Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks

At least a dozen organizations with domain names at domain registrar Squarespace saw their websites hijacked last week. Squarespace bought all assets of Google Domains a year ago, but many customers still haven’t set up their new accounts. Experts say malicious hackers learned they could commandeer any migrated Squarespace accounts that hadn’t yet been registered, merely by supplying an email address tied to an existing domain. Continue reading Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks

Fake Lawsuit Threat Exposes Privnote Phishing Sites

A cybercrook who has been setting up websites that mimic the self-destructing message service Privnote.com accidentally exposed the breadth of their operations recently when they threatened to sue a software company. The disclosure revealed a profitable network of phishing sites that behave and look like the real Privnote, except that any messages containing cryptocurrency addresses will be automatically altered to include a different payment address controlled by the scammers. Continue reading Fake Lawsuit Threat Exposes Privnote Phishing Sites

Billionaire Mark Cuban Falls Victim to Crypto Hack Again, Loses $900K

By Deeba Ahmed
Crypto experts suspect Cuban may have made a mistake to get his account hacked.
This is a post from HackRead.com Read the original post: Billionaire Mark Cuban Falls Victim to Crypto Hack Again, Loses $900K
Continue reading Billionaire Mark Cuban Falls Victim to Crypto Hack Again, Loses $900K

Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

In November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. Since then, a steady trickle of six-figure cryptocurrency heists targeting security-conscious people throughout the tech industry has led some security experts to conclude that crooks likely have succeeded at cracking open some of the stolen LastPass vaults. Continue reading Experts Fear Crooks are Cracking Keys Stolen in LastPass Breach

Hackers Aim at Crypto Wallets with Hacked Namecheap Phishing Emails

By Deeba Ahmed
Namecheap users should remain cautious, as hackers are using its inbox to scam users through phishing emails designed…
This is a post from HackRead.com Read the original post: Hackers Aim at Crypto Wallets with Hacked Namecheap Phi… Continue reading Hackers Aim at Crypto Wallets with Hacked Namecheap Phishing Emails

Smashing Security podcast #271: Crypto break-in, Google blurring, and mics not muting

A man loses $650,000 from his cryptocurrency wallet after his Apple iCloud account is hacked, video conferencing apps may not be muting your mic quite the way you imagined, and Google has unblurred military bases in Russia… or has it?

All this an… Continue reading Smashing Security podcast #271: Crypto break-in, Google blurring, and mics not muting

Apple iCloud account attack results in man losing $650,000 from his cryptocurrency wallet

Cryptocurrency wallet maker MetaMask has warned its 21 million monthly users to be wary of Apple iCloud backing up their app’s data by default, after attackers successfully stole $650,000 of funds and NFTs.

Read more in my article on the Hot for Sec… Continue reading Apple iCloud account attack results in man losing $650,000 from his cryptocurrency wallet

MetaMask Asks Apple Users to Disable iCloud Backup for Wallet After User Lost $650,000

By Waqas
MetaMask has warned Apple users to disable automatic iCloud backup of their wallet data. The warning results from…
This is a post from HackRead.com Read the original post: MetaMask Asks Apple Users to Disable iCloud Backup for Wallet Aft… Continue reading MetaMask Asks Apple Users to Disable iCloud Backup for Wallet After User Lost $650,000