Towards the end of last year, malicious hackers broke into the systems of Pepsi
Bottling Ventures, the largest privately-owned bottler of Pepsi-Cola beverages
in the USA, and installed malware.

For almost the month the malware secretly exfiltrated personally identifiable
information (PII) from the company’s network.

The first Pepsi Bottling Ventures knew about the unauthorized access to its
network was on January 10 2023, but it took a further nine days until the
organisation completely shut t

Compliments-based social media app Slick has been discovered to have leaked
personal information of over 150,000 users for at least two months.

Slick is a Bengaluru-based social media platform launched in November 2022,
primarily aimed at teenagers and college students. The app is available for iOS
and Android, allowing users to connect with friends and create anonymous
compliment pools that can be shared with others.

According to security researcher Anurag Sen who discovered the misconfigured

A “sophisticated and highly-targeted phishing attack” on Reddit caught an
employee off guard, leading to a hack of the giant discussion platform, the
company said in a notice
[https://www.reddit.com/r/reddit/comments/10y427y/we_had_a_security_incident_heres_what_we_know/]
this week.

The attacker had built a “plausible-sounding” phishing lure guiding employees to
a clone of Reddit’s intranet – all crafted to trick staff into divulging their
access credentials and second-factor tokens.

All it t

Romance scammers received a hefty payout last year, with some 70,000 victims
losing a whopping $1.3 billion, according to the Federal Trade Commission’s
(FTC) latest report.

The median reported loss in 2022 reached $4,400 per victim, and FTC data shows
that 40% of the people who lost money began their ‘relationship’ with the
scammer on social media.

Besides unexpected private messages via social media, 19% of victims said they
met their romance scammer on dating platforms and apps. Once hooked

Microsoft announced in January
[https://www.bitdefender.com/blog/hotforsecurity/windows-7-officially-dies-as-last-extended-security-update-ends/]
that Windows 7 and Windows 8.1 have reached end of life and will no longer
receive security updates. But people don’t just drop an operating system after
years of use, and many users are in no hurry to upgrade. The good news is that
Bitdefender will continue providing support for its security solution running on
Windows 7 and Windows 8.1 until 2024.

Namecheap, one of the world’s leading domain registrars, has been hit by a
security incident that allowed perpetrators to launch an aggressive phishing
campaign.

After breaching Namecheap’s email account Sunday night, hackers attempted to
weaponize it by sending a flood of phishing emails impersonating DHL and
MetaMask.

The malicious campaigns started around 4:30 PM ET aiming to steal sensitive
information and crypto assets from customers of the services impersonated.
Threat actors sent the ro

The threat actors behind the black hat redirect malware campaign have scaled up their campaign to use more than 70 bogus domains mimicking URL shorteners and infect over 10,800 websites.
“The main objective is still ad fraud by artificially increasing traffic to pages which contain the AdSense ID which contain Google ads for revenue generation,” Sucuri researcher Ben Martin said in a report