Compliments-based social media app Slick has been discovered to have leaked
personal information of over 150,000 users for at least two months.

Slick is a Bengaluru-based social media platform launched in November 2022,
primarily aimed at teenagers and college students. The app is available for iOS
and Android, allowing users to connect with friends and create anonymous
compliment pools that can be shared with others.

According to security researcher Anurag Sen who discovered the misconfigured

A “sophisticated and highly-targeted phishing attack” on Reddit caught an
employee off guard, leading to a hack of the giant discussion platform, the
company said in a notice
[https://www.reddit.com/r/reddit/comments/10y427y/we_had_a_security_incident_heres_what_we_know/]
this week.

The attacker had built a “plausible-sounding” phishing lure guiding employees to
a clone of Reddit’s intranet – all crafted to trick staff into divulging their
access credentials and second-factor tokens.

All it t

Romance scammers received a hefty payout last year, with some 70,000 victims
losing a whopping $1.3 billion, according to the Federal Trade Commission’s
(FTC) latest report.

The median reported loss in 2022 reached $4,400 per victim, and FTC data shows
that 40% of the people who lost money began their ‘relationship’ with the
scammer on social media.

Besides unexpected private messages via social media, 19% of victims said they
met their romance scammer on dating platforms and apps. Once hooked

Microsoft announced in January
[https://www.bitdefender.com/blog/hotforsecurity/windows-7-officially-dies-as-last-extended-security-update-ends/]
that Windows 7 and Windows 8.1 have reached end of life and will no longer
receive security updates. But people don’t just drop an operating system after
years of use, and many users are in no hurry to upgrade. The good news is that
Bitdefender will continue providing support for its security solution running on
Windows 7 and Windows 8.1 until 2024.

Namecheap, one of the world’s leading domain registrars, has been hit by a
security incident that allowed perpetrators to launch an aggressive phishing
campaign.

After breaching Namecheap’s email account Sunday night, hackers attempted to
weaponize it by sending a flood of phishing emails impersonating DHL and
MetaMask.

The malicious campaigns started around 4:30 PM ET aiming to steal sensitive
information and crypto assets from customers of the services impersonated.
Threat actors sent the ro

The threat actors behind the black hat redirect malware campaign have scaled up their campaign to use more than 70 bogus domains mimicking URL shorteners and infect over 10,800 websites.
“The main objective is still ad fraud by artificially increasing traffic to pages which contain the AdSense ID which contain Google ads for revenue generation,” Sucuri researcher Ben Martin said in a report

Microsoft on Tuesday released security updates to address 75 flaws spanning its product portfolio, three of which have come under active exploitation in the wild.
The updates are in addition to 22 flaws the Windows maker patched in its Chromium-based Edge browser over the past month.
Of the 75 vulnerabilities, nine are rated Critical and 66 are rated Important in severity. 37 out of 75 bugs are

Google announced on Tuesday that it’s officially rolling out Privacy Sandbox on Android in beta to eligible mobile devices running Android 13.
“The Privacy Sandbox Beta provides new APIs that are designed with privacy at the core, and don’t use identifiers that can track your activity across apps and websites,” the search and advertising giant said. “Apps that choose to participate in the Beta