Published on: 2025-06-28 20:50:34
Cybercriminals are using TikTok videos to trick users into infecting themselves with Vidar and StealC information-stealing malware in ClickFix attacks. As Trend Micro recently discovered, the threat actors behind this TikTok social engineering campaign are using videos likely generated using AI that ask viewers to run commands claiming to activate Windows and Microsoft Office, as well as premium features in various legitimate software like CapCut and Spotify. "This attack uses videos (possibly
Keywords: clickfix malware powershell tiktok videos
Find related items on AmazonPublished on: 2025-07-01 01:15:21
A Massachusetts student has agreed to plead guilty to federal charges relating to hacking and extorting one of the largest U.S. education tech companies, prosecutors confirmed Tuesday. Matthew D. Lane, 19, is accused of using stolen login credentials to access the network of an unnamed software company, which serves schools across North America and elsewhere, to steal the personal information of more than 60 million students and 10 million teachers. The stolen personal information included nam
Keywords: company data lane powerschool prosecutors
Find related items on AmazonPublished on: 2025-07-09 18:00:00
Ransomware gang members increasingly use a new malware called Skitnet ("Bossnet") to perform stealthy post-exploitation activities on breached networks. The malware has been offered for sale on underground forums like RAMP since April 2024, but according to Prodaft researchers, it started gaining significant traction among ransomware gangs since early 2025. Prodaft told BleepingComputer they have observed multiple ransomware operations deploying Skitnet in real-world attacks, including BlackBa
Keywords: c2 commands powershell sends skitnet
Find related items on AmazonPublished on: 2025-07-15 23:14:43
The state-backed North Korean threat group Konni (Opal Sleet, TA406) was observed targeting Ukrainian government entities in intelligence collection operations. The attackers use phishing emails that impersonate think tanks, referencing important political events or military developments to lure their targets. Proofpoint researchers who discovered the activity in February 2025 suggest that it's likely an effort to support the DPRK's military involvement alongside Russia in Ukraine and evaluate
Keywords: attacks north powershell proofpoint targeting
Find related items on AmazonPublished on: 2025-07-23 03:52:04
Months after the hacked education software maker PowerSchool paid a hacker’s ransom to delete the company’s banks of stolen student data, at least one school district says it is now being extorted by someone who said the data was not destroyed. PowerSchool, which provides its K-12 software to thousands of schools to support 60 million students across North America, was hacked in December 2024 using a single stolen credential, which allowed a hacker broad access to PowerSchool’s stores of person
Keywords: data powerschool ransom said stolen
Find related items on AmazonPublished on: 2025-08-05 23:30:09
After nearly disappearing as a category, compact cameras are making a comeback. Fujifilm’s X100 VI became a star on the photography side, thanks to its good looks and trendy film emulations. And DJI’s Osmo Pocket 3 captivated content creators with its motorized subject tracking and a gimbal that smooths harsh camera moves. Now, Canon has jumped back into compacts with the PowerShot V1, a vlogging-centric model that follows the six-year-old G7X Mark III. It’s designed to outshine rivals with a l
Keywords: camera canon powershot v1 video
Find related items on AmazonPublished on: 2025-09-06 23:23:04
The Russian state-backed hacking group Gamaredon (aka “Shuckworm”) has been targeting a military mission of a Western country in Ukraine in attacks likely deployed from removable drives. Symantec threat researchers say the campaign started in February 2025 and continued until March, with hackers deploying an updated version of the GammaSteel info-stealing malware to exfiltrate data. According to the report, initial access to the infected systems was probably achieved via removable drives conta
Keywords: files gamaredon powershell registry symantec
Find related items on AmazonPublished on: 2025-10-01 11:00:47
Engadget has been testing and reviewing consumer tech since 2004. Our stories may include affiliate links; if you buy something through a link, we may earn a commission. Read more about how we evaluate products . Canon is expanding its vlogging lineup in a big way with two new models, the R50 V mirrorless and PowerShot V1 compact, both designed to take on cameras in Sony's vlogging lineup. The PowerShot V1 has an interesting new 1.4-inch sensor that's considerably larger than the ones on most c
