Facebook $725M privacy settlement: Eligibility, payouts & key details https://etimg.etb2bimg.com/thumb/msid-123862981,imgsize-82084,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/facebook-725m-privacy-settlement-eligibility-payouts-key-details.jpg Payments from Facebook’s $725 million privacy settlement are finally being distributed, with approved claimants set to receive money over the coming weeks. The settlement stems from lawsuits that accused the social media giant of improperly sharing users’ personal data with advertisers and third-party firms, most notably highlighted by the 2018 ...

Smishing Triad Linked to 194,000 Malicious Domains in Global Phishing Operation https://firewalls.firm.in/wp-content/uploads/2025/10/phishing.jpg Oct 24, 2025Ravie LakshmananData Breach / Cybercrime The threat actors behind a large-scale, ongoing smishing campaign have been attributed to more than 194,000 malicious domains since January 1, 2024, targeting a broad range of services across the world, according to new findings from Palo Alto Networks Unit 42. ...

These OnePlus smartphones may be leaking your SMS messages to hackers https://etimg.etb2bimg.com/thumb/msid-124176116,imgsize-24140,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/these-oneplus-smartphones-may-be-leaking-your-sms-messages-to-hackers.jpg OnePlus smartphones running OxygenOS versions 12 through 15 contain a critical security vulnerability that allows malicious apps to read and send SMS messages without user permission, cybersecurity firm Rapid7 revealed this week. The flaw, tracked as CVE-2025-10184 with a severity score of 8.2 out of 10, potentially affects ...

Newly Patched Critical Microsoft WSUS Flaw Comes Under Active Exploitation https://firewalls.firm.in/wp-content/uploads/2025/10/windows-update.jpg Oct 24, 2025Ravie LakshmananVulnerability / Network Security Microsoft on Thursday released out-of-band security updates to patch a critical-severity Windows Server Update Service (WSUS) vulnerability with a proof-of-concept (Poc) exploit publicly available and has come under active exploitation in the wild. The vulnerability in question is CVE-2025-59287 (CVSS score: 9.8), ...

Canada’s WestJet says some passenger data exposed in cybersecurity breach https://etimg.etb2bimg.com/thumb/msid-124247093,imgsize-964241,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/canadas-westjet-says-some-passenger-data-exposed-in-cybersecurity-breach.jpg Canadian carrier WestJet said on Monday the personal information of some passengers was exposed in a cybersecurity breach earlier this year, though no payment data was compromised. The airline said it detected suspicious activity on June 13 and later determined that a “sophisticated, criminal third party” had gained unauthorized ...

Self-Spreading ‘GlassWorm’ Infects VS Code Extensions in Widespread Supply Chain Attack https://firewalls.firm.in/wp-content/uploads/2025/10/code-vscode.jpg Oct 24, 2025Ravie LakshmananDevOps / Malware Cybersecurity researchers have discovered a self-propagating worm that spreads via Visual Studio Code (VS Code) extensions on the Open VSX Registry and the Microsoft Extension Marketplace, underscoring how developers have become a prime target for attacks. The sophisticated threat, codenamed GlassWorm by ...

Google warns companies: Your top executives may get extortion emails https://etimg.etb2bimg.com/thumb/msid-124282446,imgsize-1789114,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/google-warns-companies-your-top-executives-may-get-extortion-emails.jpg Alphabet’s Google has warned that hackers are sending extortion emails to executives at several organizations, reports news agency Reuters. The hackers, as per the report, are claiming to have stolen sensitive data from Oracle business applications. In a statement, Google said that the messages are part of an ongoing ...

Meta Rolls Out New Tools to Protect WhatsApp and Messenger Users from Scams https://firewalls.firm.in/wp-content/uploads/2025/10/spam.jpg Oct 21, 2025Ravie LakshmananCryptocurrency / Encryption Meta on Tuesday said it’s launching new tools to protect Messenger and WhatsApp users from potential scams. To that end, the company said it’s introducing new warnings on WhatsApp when users attempt to share their screen with an unknown contact ...

FBI investigating Chinese hackers who targeted top US law and tech companies, report claims https://etimg.etb2bimg.com/thumb/msid-124404219,imgsize-30116,width-1200,height=627,overlay-etciso,resizemode-75/data-breaches/fbi-investigating-chinese-hackers-who-targeted-top-us-law-and-tech-companies-report-claims.jpg FBI is investigating a large-scale cyber espionage effort by Chinese hackers. These hackers successfully infiltrated the computer systems of one of the country’s most prominent law firms, Williams & Connolly, a report claims. The firm has reportedly notified clients that its networks were compromised as ...

North Korean Hackers Use EtherHiding to Hide Malware Inside Blockchain Smart Contracts https://firewalls.firm.in/wp-content/uploads/2025/10/hacker-blockchain.jpg Oct 16, 2025Ravie LakshmananMalware / Blockchain A threat actor with ties to the Democratic People’s Republic of Korea (aka North Korea) has been observed leveraging the EtherHiding technique to distribute malware and enable cryptocurrency theft, marking the first time a state-sponsored hacking group has embraced the method. ...