A new law seems to strip away the IP rights of Western firms | Business.
Category: business – Page 107
Apple is set to expand ads to new areas of your iPhone and iPad in search of its next big revenue driver. Also: The company slows its pace of acquiring startups, and Peloton embarks on a major overhaul.
Last week in Power On: Apple’s delay of iPadOS 16 and Stage Manager keeps the focus on the iPhone 14.
Security researchers at Zscaler’s ThreatLabz group have discovered a new strain of a large-scale phishing campaign, which uses an adversary-in-the-middle (AiTM) attack technique capable of bypassing multi-factor authentication (MFA).
For the unversed, AiTM attack is a cyberattack where the attacker secretly conveys and possibly alters the communications between two parties who believe that they are directly communicating with each other, as the attacker has inserted themselves between the two parties. Hackers through this method can use the stolen cookies to log in and completely evade MFA.
The main purpose of the large-scale phishing campaign is believed to be breaching of corporate accounts to conduct BEC (business email compromise) attacks, which redirects payments toward the hacker’s bank account using forged documents, as reported by BleepingComputer.
A 24-year-old Australian hacker has been charged with developing and selling the “Imminent Monitor” spy software to more than 14,500 people.
Critical Security Vulnerabilities In Netgear Business Routers Which The Netgear Team Can’t Fix. Stop Using These Routers As Soon As Possible — Vulnerabilities — Information Security Newspaper | Hacking News.
This post is also available in: 
עברית (Hebrew)
A recent report has shown that many social media databases are currently being sold on Breach Forums, a popular hacking forum on the Dark Web. According to cyber security researchers HackerOne, the database allegedly consisted of 5.4 million users, and included the datasets for celebrities, politicians and businesses. The owner of Breach Forums reportedly verified the authenticity of the leaked data.
This nefarious collection of information was due to an already known Twitter vulnerability that could possibly allow an attacker to acquire the phone number and/or email address associated with user accounts even if the user had hidden those fields in the platform’s privacy settings. This should worry many social media users, as it seems that privacy and anonymity are merely a veil that hides the many dangers we are exposed to on the internet.
Researchers have discovered a new infostealer malware, dubbed DUCKTAIL, targeting individuals and organizations that operate on Facebook’s Business.
Researchers have discovered a new infostealer malware, dubbed DUCKTAIL, targeting individuals and organizations that operate on Facebook’s Business.
A new phishing campaign codenamed ‘Ducktail’ is underway, targeting professionals on LinkedIn to take over Facebook business accounts that manage advertising for the company.
The operators of Ducktail have a narrow targeting scope and select their victims carefully, trying to find people who have admin privileges on their employer’s social media accounts.
The discovery of this campaign comes from researchers at WithSecure, who have been tracking what they believe to be a Vietnamese threat actor since 2021, and collected evidence of activity dating going back to 2018.