What’s New

Catch-IT: Multiple Vulnerabilities in Google Android OS

Multiple vulnerabilities have been discovered in Google Android OS, the most severe of which could allow for privilege escalation. Android is an operating system developed by Google for mobile devices, including, but not limited to, smartphones, tablets, and watches. Successful exploitation of the most severe of these vulnerabilities could [...]

Who’s Behind the Seized Forums ‘Cracked’ & ‘Nulled’?

The FBI joined authorities across Europe last week in seizing domain names for Cracked and Nulled, English-language cybercrime forums with millions of users that trafficked in stolen data, hacking tools and malware. An investigation into the history of these communities shows their apparent co-founders quite openly operate an Internet [...]

By |2025-02-05T12:26:50-05:00February 4th, 2025|Categories: BMT Announcement|

FBI, Dutch Police Disrupt ‘Manipulaters’ Phishing Gang

The FBI and authorities in The Netherlands this week seized dozens of servers and domains for a hugely popular spam and malware dissemination service operating out of Pakistan. The proprietors of the service, who use the collective nickname “The Manipulaters,” have been the subject of three stories published here [...]

By |2025-02-03T14:55:52-05:00January 31st, 2025|Categories: BMT Announcement|

Catch-IT: Apple Patches Actively Exploited Zero-Day Affecting iPhones, Macs, and More

Apple has released software updates to address several security flaws across its portfolio, including a zero-day vulnerability that it said has been exploited in the wild. The vulnerability, tracked as CVE-2025-24085, has been described as a use-after-free bug in the Core Media component that could permit a malicious application already installed on a [...]

A Tumultuous Week for Federal Cybersecurity Efforts

Image: Shutterstock. Greg Meland. President Trump last week issued a flurry of executive orders that upended a number of government initiatives focused on improving the nation’s cybersecurity posture. The president fired all advisors from the Department of Homeland Security’s Cyber Safety Review Board, called for the creation of a [...]

By |2025-01-28T08:42:50-05:00January 27th, 2025|Categories: BMT Announcement|

FAQ – New Jersey Data Protection Act, Effective January 15, 2025

The New Jersey Data Protection Act (NJDPA), N.J. Stat. § 56:8-166.4 et seq., went into effect on January 15, 2025, as New Jersey joins eighteen other states with comprehensive data privacy laws.  Here’s what you need to know to stay compliant and maintain consumer trust. Who Is Affected? This law [...]

Meet the BMT IT Support Team!

It’s Our Incredible People Who Make a Difference in your IT Support! The BMT Support Team is comprised of industry experts who are passionate about their work, have an extensive background in a wide variety of applications, and are dedicated to helping you.  We know how frustrating it is [...]

MasterCard DNS Error Went Unnoticed for Years

The payment card giant MasterCard just fixed a glaring error in its domain name server settings that could have allowed anyone to intercept or divert Internet traffic for the company by registering an unused domain name. The misconfiguration persisted for nearly five years until a security researcher spent $300 [...]

By |2025-01-23T08:54:47-05:00January 22nd, 2025|Categories: BMT Announcement|

Microsoft: Happy 2025. Here’s 161 Security Updates

Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three “zero-day” weaknesses that are already under active attack. Redmond’s inaugural Patch Tuesday of 2025 bundles more fixes than the company has shipped in one go since 2017. Rapid7‘s Adam Barnett says [...]

By |2025-01-15T12:24:52-05:00January 14th, 2025|Categories: BMT Announcement|

A Day in the Life of a Prolific Voice Phishing Crew

Besieged by scammers seeking to phish user accounts over the telephone, Apple and Google frequently caution that they will never reach out unbidden to users this way. However, new details about the internal operations of a prolific voice phishing gang show the group routinely abuses legitimate services at Apple [...]

By |2025-01-13T08:56:41-05:00January 7th, 2025|Categories: BMT Announcement|

U.S. Army Soldier Arrested in AT&T, Verizon Extortions

Federal authorities have arrested and indicted a 20-year-old U.S. Army soldier on suspicion of being a cybercriminal who has been selling and leaking sensitive customer call records stolen earlier this year from AT&T and Verizon.  The accused is a communications specialist who was recently stationed in South Korea. One [...]

By |2024-12-31T09:12:37-05:00December 30th, 2024|Categories: BMT Announcement|

Happy 15th Anniversary, KrebsOnSecurity!

Image: Shutterstock, Dreamansions. KrebsOnSecurity.com turns 15 years old today! Maybe it’s indelicate to celebrate the birthday of a cybercrime blog that mostly publishes bad news, but happily many of 2024’s most engrossing security stories were about bad things happening to bad guys. It’s also an occasion to note that despite [...]

By |2024-12-30T02:11:18-05:00December 29th, 2024|Categories: BMT Announcement|
Go to Top