The review provides highlights, including major developments, on cybersecurity in the UK between September 1, 2020, and August 31, 2021. Highlights of the 2021 NCSC Annual Review The NCSC stated that it offered support for 777 significant cyber incidents in the past year. This number is up from last year’s 723. The agency said that this growth can be attributed partly to its efforts to “proactively identify cyber threats,” as well as the increase in cyber attacks, such as ransomware....

Myeasydocs is an online platform that allows people to submit documents for verification to banks, universities, law enforcement agencies, and much more. The breach we discovered was connected to an Israeli URL owned by a company that appeared to facilitate Indian students submitting documents to educational institutes in Israel and India. As a result, over 50,000 current and former students of the universities were exposed to a wide range of online frauds and attacks....

Since our company and our servers are located in Norway under Norwegian jurisdiction, we have a strong legal framework that protects our customers’ data. No domestic or foreign entity will gain access to the data without first acquiring a Norwegian court order. Additionally, Runbox does not scan emails to display ads, will not transmit your data to a third party service without your consent, will not give or sell your email address to a third party service, and does not use external tracking cookies to monitor usage....

Who is Sandworm? Individuals in the Russian Sandworm hacking group are believed to all be members of the Russian Military Unit 74455. This unit forms part of the Russian Main Intelligence Directorate commonly known as the GRU (Main Directorate of the General Staff of the Armed Forces of the Russian Federation). Sandworm is also known as the VoodooBear. The US Justice Department has previously charged members of Sandworm for their interference in the 2016 US elections....

Today, the biggest issue with IoT security is that there are many types of devices and standards, usually in commercial deployments, with zero visibility into what’s going on in the devices in terms of security. Think about a smart city deployment like we have here in Tel Aviv. There are multiple sensors on the streets, but no one can really tell what’s going on in the sensors. Until very recently, most of these types of solutions were using traditional IT architecture, with their own dedicated network and servers, which became very expensive and un-scalable....

Legacy Software Vulnerability Exploited Mid-December, Accellion, a California-based cloud solutions company focusing on secure file sharing, was made aware of a security vulnerability in one of their legacy software products. The 20-year-old product is meant to securely transfer large data files. Accellion resolved the vulnerability and released a software patch. However, this initial event was the beginning of a concerted cyberattack. In the weeks that followed subsequent exploits exposed data files of the Office of the Washington State Auditor (SAO)....

Lawsuit Filed Under Federal Securities Laws SolarWinds Corporation and two of its top executives have been hit with a class action lawsuit from its shareholders. The executives in question are outgoing CEO, Kevin Thompson, and chief financial officer, J. Barton Kalsu. The lawsuit relates to the breach of the SolarWinds’ Orion platform, which has impacted some 250 public and private entities. The class action lawsuit was filed on 4 January by a shareholder, Timothy Bremer....

ExtraTorrent doesn’t exist anymore. But there are a lot of P2P torrent sites that make great ExtraTorrent alternatives. Torrent websites such as: Since many countries block torrent sites altogether, it’s a wise idea to use a VPN. Apart from unblocking torrents, VPNs also secure your information and encrypt your data, providing better security overall. It spawned a bunch of alternatives, especially popular ones like extratorrents.cc, though they were mostly used for malicious activity, such as for phishing or for spreading malware....

However, the sheer number of messaging apps offering end-to-end encryption makes it difficult for most users to determine which ones are best suited for their needs. To resolve this problem, we’ve curated a list of the best encrypted messaging apps on the market today. These are: While an encrypted messaging app is a great first step towards online security and privacy, it is not enough by itself. Using a VPN is highly recommended, since it encrypts all your data and internet activity, securing it from third parties....

After analyzing several VPNs and conducting tests, we came up with a shortlist of the eight best VPNs for iPhones below: While each of these free VPNs offer excellent value, they don’t compare to a premium VPN like CyberGhost. Not only does CyberGhost offer faster speeds, it has a larger server network, better security features, and is quite affordable. While we typically recommend using a premium VPN, like NordVPN, we understand that not everyone wants to shell out a few dollars monthly on a VPN service....

