data breach Archives

AppWizard

May 24, 2025

Vietnam orders ban on popular messaging app Telegram

Vietnam's Ministry of Science and Technology has accused the messaging app Telegram of not cooperating in addressing criminal activities conducted by its users. The ministry has instructed internet service providers to restrict Telegram's operations in the country, citing that nearly 70 percent of the 9,600 channels on the app disseminate harmful information and engage in illegal activities such as selling user data and drug trafficking. A Telegram representative stated the company has been timely in addressing legal requests from Vietnam and is processing a recent request. Despite the government's actions, Telegram was still accessible in Vietnam as of Friday. In Vietnam, approximately 11.8 million users use Telegram, while the app has nearly one billion users globally.

Tech Optimizer

May 18, 2025

Do I need antivirus software for Windows 11?

Windows 11 accounts for nearly 44% of global desktop users as of April 2025, making it a prime target for cybercriminals, with 83% of malware in 2020 aimed at Windows systems. Microsoft Defender, which comes pre-installed with Windows 11, offers commendable malware protection, basic ransomware protection, a SmartScreen feature for anti-phishing, and a firewall that monitors network traffic. While it provides a solid foundation for security, additional third-party antivirus software can enhance protection, offering more comprehensive features such as superior parental controls, integrated VPN services, and identity theft protection.

AppWizard

May 14, 2025

PC gamers urged to change Steam password following breach of 89 million users’ data

Steam is facing a potential data breach that may affect millions of users, reportedly linked to a third-party company associated with Valve, its parent organization. Discussions indicate that Two-Factor Authentication (2FA) data may have been leaked, with a user claiming to sell over 89 million user records on a dark web forum for ,000. Twilio, a company mentioned in connection with the breach, has denied any wrongdoing, stating there is no evidence of a breach on their end. Users are advised to enable 2FA, change passwords, and monitor email accounts for suspicious activity to protect against potential phishing attacks and account takeovers.

AppWizard

May 11, 2025

Scrutinizing the security of messaging apps continues.

Customs and Border Protection (CBP) and the White House are facing scrutiny over security vulnerabilities in their messaging application. Hacktivists breached GlobalX, the airline handling U.S. deportation flights, exposing sensitive flight manifests. The FBI warned about threats exploiting outdated routers. Pearson confirmed a cyberattack compromising customer data. Research shows cybercriminals are using Windows Remote Management (WinRM) for lateral movements in Active Directory environments. A new email attack campaign is delivering a Remote Access Trojan (RAT) via malicious PDF invoices. A zero-day vulnerability in SAP NetWeaver allows remote code execution, affecting multiple sectors. An Indiana health system reported a data breach affecting nearly 263,000 individuals.

Tech Optimizer

May 3, 2025

Use Protection: 6 Tips to Watch Porn Online Safely

Seventeen U.S. states have enacted age verification laws that effectively prohibit adult websites from operating within their jurisdictions. The use of Incognito Mode can help hide browsing history, but it is not completely secure as data may still be retained by Google. Data theft is a risk when engaging with adult content, especially if personal information is shared on pornographic sites. Using a VPN can enhance anonymity, but it does not protect against voluntarily shared information. Privacy services like IronVest can help create disposable email addresses and phone numbers. Ads on adult websites can contain malware, making antivirus software important for protection. Trusted pornographic sites typically prioritize user privacy and security, so caution is advised when choosing platforms.

Tech Optimizer

May 2, 2025

The Pillars of AI-Driven Security

The cybersecurity landscape has shifted from traditional methods like firewalls and antivirus software to more sophisticated, AI-driven strategies. The 2024 Verizon Data Breach Investigations Report identifies ransomware as a leading attack type, with a median time to compromise now measured in hours. The attack surface is expanding due to remote work, cloud adoption, and IoT devices, while traditional security measures struggle to keep up. AI enhances security across three domains: prevention, detection, and response. 1. Prevention: AI distinguishes between legitimate and suspicious activities, improving predictive accuracy and enabling proactive defenses against attacks. AI models can identify zero-day malware and fileless attacks by focusing on behavior. 2. Detection: AI-powered tools like SIEM systems analyze vast amounts of data to identify risks and suspicious patterns in near real-time, reducing false positives and highlighting low-and-slow attacks and insider threats. 3. Response: AI automates rapid containment and remediation actions, allowing human analysts to focus on more complex tasks. Generative AI can assist in drafting incident reports and suggesting remediation measures. AI-driven security offers scale and efficiency, reducing breach costs significantly for organizations that utilize it. AI models adapt to evolving threats, and AI tools help bridge the cybersecurity skills gap. However, challenges include potential biases in AI models, the need for talent and change management, and privacy concerns. Organizations are encouraged to adopt AI-driven security as a core component of their digital defense strategy to improve risk posture and threat response.

