Monthly Archives: September 2025

From One Tip to Thousands of Connected Scams: The 2025 Online Gaming Fraud Network

In 2025, online scams continue to escalate, with hundreds of sites recently exposed as malicious online gaming and gambling platforms[1]. These sites lure victims by advertising themselves as the “#1 crypto gaming platform,” often claiming ties to billionaires such as Elon Musk, Bill Gates, and MrBeast to appear credible [3]. Beyond fake endorsements, the platforms …

Continue reading “From One Tip to Thousands of Connected Scams: The 2025 Online Gaming Fraud Network”

When Law Enforcement Raids a Crypto Exchange: Insights from Canada’s TradeOgre Shutdown

Cryptocurrency exchanges are frequently praised for their potential for decentralization, pseudonymity, and ability to resist censorship. However, for numerous regulators and law enforcement bodies, they also attract misuse: money laundering, illegal financing, and untraceable asset transfers. In 2025, Canada embarked on a new phase in this narrative with the shutdown of TradeOgre, signifying what seems …

Continue reading “When Law Enforcement Raids a Crypto Exchange: Insights from Canada’s TradeOgre Shutdown”

COINBASE INSIDER BREACH AND RANSOM DEMAND: AN EMERGING RISK IN CRYPTO PRIVACY

It was one of the most high-profile security breaches ever to hit the cryptocurrency industry, and it happened in 2025 when Coinbase, America’s largest cryptocurrency exchange, disclosed a sophisticated insider attack that compromised personal details of some 70,000 customers.

The Clock is Ticking on TikTok: Algorithms, Security and the Battle for Control

Over the past two years, Tiktok has found themselves at the center of the most important digital sovereignty battles of our time. What was looking like a political dispute between the US government and a foreign-owned Chinese social media company on the surface, is now a debate about who controls the algorithms, safeguards data and …

Continue reading “The Clock is Ticking on TikTok: Algorithms, Security and the Battle for Control”

£2.3 Million Fine for 23andMe: A Warning on Weak Authentication – June 2025

When most people think of data breaches, they imagine stolen credit cards or leaked emails. But in 2023, DNA testing giant 23andMe exposed something far more intimate: its customers’ genetic information. Fast forward to June 2025, and UK regulators fined the company £2.3 million for failing to protect sensitive genetic data. This included family trees, …

Continue reading “£2.3 Million Fine for 23andMe: A Warning on Weak Authentication – June 2025”

WEMIX Suffers $6M Cyberattack: What Happened and What It Means

On March 4, 2025, WEMIX, a blockchain gaming platform, revealed that they were a victim of a cyberattack. This breach resulted in a loss of more than $6 million of their cryptocurrency assets and raised concerns about their security practices, especially on the developer side. What is WEMIX? WEMIX, a subsidiary of South Korean game …

Continue reading “WEMIX Suffers $6M Cyberattack: What Happened and What It Means”

Confederation of the UNCs – A Brief Look into A Series of the Salesforce Data Theft Exploit

CAUTION: This post is most-likely riddled with a prematurely conceived notion of someone who thinks they can fix cybersecurity for the defenders (we have a lot of those, don’t we?), but hear me out and approach this from the point of view of someone who genuinely wants to work with another person (and another person, …

Continue reading “Confederation of the UNCs – A Brief Look into A Series of the Salesforce Data Theft Exploit”

Canadian Cybersecurity Network report highlights surge in OT cyber incidents, rising critical infrastructure vulnerabilities

The event I will be speaking about is the recent rise in cyber incidents targeting Operational Technology systems (OT) and how these systems are increasingly converging with traditional IT networks. This convergence has made OT one of the most attractive and dangerous targets for cybercriminals. Unlike IT systems, which primarily handle data, OT systems control …

Continue reading “Canadian Cybersecurity Network report highlights surge in OT cyber incidents, rising critical infrastructure vulnerabilities”

SlopAds Campaign – 224 Malicious Apps Found in Google Play Store

What Happened? Security researchers from HUMAN’s Satori Threat Intelligence team were able to discover a massive ad fraud campaign that was being distributes through over 200 mobile apps available in Google Play Store. They named the whole campaign “SlopAds”, to signify the mass-production of malicious apps and the use of generative AI throughout the campaign. …

Continue reading “SlopAds Campaign – 224 Malicious Apps Found in Google Play Store”

SharePoint Critical Zero-Day Vulnerability

Your university and your business operations could face serious risks. The Microsoft SharePoint zero-day attack affected many institutions this past summer. Microsoft is urging administrators to take action and use the latest security updates. This exploit is being used in mass attacks. At least 400 organizations have been confirmed to have been breached. The Washington …

Continue reading “SharePoint Critical Zero-Day Vulnerability”

Powered by UCalgary

The views, information, or opinions expressed on this site are solely those of the individual(s) involved and do not necessarily represent the position of the University of Calgary as an institution.

Website Terms & Conditions | Privacy Policy | Copyright © 2024