For this reason, netizens from other parts of the world who travel to China for business, leisure, or living there usually have problems keeping track of the blocked websites in the country. Take a look below to see which of your favorite sites are blocked and click here to learn how you can unblock them. The Top 100+ websites blocked in China: If you’re looking for a website that isn’t mentioned in the list below, you can check if it’s blocked in China or not by using our special search tool....

Due to peer pressure, the desire for social media recognition, and the rush of doing something potentially dangerous, you might find your child interested in trends like “The Benadryl Challenge” or the “Shell On Challenge.” As a parent, there are multiple things you can do to mitigate the risks of these challenges: Show interest and take your child seriously. Talk to them about how each step of a challenge works....

To remove Android malware from a device, here’s what you must do: First, delete all unused and suspicious apps. Alternatively, an antivirus scanner, like Avira, can detect and remove infected apps for you. If this does not resolve the problem, you can try clearing your browsing data and downloads. Failing all else, you’ll have to factory reset your phone. In any case, it’s best to prevent Android malware infections in the first place....

These are some very common Facebook Marketplace scams: Counterfeit items — fake copies of expensive products being sold as the real deal Gift card scams — scammers ask to be paid in gift cards before ghosting buyers, as gift cards are anonymous and can’t be traced back to them Bait-and-switch — advertising one product before “switching” to another that’s of less quality Broken products — selling broken products that are being passed off as quality items Fake rentals — fraudulent listings of houses and apartments QR code scams — sellers being asked to scan a QR code to “ensure the buyer has the right account” but the seller gets charged instead Car deposit scams — buyers who pay a car deposit for a fraudulent listing “Accidental” overpaying — sellers claim to have overpaid using a fake screenshot and then ask their buyers to pay back the “extra” amount Fake giveaways — fake giveaways that phish for information Fake IELTS/TOEFL/etc....

In an internal memo obtained by NBC News, Catherine Szpindor, the House’s chief administrative officer (CAO), said TikTok poses “a number of security risks.” The House of Representatives is the latest branch of the U.S. government to ban TikTok. In December 2019, the U.S. Army banned the Chinese video-sharing app following an advisory from the Pentagon. Over a dozen U.S. states have also banned TikTok in recent months. And last week, Congress passed a $1....

The Case’s Details Today Ukrainian police announced the arrest in June of a 3-person money laundering gang operating from Ukraine’s Poltava region. The gang had been operating since 2018 and ran 20 cryptocurrency exchanges used to launder cryptocurrencies for criminal groups. Over the last two years, the gang allegedly laundered more than $42 million in funds originating mainly from ransomware attacks. The gang allegedly advertised its services in criminal forums on the dark web....

Details of the State Department’s Bounty The details of the DarkSide bounty are provided below: The department announced a reward of up to $10 million for information that leads to the “identification or location of any individual(s) who hold(s) a key leadership position in the DarkSide ransomware variant transnational organized crime group.” It also announced an additional reward of up to $5 million for information that leads to “the arrest and/or conviction in any country of any individual conspiring to participate in or attempting to participate in a DarkSide variant ransomware incident....

Remote code execution flaws have been popular with Microsoft these days, as both 3D Viewer and the MSHTML component have been reported as being affected by this particular vulnerability within the span of a couple of days. Adding to that, Microsoft Office has also been wading in vulnerability-laden waters as of late with code injection type issues. Both of these types of vulnerabilities are up there at the top in terms of vulnerability risk and severity levels....

Police Server Breach On Monday, the Washington DC Metropolitan Police Department’s network was breached. Cybercriminals posted screenshots on the dark web suggesting that they had stolen 250 GB worth of data from police computers. Some information was reposted on Twitter by vx-underground. A spokesperson for the police said in a statement that they had engaged the FBI to fully investigate the “unauthorized access incident”. The department did not immediately confirm whether they had been hit by ransomware....

What is WastedLocker? WastedLocker is new type of ransomware that was first detected in May 2020. It came into prominence a couple of weeks ago after it was used to attack Garmin, a major manufacturer of navigational equipment and smart devices. The ransomware’s name is derived from the filename it creates. When a victim’s files are encrypted with WastedLocker, the files’ filenames are modified to append an abbreviation of the victim’s name with the word “wasted” on the end....