Online Security
-
Differences Between Data Privacy, Data Security, and Data Protection
People often confuse the terms data privacy, data security, and data protection. While they all sound like they do the same thing, each concept has a distinct meaning and purpose.…
-
Cybersecurity Law: Computer Fraud and Abuse Act
I was reading a book on Cybersecurity Law, and I read about one of the federal statutes in the U.S. cybersecurity legal spectrum; the Computer Fraud and Abuse Act (CFAA).…
-
Consequences of Poor Data Privacy
Data privacy is not just a technical concern, it’s a cornerstone of trust between individuals and organizations. However, when data privacy is poorly managed, the consequences can be devastating. Here…
-
Why Multi-Factor Authentication is Essential for Online Security
By Jorge Castaneda We are online almost every day if not every day! Yet, a lot of people don’t take online security very seriously. Online security is more important than…
-
Costa Rica’s State-Owned Energy Company Hit With Ransomware
Costa Rica’s state-owned energy company, RECOPE, experienced a ransomware attack on November 27, 2024, forcing a shift to manual operations for fuel distribution. The incident disrupted digital payment systems, prompting…
-
Storm-1811: Hacking RMM Tools To Spread Ransomware
The cybercriminal group Storm-1811 has been exploiting remote monitoring and management (RMM) tools, such as Microsoft’s Quick Assist, to deploy Black Basta ransomware. They initiate attacks by flooding victims’ inboxes…
-
Horns&Hooves: Campaign Targets Users and Retailers with RATs via Fake Emails
The “Horns&Hooves” campaign, active since March 2023, has targeted over 1,000 victims—primarily private users, retailers, and service businesses in Russia—by distributing remote access trojans (RATs) like NetSupport RAT and BurnsRAT.…
-
SpyLoan: 8 Million Android Users Targeted by Malicious Apps
Over 8 million Android users have been affected by malicious loan applications, collectively termed “SpyLoan,” available on the Google Play Store. These 15 apps, identified by McAfee Labs, deceptively promise…
-
Rockstar 2FA: A New Phishing-as-a-Service Threat Targeting Microsoft 365 Accounts
A new phishing-as-a-service (PhaaS) platform named ‘Rockstar 2FA’ has emerged, enabling large-scale adversary-in-the-middle (AiTM) attacks to steal Microsoft 365 credentials. This service allows attackers to bypass multifactor authentication (MFA) by…
-
EBT Hacking: Millions Stolen from Vulnerable Recipients
Millions of dollars have been stolen from Electronic Benefits Transfer (EBT) accounts in a widespread hacking scheme, affecting vulnerable recipients like Frances Jacobson of Mobile, Alabama, who lost nearly all…
CyberCasta 