A newly discovered PayPal Inc. phishing scam is not only targeting login credentials but also personally identifiable information and payment card data. Discovered and publicized Dec. 20 by security researchers at ESET spol s.r.o., the phishing campaign targets users with crafted emails that claim that the PayPal account belonging to a user has experienced “unusual activity.” The ...

A group with alleged links to the Chinese government has been accused of hacking networks worldwide, but in a rare twist it’s said to be bypassing two-factor authentication in the process. The hack was detailed late last week by security researchers from Fox-IT Holding B.V. APT20, the group behind the campaign, targets web servers as the first point ...

Distributed ledger technology firm Hedera Hashgraph LLC has delayed issuing tokens to investors sold in an initial coin offering in an effort to stabilize the price of the tokens as they continue to drop in value. Hedera Hashgraph, founded in 2018, is a venture capital-backed company supported by the likes of IBM Corp. that is building a public distributed ledger ...

A flaw in the Android app for Twitter Inc. has been exploited by a security researcher to match 17 million phone numbers to user accounts in the latest privacy breach involving the microblogging service. First reported today by TechCrunch and uncovered by vulnerability researcher Ibrahim Balic, the exploit takes advantage of a function in Twitter that allows users to ...

A newly detailed phishing campaign is targeting customers of Canadian banks, but this one has been around awhile: It’s believed to be at least two years old. Detailed by security researchers at Check Point Security Technologies Ltd., which published its findings today, the phishing campaign involves highly convincing emails sent to targeted customers that use ...

A newly discovered vulnerability in Citrix Systems Inc. software platforms exposes networks using the software to potential unauthorized access and hacking. Discovered and published today by security researchers at Positive Technologies, the vulnerability relates to both the Citrix Application Delivery Controller and the Citrix Gateway. CVE-2019-19781, as it’s officially known, has been ranked a 10. That’s the highest level ...

After a fairly lackluster performance over the last four weeks, bitcoin investors may have something to cheer coming into Christmas as the cryptocurrency surged to its highest level in a month today. For the first time since late November, bitcoin passed $7,600, up over $1,000 from a $6,538.01 Dec. 18, bitcoin’s lowest price since May, ...

The year’s almost done but the data breaches keep on coming, and the latest involves East Coast convenience store and gas station operator Wawa Inc., which has suffered a point-of-sale hack. The data breach affected all of Wawa’s 850 locations and involved the theft of customer names, card numbers and expiration dates both at gas ...

The U.S. Navy has banned the popular social media app TikTok from mobile devices over increasing concerns that the Chinese-owned app presents a security risk. The ban, issued during last week, applies to all Navy-issued mobile devices. Anyone who does not remove the app will be banned from accessing the Navy Marine Corps intranet. A ...

ToTok, a popular Middle Eastern messaging app launched earlier this year, is actually a mass-surveillance tool, according to a report today from the New York Times. Pitched as a secure alternative to services such as WhatsApp and Skype, ToTok found a willing audience in the millions. But it’s said to have been designed to enable tracking conversations, ...