March 29, 2024

Web and Technology News

Spyware maker LetMeSpy shuts down after hacker deletes server data

Poland-based spyware LetMeSpy is no longer operational and said it will shut down after a June data breach wiped out its servers, including its huge trove of data stolen from thousands of victims’ phones. In a notice on its website in both English and Polish, LetMeSpy confirmed the “permanent shutdown” of the spyware service and […]

Hacker finds bug that allowed anyone to bypass Facebook 2FA

A bug in a new centralized system that Meta created for users to manage their logins for Facebook and Instagram could have allowed malicious hackers to switch off an account’s two-factor protections just by knowing their email address or phone number. Gtm Mänôz, a security researcher from Nepal, realized that Meta did not set up […]

Hacker finds bug that allowed anyone to bypass Facebook 2FA by Lorenzo Franceschi-Bicchierai originally published on TechCrunch

Iranian state-aligned threat actor targets new victims in cyberespionage and kinetic campaigns

New research from Proofpoint exposes a large shift in the TA453 threat actor’s modus operandi, which started conducting more hostile attacks.
The post Iranian state-aligned threat actor targets new victims in cyberespionage and kinetic campaigns appear…

DOJ says it will no longer prosecute good-faith hackers under CFAA

The U.S. Justice Department announced Thursday it will not bring charges under federal hacking laws against security researchers and hackers who act in good faith. The policy for the first time “directs that good-faith security research should not be charged” under the Computer Fraud and Abuse Act (CFAA), a seismic shift away from its previous […]

Lapsus$ hackers targeted T-Mobile source code in latest data breach

The Lapsus$ hacking group has claimed another victim: U.S. telecom giant T-Mobile. T-Mobile’s latest security incident — the seventh data breach in the past four years — was first revealed by security journalist Brian Krebs, who obtained a week’s worth of private chat messages between the core members of Lapsus$, a hacking and extortion group […]

Strike Security lands $5.4M seed funding to make pen-testing more accessible

Strike Security, a continuous penetration testing platform that combines automation with ethical hackers, has secured a $5.4 million seed investment to make bug hunting more accessible to small businesses. Santiago Rosenblatt, the 25-year-old founder and CEO of Strike, has already racked up two decades of cybersecurity experience. “I started hacking when I was six-and-a-half,” he […]