Facebook Bug Allows 2FA Bypass Via Instagram
The Instagram rate-limiting bug, found by a rookie hunter, could be exploited to bypass Facebook 2FA in vulnerable apps, researcher reports.
Long Con Impersonates Financial Advisers to Target Victims
Cybercriminals are co-opting the identities of legitimate US financial advisers to use them as fodder for relationship scams (aka pig butchering), which end with the theft of investments.
Convincing Malicious Google Ads Look to Lift Password Manager Logins
Users searching for Bitwarden and 1Passwords Web vaults on Google have recently reported seeing paid ads with links to cleverly spoofed sites for stealing credentials to their password vaults.
Fake Texts From the Boss Bogus Job Postings and Frankenstein Shoppers Oh My
Experian’s annual Future of Fraud Forecast highlights five fraud threats facing businesses and consumers in 2023.
Critical RCE Lexmark Printer Bug Has Public Exploit
A nasty SSRF bug in Web Services plagues a laundry list of enterprise printers.
How Noob Website Hackers Can Become Persistent Threats
An academic analysis of website defacement behavior by 241 new hackers shows there are four clear trajectories they can take in future, researchers say.
Google Influence Operator Dragonbridge Floods Social Media in Sprawling Cyber Campaign
Google has mounted a massive takedown, but Dragonbridges extensive capabilities for generating and distributing vast amounts of largely spammy content calls into question the motivation behind the group.
3 Ways ChatGPT Will Change Infosec in 2023
OpenAIs chatbot has the promise to revolutionize how security practitioners work.
Riot Games Latest VideoGame Maker to Suffer Breach
Highlighting continued attacks on game developers, attackers stole source code from and issued a ransom demand to the maker of League of Legends.