Keywords: ii mode powershot r50 v1
Find related items on AmazonPublished on: 2025-10-26 22:42:53
PowerSchool has published a long-awaited CrowdStrike investigation into its massive December 2024 data breach, which determined that the company was previously hacked over 4 months earlier, in August, and then again in September. PowerSchool is a cloud-based K-12 software provider serving over 60 million students and 18,000 customers worldwide, offering enrollment, communication, attendance, staff management, learning, analytics, and finance solutions. In December, the company announced that h
Keywords: actor crowdstrike data powerschool threat
Find related items on AmazonPublished on: 2025-10-28 01:25:00
We’re only a few months into 2025, but the recent hack of U.S. edtech giant PowerSchool is on track to be one of the biggest education data breaches in recent years. PowerSchool, which provides K-12 software to more than 18,000 schools to support some 60 million students across North America, first disclosed the data breach in early January 2025. The California-based company, which Bain Capital acquired for $5.6 billion, said an unknown hacker used a single compromised credential to breach its
Keywords: breach data hacker powerschool techcrunch
Find related items on AmazonPublished on: 2025-10-28 18:52:43
A hacker compromised the U.S. edtech giant PowerSchool months before its ‘massive’ data breach in December, according to a now-published forensic report into the incident conducted by U.S. cybersecurity firm CrowdStrike. In a letter sent to affected customers last week, seen by TechCrunch, PowerSchool confirmed that an investigation into the incident has revealed that its network “experienced unauthorized activity prior to December,” which CrowdStrike dated back to at least August 2024. PowerS
Keywords: access breach crowdstrike december powerschool
Find related items on AmazonPublished on: 2025-11-05 04:07:06
Updated Apple has reportedly filed a legal complaint with the UK's Investigatory Powers Tribunal (IPT) contesting the British government's order that it must forcibly break the encryption of iCloud data. The appeal will be the first of its kind lodged with the IPT, an independent judicial body that oversees legal complaints against potential unlawful actions by a public authority or UK intelligence services, according to the Financial Times, which broke the news. The revelation follows a battl
Keywords: apple data end powers uk
Find related items on AmazonPublished on: 2025-11-08 04:20:53
It appears Apple will have its day in court to challenge the UK’s not-so-secret-anymore order demanding a backdoor into iCloud. The Financial Times reports that Apple has filed a complaint to the Investigatory Powers Tribunal that could see the British government’s order overturned. The iPhone maker has made its appeal to the Investigatory Powers Tribunal, an independent judicial body that examines complaints against the UK security services, according to people familiar with the matter. The S
Keywords: apple filed investigatory powers uk
Find related items on AmazonPublished on: 2025-11-11 09:33:52
A newly uncovered ClickFix phishing campaign is tricking victims into executing malicious PowerShell commands that deploy the Havok post-exploitation framework for remote access to compromised devices. ClickFix is a social-engineering tactic that emerged last year, where threat actors create websites or phishing attachments that display fake errors and then prompt the user to click a button to fix them. Clicking the button will copy a malicious PowerShell command into the Windows clipboard, wh
Keywords: command fix powershell script threat
Find related items on AmazonGo K’awiil is a project by nerdhub.co that curates technology news from a variety of trusted sources. We built this site because, although news aggregation is incredibly useful, many platforms are cluttered with intrusive ads and heavy JavaScript that can make mobile browsing a hassle. By hand-selecting our favorite tech news outlets, we’ve created a cleaner, more mobile-friendly experience.
Your privacy is important to us. Go K’awiil does not use analytics tools such as Facebook Pixel or Google Analytics. The only tracking occurs through affiliate links to amazon.com, which are tagged with our Amazon affiliate code, helping us earn a small commission.
We are not currently offering ad space. However, if you’re interested in advertising with us, please get in touch at [email protected] and we’ll be happy to review your submission.