 |
|
|
|||||
Hackers were reportedly able to modify several Chrome extensions with malicious code this month after gaining access to admin accounts through a phishing campaign. The cybersecurity company Cyberhaven shared in a blog post this weekend that its Chrome extension was compromised on December 24 in an attack that appeared to be targeting logins to specific social media advertising and AI platforms. A few other extensions were hit as well, going back to mid-December, Reuters reported. According to Nudge Securitys Jaime Blasco, that includes ParrotTalks, Uvoice and VPNCity. Cyberhaven notified its customers on December 26 in an email seen by TechCrunch, which advised them to revoke and rotate their passwords and other credentials. The companys initial investigation of the incident found that the malicious extension targeted Facebook Ads users, with a goal of stealing data such as access tokens, user IDs and other account information, along with cookies. The code also added a mouse click listener. After successfully sending all the data to the [Command & Control] server, the Facebook user ID is saved to browser storage, Cyberhaven said in its analysis. That user ID is then used in mouse click events to help attackers with 2FA on their side if that was needed. Cyberhaven said it first detected the breach on December 25 and was able to remove the malicious version of the extension within an hour. Its since pushed out a clean version.This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/hackers-injected-malicious-code-into-several-chrome-extensions-in-recent-attack-220648155.html?src=rss
Category:
Marketing and Advertising
Marvel just dropped the first trailer for its upcoming animated series, Your Friendly Neighborhood Spider-Man, which will bring us back to Peter Parkers early days as a high school superhero. The art leans into a classic comic book style, and it looks like the story itself will be a departure from the MCU version of things, in contrast to how the show was initially described back in 2021 when it was first announced. Your Friendly Neighborhood Spider-Man will have 10 episodes, and debuts on Disney+ on January 29. Peter Parker is voiced by Hudson Thames. The cast also includes Colman Domingo as Norman Osborn, who we see in the trailer stepping in as Spider-Mans mentor, along with Zeno Robinson (Harry Osborn), Grace Song (Nico Minoru) and Charlie Cox (Daredevil). Hugh Dancy voices Otto Octavius aka Doctor Octopus. The animated series was first teased at Disney+ Day three years ago under a different name, Spider-Man: Freshman Year. This article originally appeared on Engadget at https://www.engadget.com/entertainment/streaming/check-out-the-first-full-trailer-for-your-friendly-neighborhood-spider-man-190300960.html?src=rss
Category:
Marketing and Advertising
A set of new requirements proposed by the US Department of Health and Human Services (HHS) Office for Civil Rights could bring healthcare organizations up to par with modern cybersecurity practices. The proposal, posted to the Federal Register on Friday, includes requirements for multifactor authentication, data encryption and routine scans for vulnerabilities and breaches. It would also make the use of anti-malware protection mandatory for systems handling sensitive information, along with network segmentation, the implementation of separate controls for data backup and recovery, and yearly audits to check for compliance. HHS also shared a fact sheet outlining the proposal, which would update the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule. A 60-day public comment period is expected to open soon. In a press briefing, US deputy national security advisor for cyber and emerging technology Anne Neuberger said the plan would cost $9 billion in the first year to execute, and $6 billion over the subsequent four years, Reuters reports. The proposal comes in light of a marked increase in large-scale breaches over the past few years. Just this year, the healthcare industry was hit by multiple major cyberattacks, including hacks into Ascension and UnitedHealth systems that caused disruptions at hospitals, doctors offices and pharmacies. From 2018-2023, reports of large breaches increased by 102 percent, and the number of individuals affected by such breaches increased by 1002 percent, primarily because of increases in hacking and ransomware attacks, according to the Office for Civil Rights. In 2023, over 167 million individuals were affected by large breaches a new record.This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/healthcare-organizations-in-the-us-may-soon-get-a-cybersecurity-overhaul-220933165.html?src=rss
Category:
Marketing and Advertising
All news |
||||||||||||||||||
|
||||||||||||||||||