While the trackers in LastPass’ Android app don’t collect any personal data, the news may not sit well with some privacy-minded users LastPass, a popular password manager, has come under some fire following a report that its Android app features seven built-in advertising and analytics trackers that gather data ranging from the user’s device type

Two new tools will warn users about the risks of searching for and sharing content that exploits children, including the potential legal consequences of doing so Facebook has announced a pair of new tools to help combat child abuse and exploitation content on its platform and apps. While one tool aims to curb the potentially malicious

As screen time has increased, so has the risk of cyberbullying. What you can do to help protect your children from online harassment? It’s been almost a year since the World Health Organization (WHO) declared the COVID-19 outbreak a pandemic, and people everywhere have been doing their best to adhere to regional and national stay-in-place

Neither clinical research into the coronavirus nor any patient data were affected by the incident Oxford University has confirmed that one of its biology laboratories that is researching ways to combat the COVID-19 pandemic has fallen victim to a cyberattack. Details about the incident at the Division of Structural Biology (Strubi) were released by Forbes.

A snapshot of some of the ways ESET makes an impact supporting the well-being of people, communities and the environment Technology companies have been developing software and hardware that has over time become an integral part of our lives. But besides providing people with the products they need, many companies are also an essential part

People who use devices running Android 9 or newer will be alerted if their login credentials have been stolen Google is extending its Password Checkup feature to Android in a bid to help people make their online accounts more secure. Originally introduced as an extension for the Google Chrome web browser two years ago, the tool was

The incident raises concerns about the privacy and security of conversations taking place on the platform Clubhouse, the social media platform du jour, has experienced a data incident as an unidentified user found a way to stream audio feeds from the app’s chat rooms to a third-party website. Speaking to Bloomberg, Clubhouse spokeswoman Reema Bahnasy confirmed

A bug in the ad blocking component of Brave’s Tor feature caused the browser to leak users’ DNS queries Brave, one of the top-rated browsers for privacy, has fixed a bug in its Private Windows with Tor feature that leaked the .onion URLs for websites visited by the browser’s users, according to a report by an anonymous

High-severity and critical bugs disclosed in 2020 outnumber the sum total of vulnerabilities reported 10 years prior An analysis of data collected by the United States’ National Institute of Standards and Technology (NIST) about common vulnerabilities and exposures (CVEs) has found that 2020 saw more reports of security loopholes than any other year to date.

Both hacktivists and extortionists have used telephony denial-of-service attacks as a way to further their goals The United States’ Federal Bureau of Investigation (FBI) has issued a stark warning about consequences that telephony denial-of-service (TDoS) attacks on call centers could have on people’s lives. If launched against critical call centers, TDoS attacks could ultimately prevent callers from

Avoid COVID-19 vaccine fraud and hoaxes – Romance scams cause record-high losses – Exaramel in the spotlight after attacks in France With the rollouts of COVID-19 vaccines gaining speed, fraudsters deploy campaigns that attempt to relieve people of their data and money or spread false claims about the vaccines. Newly released statistics about romance scams

The first instance of malicious code native to Apple Silicon M1 Macs emerged a month after the release of devices equipped with the company’s in-house CPUs In November, Apple debuted a series of Mac computers sporting its new Apple Silicon M1 chips to great acclaim. The release of the new hardware also grabbed the attention

As dating apps experience a boom amid COVID-19, losses to romance scams soar too More and more people have been flocking to online dating platforms in search of romance and companionship in the wake of lockdowns and social distancing mandates, but the new reality is also creating conditions that contribute to record-high losses from romance

The Exaramel backdoor, discovered by ESET in 2018, resurfaces in a campaign hitting companies that use an outdated version of a popular IT monitoring tool France’s national cybersecurity agency ANSSI has disclosed details about an intrusion campaign targeting IT services firms that run the Centreon IT resource monitoring tool. The attacks are thought to have

The vaccination push provides a vital shot in the arm for the world’s battle against the pandemic, but it’s also a topic ripe for exploitation by fraudsters and purveyors of misinformation The rollouts of COVID-19 vaccines are steadily gaining speed, sparking hope that we may see the end of the pandemic and return to normal