Tech Optimizer

April 18, 2025

Breached Identities and Infostealers: One of the Largest Ongoing Data Leak in History

Breached identities due to infostealer malware are a significant threat to corporate information security in 2024. Infostealers are a type of remote access trojan that exfiltrate sensitive data, including saved credentials, session cookies, browser history, crypto wallet information, screen captures, and host data. Infections often stem from downloading cracked software, malicious advertising, fake Windows updates, and repackaged games. Infostealers do not require local administrative privileges, making them easy to execute. Threat actors primarily aim to profit from breached bank accounts and crypto wallets, often bypassing multi-factor authentication by targeting session cookies. They also seek credentials for subscription services and corporate access. Research shows that 90% of breached companies had leaked corporate credentials in a stealer log, with 78% experiencing leaks within six months of a breach. In comparison, 76% of similar companies without breaches had experienced a corporate stealer log compromise. The investigation identified high-criticality credentials from various corporate applications, indicating that a single user often has access to multiple credentials. The rise of infostealer malware represents a broad threat, encompassing a wide range of sensitive data. Organizations are advised to implement strategies such as restricting download privileges, avoiding illegal content, disabling macros, and regularly updating software to mitigate risks associated with infostealer malware.

Winsage

April 9, 2025

Windows Common Log File System 0-Day Vulnerability Exploited in the Wild

A critical zero-day vulnerability in the Windows Common Log File System (CLFS) driver, identified as CVE-2025-29824, is actively exploited, allowing attackers to elevate privileges to SYSTEM level and compromise system integrity. This flaw arises from a use-after-free issue within the CLFS driver, enabling local attackers to execute malicious code. Microsoft is aware of the exploitation and is working on a security update, but no immediate patch is available. The vulnerability affects multiple versions of Windows 10, including x64-based and 32-bit systems, and can lead to privilege escalation, data breaches, operational disruption, and malware deployment. Microsoft has classified this vulnerability as "Important" and urges organizations to apply patches promptly once available.

Tech Optimizer

April 7, 2025

Scanguard

Scanguard is owned by Total Security LTD and offers a comprehensive security and optimization suite that includes virus protection, system performance improvements, junk file removal, a password vault, and a VPN. Its security features include real-time protection against malware, ransomware, spyware, and adware, facilitated by specialized guards. A free version is available for Windows, but it has limitations regarding update speed. The initial scan on a 512 GB SSD takes under five minutes and covers various checks. The app prompts users to upgrade for certain features, although discounts are available for first-time users. Core features include Malware Guard, Ransomware Guard, Spyware Guard, Aware Guard, and WebShield for real-time protection against malicious sites. Scanguard also offers identity theft protection services and a system optimizer that cleans junk files and manages applications. An Android app is available, but there is no iPhone app, and the Android version must be downloaded from the Scanguard website. Scanguard's pricing includes a free version and a paid plan with a promotional rate for the first year, with payment through PayPal. The paid plan offers real-time protection, cloud-based threat detection, and customer support. Recent evaluations show a detection rate of 96.94% in a VB100 test, with a 0.000% false alarm rate, but it is not currently VB100 certified. The user interface is modern and intuitive, though the installation process may take time due to database updates.

Tech Optimizer

March 25, 2025

What the Tech? Avoiding malware threats

The ABC 6 News Team reports on the Infostealer malware, which has compromised over 2 billion credentials by using fake websites to trick users into providing sensitive information. Infostealer targets searches for free software, cracked software, game cheats, and activation tools, employing tactics such as search engine ads, SEO manipulation, social media promotions, and typosquatting to lure victims. Once installed, Infostealer can steal passwords, credit card information, cryptocurrency wallet data, and personal information. To mitigate risks, users are advised to download software from reputable sources, be cautious of offers that seem too good to be true, install robust antivirus software, enable ad blockers, verify URLs, use multi-factor authentication, keep software updated, and stay informed about cybersecurity threats. Additionally, users can check if their email addresses or passwords have been involved in data breaches at www.haveibeenpwned.com.