crimes don’t slip through legal cracks. Officials say we can and must modernise access rules with strong safeguards to protect both security and privacy.

AI detection layer: Must-Have Shield or Risky Hype
Google’s new AI-powered Drive feature pauses desktop sync when it spots suspicious file activity to curb ransomware spread — a smart last line of defense that buys IT teams time, but experts warn it’s a helpful stopgap, not a silver bullet against determined attackers.

AI generated code: Exclusive Warning on Risky Phishing
Microsoft disrupted an AI-powered phishing campaign that used SVG files disguised as PDFs to trick email and cloud preview viewers into stealing credentials, showing attackers can now auto-generate convincing scams at scale. Treat unexpected document previews and credential prompts with caution, enable MFA, and verify senders to stay one step ahead.