Conduent Breach Now Tops 25 Million Affected People. What You Can Do to Help Yourself

Shocking newly updated reports reveal the Conduent data breach now affects 25 million Americans. This revised number is far above earlier estimates. And new information seems to be released every day now about this incident. Hackers stole names Social Security numbers health insurance and medical information tied to government and healthcare programs Learn what was compromised and what steps victims should take now to protect themselves. READ FULL STORY

LastPass Users Targeted by Fake Backup Phishing Scam

LastPass users are being targeted by phishing emails urging “urgent vault backups” before fake maintenance. These messages aim to steal master passwords by leading victims to counterfeit sites. Attackers are sending deceptive emails claiming LastPass will perform scheduled maintenance and that users must “backup your password vault within 24 hours.” It’s no surprise that it leads to phishing sites designed to capture your master password. READ FULL STORY

Social Media Free Giveaway Scams Come With Hefty Costs

That $1,000 Amazon gift card you were promised for filling out a survey was never intended to be paid but is in fact a giveaway scam you just fell for. You may think there’s no real harm in filling out a bogus survey, but the real thing about these scams is that it’s stealing your PII (personally identifiable information). The enduring and timeless nature of scam giveaways show that, people don’t change much when it comes to getting something for nothing. READ FULL STORY

Chameleon Malware Changes Its Colors Again

Android malware is constantly advancing and acquiring new frightening capabilities. Chameleon is the name of a trojan that was designed to infiltrate Android Operating Systems. This program can obtain data, with a particular focus on financial information, and carry out numerous other malicious activities; none that are in your favor. Even more worrying is that the Chameleon Android malware received an upgrade making it new and improved from that of its former self. READ FULL STORY

Exposed—149M Gmail and Other Online Account Credentials

A massive credential leak recently came to light that may affect you. Cybersecurity researcher Jeremiah Fowler discovered a publicly accessible database containing more than 149 million unique usernames and passwords from hundreds of services. This treasure trove of information was compiled from records stolen by infostealer malware that quietly harvested login data from infected devices and uploaded it to a cloud repository that was left unsecured and unencrypted. READ FULL STORY

Fake Online Car Dealerships Drive Off With Your Money

If you’re like me, you hope you will never have to walk into a car dealership again to purchase a car. Just thinking about the last experience is anxiety-inducing to the highest degree. I suspect I am not alone in this. So the next time you want to purchase a vehicle, perhaps an online dealership will sound right up your alley. And, that’s all well and good, but scammers are onto that too and are creating fake online car dealerships to play off of that car-buying dread. READ FULL STORY

A Cat Is a Threat to Investors? No, but ACATS Fraud Is

Not to worry! It’s not your little furry friend that you need to be concerned about in this case. But ACATS fraud transfer should perk up your ears. The Automated Customer Account Transfer Service, or ACATS, is a system used by U.S. financial institutions to securely transfer assets, such as stocks, bonds, or cash, from one brokerage account to another. To appease our desire for speediness and without a lot of bother, ACATS is meant to make moving investments just that: fast and efficient. READ FULL STORY

Building Strong Passwords Using The “Don’ts” Of Password Security

Much is made of the importance strong passwords give to online account security, and for good reason. That’s because password cracking is often the first step for a hacker looking to break into an account – your account. A formidable password can make a cybercriminal give-up and move onto the next potential victim. But what’s also important and often overlooked is what not to do when creating a password. Consider the “don’ts” of weak password creation as reminders of what not to do. READ FULL STORY

Think Before You Tap: Malicious Apps Are Slipping Into Google Play

You think all apps in the Google Play Store are safe? Think again. While Google does have security check processes in place, some bad apps still make it into the store. A recent analysis by Zscaler reveals a significant surge in malicious app downloads from the Google Play Store, highlighting the escalating risk for Android users. Between June 2024 and May 2025, the firm identified a large number of harmful applications collectively installed tens of millions of times from the official App Store. READ FULL STORY

New Disturbing and “Deadly” Phishing Attack Targets LastPass Users

In what may be one of the more twisted phishing campaigns we’ve seen lately, users of the password manager LastPass are being told a “death certificate has been uploaded” in their name. But clearly, they are alive. This attack has been ongoing and is expected to continue. According to some reports, the phishers are even calling victims on the phone, using social engineering techniques and getting the login details. So how can you make sure you're in charge of your password manager account? READ FULL STORY

Do You Get My Vibe? Claude AI a Tool of Crime

Anthropic revealed that its Claude AI models—especially Claude Code—were hijacked by criminals to carry out what they describe as an “unprecedented” cybercrime spree. Rather than just using AI as an assistant, attackers used Claude end-to-end: zeroing in on weak spots, stealing data, crafting malware, and then demanding ransoms. The operation reportedly touched at least 17 organizations, covering healthcare, emergency services, government, and others.  READ FULL STORY

Keeping Your Information More Private and Out of the Hands of Attackers

It’s no secret, especially after the recent revelation of the NPD breach, that our information is everywhere online. This is true whether we intentionally allowed it or not. There are numerous websites that collect information about us and post it online. Many are “people search” sites. If you’ve ever looked up an unfamiliar phone number, some of these likely showed up. Well-known lookup sites have all kinds of information on all of us. The challenge is to keep this information from making you a victim of a phishing attack or identity theft. READ FULL STORY