Leaksmas: On Christmas Eve, multiple threat actors released substantial data leaks, Resecurity experts reported.
1.7 TB of data stolen from Cellebrite, a digital intelligence company that provides tools for law enforcement, were leaked online.
The Lockbit ransomware gang claims to have hacked the technology services giant CDW and threatens to leak the stolen data.
Researchers discovered a lock screen bypass bug in Android 14 and 13 that could expose sensitive data in users’ Google accounts.
Wiz researchers discovered two Linux vulnerabilities in the Ubuntu kernel that can allow an unprivileged local user to gain elevated privileges.
Two apps on the Google Play Store with more than 1.5 million downloads have been discovered spying on users and sending data to China.
DarkBeam left an Elasticsearch and Kibana interface unprotected, exposing records from previously reported and non-reported data breaches.
Hundreds of millions of PII records belonging to Indian residents, including Aadhaar cards, are being offered for sale on the Dark Web.
A vulnerability in Synology DiskStation Manager (DSM) could be exploited to decipher an administrator’s password.
(SecurityAffairs – hacking, Top 2023 Security Affairs cybersecurity stories)