Al Bawaba

Old meets new: Kaspersky reviews the evolution of phishing threats

A new Kaspersky review reveals how cybercriminals are reviving and refining phishing techniques to target individuals and ...
GovInfoSecurity

Microsoft Urges Users to Finally Ditch NTLM Authentication

For nearly 30 years, security experts have warned organizations to ditch the weak NTLM authentication protocol in Windows.

Google-acquired cybersecurity company Wiz exposes 'Moltbook hacking', says 35,000 email addresses and more leaked

A cybersecurity report reveals Moltbook, a social media platform for AI bots, suffered a data leak. Thousands of human users' ...

If You Get This Amazon Product Recall Message, It’s An Attack

“If you receive a message about the purchase of a product or service,” the retail giant says, “do not respond to the message or click on any link in the message; instead, log into your Amazon account ...
American Banker

Betterment data breach exposes 1.4 million customers

Threat group ShinyHunters claimed responsibility for the attack, which reportedly targeted third-party platforms rather than Betterment's own systems.
Security Boulevard

StrongestLayer: Top ‘Trusted’ Platforms are Key Attack Surfaces

StrongestLayer's new threat intelligence report is based on an analysis of 2,042 advanced email attacks that successfully bypassed well-known secure email gateways before being detected. #EmailSecurit ...

Google's security team look at how ShinyHunters has rolled out SSO scams

Mandiant analyzed ShinyHunters' MO, detailing how it steals login and MFA codes.
Financial IT

Scrapping the Cap: What the £100 Contactless Limit Removal Really Means for Banks and Trust

As 2025 drew to a close, the UK’s Financial Conduct Authority (FCA) announced its plan to remove the £100 contactless payment limit, marking a turning point for the industry.

How recruitment fraud turned cloud IAM into a $2 billion attack surface

Adversaries weaponized recruitment fraud to steal cloud credentials, pivot through IAM misconfigurations, and reach AI ...

Researchers hacked Moltbook's database in under 3 minutes and accessed thousands of emails and private DMs

Researchers hacked Moltbook's database in minutes, exposing emails, private messages, and API keys tied to its AI agents ...

Imposters are targeting Verizon, Xfinity customers with email and text scams, N.J. cops say

Various customers both locally and nationwide have been reporting these types of scams to law enforcement, the Middlesex ...
GovInfoSecurity

Hanging Up on ShinyHunters: Experts Detail Vishing Defenses

Amidst persistent voice phishing campaigns designed to trick employees and steal sensitive corporate data, security experts recommend organizations deploy ...