"FTC cracks down on Genshin Impact gacha loot box practices."
Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents. Accessed on 18 January 2025, 1515 UTC.
Content and Source: https://www.bleepingcomputer.com/
Please check link or scroll down to read your selections. Thanks for joining us today.
Russ Roberts (https://www.hawaiicybesecurityjournal.net).
FTC cracks down on Genshin Impact gacha loot box practices
Genshin Impact developer Cognosphere (aka Hoyoverse) has agreed to a $20 million settlement with the U.S. Federal Trade Commission (FTC) over its gacha loot box monetization and is now banned from selling them to teens under the age of sixteen without parental consent.
- January 17, 2025
- 05:18 PM
3
Otelier data breach exposes info, hotel reservations of millions
Hotel management platform Otelier suffered a data breach after threat actors breached its Amazon S3 cloud storage to steal millions of guests' personal information and reservations for well-known hotel brands like Marriott, Hilton, and Hyatt.
- January 17, 2025
- 03:17 PM
- 0
Malicious PyPi package steals Discord auth tokens from devs
A malicious package named 'pycord-self' on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a backdoor for remote control over the system.
- January 17, 2025
- 02:16 PM
- 0
Microsoft fixes Office 365 apps crashing on Windows Server systems
Microsoft has fixed a known issue that caused Microsoft 365 applications and Classic Outlook to crash on Windows Server 2016 or Windows Server 2019 systems.
- January 17, 2025
- 11:59 AM
- 0
US sanctions Chinese firm, hacker behind telecom and Treasury hacks
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) has sanctioned Yin Kecheng, a Shanghai-based hacker for his role in the recent Treasury breach and a company associated with the Salt Typhoon threat group.
- January 17, 2025
- 11:57 AM
- 0
FCC orders telecoms to secure their networks after Salt Tyhpoon hacks
The Federal Communications Commission (FCC) has ordered U.S. telecommunications carriers to secure their networks following last year's Salt Typhoon security breaches.
- January 17, 2025
- 11:05 AM
- 0
Microsoft starts force upgrading Windows 11 22H2, 23H3 devices
Microsoft has started the forced rollout of Windows 11 24H2 to eligible, non-managed systems running the Home and Pro editions of Windows 11 22H2 and 23H2.
- January 17, 2025
- 09:55 AM
- 5
This $65 Costco Gold Star Membership could lower your grocery bill
By becoming a Gold Star Member, you could lower your shopping bill while making just one trip for everything from weekly groceries to seasonal goodies. When you grab this $65 one-year membership, you'll also score a $20 Digital Costco Shop Card.
- January 17, 2025
- 07:16 AM
- 0
GDPR complaints filed against TikTok, Temu for sending user data to China
Non-profit privacy advocacy group "None of Your Business" (noyb) has filed six complaints against TikTok, AliExpress, SHEIN, Temu, WeChat, and Xiaomi, for unlawfully transferring European user's data to China and infringing European Union's general data protection regulation (GDPR).
- January 16, 2025
- 05:34 PM
- 2
W3 Total Cache plugin flaw exposes 1 million WordPress sites to attacks
A severe flaw in the W3 Total Cache plugin installed on more than one million WordPress sites could give attackers access to various information, including metadata on cloud-based apps.
- January 16, 2025
- 03:36 PM
- 1
Microsoft expands testing of Windows 11 admin protection feature
Microsoft has expanded its Windows 11 administrator protection tests, allowing Insiders to enable the security feature from the Windows Security settings.
- January 16, 2025
- 03:13 PM
- 2
This comprehensive CISSP certification prep resource is now only $40
You don't need to enroll in a formal class to prep for the CISSP. Study from home with this CISSP training bundle. It covers topics like security and risk management, asset security, security engineering, and more for only $39.99 (reg. $424).
- January 16, 2025
- 02:07 PM
- 0
US cracks down on North Korean IT worker army with more sanctions
The U.S. Treasury Department has sanctioned a network of individuals and front companies linked to North Korea's Ministry of National Defense that have generated revenue via illegal remote IT work schemes.
- January 16, 2025
- 01:48 PM
- 0
Biden signs executive order to bolster national cybersecurity
Days before leaving office, President Joe Biden signed an executive order to shore up the United States' cybersecurity by making it easier to sanction hacking groups targeting federal agencies and the nation's critical infrastructure.
- January 16, 2025
- 12:58 PM
- 0
Wolf Haldenstein law firm says 3.5 million impacted by data breach
Wolf Haldenstein Adler Freeman & Herz LLP ("Wolf Haldenstein") reports it has suffered a data breach that exposed the personal information of nearly 3.5 million individuals to hackers.
- January 16, 2025
- 11:26 AM
- 0
FTC orders GoDaddy to fix poor web hosting security practices
The Federal Trade Commission (FTC) will require web hosting giant GoDaddy to implement basic security protections, including HTTPS APIs and mandatory multi-factor authentication, to settle charges that it failed to secure its hosting services against attacks since 2018.
- January 16, 2025
- 11:09 AM
- 7
New UEFI Secure Boot flaw exposes systems to bootkits, patch now
A new UEFI Secure Boot bypass vulnerability tracked as CVE-2024-7344 that affects a Microsoft-signed application could be exploited to deploy bootkits even if Secure Boot protection is active.
- January 16, 2025
- 10:05 AM
- 0
Security· Sponsored ContentMFA Failures - The Worst is Yet to Come
This article delves into the rising tide of MFA failures, the alarming role of generative AI in amplifying these attacks, the growing user discontent weakening our defenses, and the glaring vulnerabilities being frequently exploited. The storm is building, and the worst is yet to come.
- January 16, 2025
- 10:01 AM
- 0
This Visual Studio bundle is the first stop for beginning developers
This bundle gives you material to study and the tools to put what you learn into practice. With Microsoft Visual Studio Pro and the Premium Learn to Code Certification Bundle, you get your own IDE to work with and can learn the fundamentals of Python, C++, SQL, and more. This bundle is also now on sale for $55.97 (reg. $1,999).
- January 16, 2025
- 07:11 AM
- 0
Hackers leak configs and VPN credentials for 15,000 FortiGate devices
A new hacking group has leaked the configuration files, IP addresses, and VPN credentials for over 15,000 FortiGate devices for free on the dark web, exposing a great deal of sensitive technical information to other cybercriminals.
- January 15, 2025
- 09:57 PM
- 0
No comments:
Post a Comment
Please leave a comment about our recent post.