While you’re living out your fantasies, your internet-enabled sex toy may be setting you up for a privacy nightmare We did it. Somehow, we got through 2020 and now Valentine’s Day is just around the corner. And yet 2020’s imprint may still be observed everywhere, and – believe it or not – the COVID-19 pandemic

What can municipalities do to better protect their water supply systems? We reported recently about an attack against the water supply in Oldsmar, Florida, and worry about the potential for future and copycat attacks against other lightly defended water treatment systems in small towns worldwide and what can be done to stem such incursions. In

This month’s relatively humble bundle of security updates fixes 56 vulnerabilities, including a zero-day bug and 11 flaws rated as critical Yesterday was the second Tuesday of the month, which means that Microsoft is rolling out patches for security vulnerabilities found in Windows and its other products. This year’s second batch of security updates brings

While the incursion was thwarted in time, cyberattacks targeting critical infrastructure are a major cause for concern Last Friday, an unknown attacker accessed the computer systems of a water treatment facility in Oldsmar, Florida, and attempted to poison the city’s water supply by manipulating the chemical levels of sodium hydroxide. This substance, commonly referred to

A view of the Q4 2020 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts 2020 was many things (“typical” not being one of them), and it sure feels good to be writing about it in the past tense. As if really trying to prove a

Sharing your thoughts or photos for the world to see is now as easy as pushing a button, but even a seemingly harmless post may come back to haunt you Facebook, the white and blue social media behemoth, has been part of our lives for exactly 17 years. Some of us still remember the days

Vendors should fix the root cause of a vulnerability, rather than block just one path to triggering it, says Google Google’s Project Zero team revealed that a quarter of zero-day exploits detected in 2020 could have been prevented had the vendors issued proper patches for the underlying security flaws. In its Year in Review bloggpost,

The US Federal Trade Commission received 1.4 million reports of identity theft last year, double the number from 2019 The number of reported cases of identity theft in the United States doubled in 2020 year-on-year, the Federal Trade Commission (FTC) has said. In a blogpost marking the start of Identity Theft Awareness Week, the FTC said that

ESET researchers publish a white paper about unique multiplatform malware they’ve named Kobalos ESET researchers have analyzed malware that has been targeting high performance computing (HPC) clusters, among other high-profile targets. We reverse engineered this small, yet complex, malware that is portable to many operating systems including Linux, BSD, Solaris, and possibly AIX and Windows.

ESET researchers uncover a supply-chain attack used in a cyberespionage operation targeting online‑gaming communities in Asia During 2020, ESET research reported various supply-chain attacks, such as the case of WIZVERA VeraPort, used by government and banking websites in South Korea, Operation StealthyTrident compromising the Able Desktop chat software used by several Mongolian government agencies, and

As schools and students continue to contend with the very real cyber-risks of virtual classrooms, we share some advice for protecting children’s data and privacy The COVID-19 pandemic is still here, with pupils and students still soldiering on mostly remotely and focusing on their education from the confines of their houses. While another semester studying

The law enforcement action is one of the most significant operations against cybercriminal enterprises ever Europol has announced the disruption of the Emotet botnet, one of the longest-lived and most pervasive malware threats, following a large-scale operation that also included a number of national law enforcement agencies across Europe and North America. Authorities in the

The company emits emergency updates to fix bugs affecting devices ranging from iPhones to Apple Watches Apple has rolled out an update for its iOS and iPadOS operating systems to patch three zero-day security flaws that are being actively exploited in the wild. The trio of flaws affects various versions of iPhones and iPads and

“Download This application and Win Mobile Phone”, reads the message attempting to trick users into downloading a fake Huawei app Android users should watch out for new wormable malware that spreads through WhatsApp and lures the prospective victims into downloading an app from a website masquerading as Google Play. ESET malware researcher Lukas Stefanko looked

Here’s how to spot scams where criminals use deceptive text messages to hook and reel in their marks Have you ever received a text message from a delivery company that you are familiar with and never for a moment questioned it? Why would you? We now order so much online and all those delivery notifications