Technology / Loraine Centeno

19th February 2025

A Massive School Software Breach May Affect Your Kids: Here's What You Need to Do

A PowerSchool statement revealed that the California-based Saas company first discovered the cybersecurity incident on December 28, 2024. The attack involved “unauthorized exfiltration of personal information” from the platform’s Student Information System (SIS). Its SIS contains data from the 18,000 school organizations and more than 60 million students and staff they serve.

Guelph Mercury • 23rd August 2022

‘Doxxing can be a life-and-death concern’: University of Waterloo professor warns of cyberattack that can turn deadly

‘Doxxing can be a life-and-death concern’: University of Waterloo professor warns of cyberattack that can turn deadly People unknowingly put themselves at risk to this type of cyberattack all the time says information security professor.

19th February 2025

An Amazon Prime Spoofing Campaign is Using Malicious PDF to Steal Credit Card Information

Threat intelligence experts at Unit 42 discovered the phishing campaign in January 2025. The attack starts with an email about the target's expiring Amazon Prime membership. Similar to the Amazon Prime membership phishing campaigns that ran rampant from 2022 to 2024, this tells the customer that there was an issue with the credit card on file and that failure to update the payment method will cause suspension of Prime benefits.

The Record • 18th September 2023

Sextortion now biggest rising, online threat to kids and teens in Waterloo Region, says cybercrime sergeant

Monsters have gone out of the closet and into children’s phones. There is a sinister threat lurking behind children’s screens and local police are warning about this alarming trend that has led to youths dying by suicide in some parts of Canada.

19th February 2025

This Phishing Attack Disables Your iPhone Security: Here's How to Protect Yourself

19th February 2025

Change This Setting to Avoid This Google Calendar Spoofing Attack

19th February 2025

Don't Fall For this Bank Account Draining Phantom Hacker Scam

The phantom hacker scam uses AI-powered social engineering tactics to drain thousands of dollars from victims' bank accounts. The scheme involves three phases, according to the FBI. Targets are moved through each phase, where scammers impersonate a bank or government staff, claiming to be from the "Fraud Department."

19th February 2025

How to Securely Dispose of Your Smart Home Devices

MUO • 5th March 2021

What You Need To Know About Golang-Based Malware

Golang is becoming the programming language of choice for many malware developers. According to cybersecurity firm Intezer, there’s been an almost 2000 percent increase in the number of Go-based malware strains found in the wild since 2017. The number of attacks using this type of malware is expected to increase in the next couple of years. What’s most alarming is that we’re seeing many threat actors who are targeting multiple operating systems with strains from a single Go codebase.

MUO • 25th April 2021

What Is Cybercrime as a Service?

The cybercrime landscape has evolved to become a highly lucrative and organized business. Using the as-a-service business model, cybercriminals are now offering their services and hacking tools to anyone willing to pay for them or split the profits. Here’s what this trend is about and why we should all be worried about our digital security. What Is Cybercrime as a Service? Cybercrime as a Service (CaaS) is the umbrella term used to describe an organized business model that involves malware de

Guelph Mercury • 18th February 2023

Retaining women in STEM is bigger issue says Waterloo tech executive

Retaining women in STEM is bigger issue says Waterloo tech executive A concept called 'leaky pipeline' describes the difficulty of retaining women at various different points in STEM

MUO • 24th April 2021

Your Website Has Been DDoSed - But What Does DDoS Mean?

You may have heard of hackers taking down websites in a DDoS attack. During a DDos strike, users will see a server error message whenever they try to access the website or service. Companies who get DDoSed suffer thousands of dollars' worth of damages. The longer hackers keep their sites down, the more money victims lose. So what is a DDoS attack? What is the actual definition of a DDoS attack? A DDoS or Distributed Denial of Service is a type of cyberattack that targets web servers, database

Guelph Mercury • 4th October 2022

Here’s what cybercriminals do to your stolen data, according to a University of Guelph cybersecurity expert

BetaKit • 12th September 2024

Global trends report shows AI adoption still lags in Canada

A new report, shared at the ALL IN conference in Montréal on Wednesday by data platform company WEKA, reveals key findings on the lagging adoption of artificial intelligence (AI) in Canada. The study, conducted by S&P Global Market Intelligence, gathered responses from 1500 AI professionals and decision-makers. The data, which offers an overall look at the current trends shaping AI adoption worldwide, noted an “astonishing rate of change” since the onset of ChatGPT 3 and the first wave of gener...

MakeUseOf • 14th December 2020

What is a Credential Stuffing Attack?

Credential stuffing is a type of cyber attack that involves ‘stuffing’ stolen credentials into multiple websites. Tools like bots have allowed hackers to automate the stuffing, allowing them to test millions of login credentials against dozens of sites in a short period. Here’s what you need to know about this attack and the simple ways you can protect yourself.

MUO • 19th December 2024

Watch Out for These Holiday Cyberattacks

The year's jolliest season can also be the most dangerous. Cybercriminals don't take holidays and are known to be more aggressive when people are thinking about Christmas, shopping, and eating. In 2023, online holiday sales reached $222.1 billion in the US alone. The boost in sales around the holidays attracts threat actors who want to take advantage of the increase in online transactions. According to SIRP, ransomware attacks surged 30%, and phishing attacks increased 35% during the 2023 ho...

Waterloo Chronicle • 5th May 2023

‘Canada is facing an ongoing cyber talent-shortage’: Ontario student teams heading to Waterloo for CyberTitan competition

Hosted by the university’s Cybersecurity and Privacy Institute (CPI), the sixth CyberTitan national finals organized by the Information and Communications Technology Council of Canada (ICTC) will challenge students with real-world cybersecurity situations.

The Record • 26th July 2023

‘Open to all’: Waterloo Cybersecurity Institute holding annual conference in October

The University of Waterloo’s Cybersecurity and Privacy Institute will be hosting the 2023 Cybersecurity and Privacy Institute Annual Conference on Oct. 12 from 8:30 a.m. to 6:30 p.m. at the school’s Federation Hall.

BetaKit • 30th September 2024

'It used to be lonely being Indigenous in tech' : How one tech founder’s question led to a community of hundreds

A series of conversations that sprung from one question soon evolved into a vibrant community of more than 340 Indigenous tech leaders, founders, and professionals spread geographically across Turtle Island. The Indigenous Tech Circle, which officially became a non-profit entity on National Indigenous Peoples Day (June 21st, 2024), now includes hundreds of members spread across the United States (US) and Canada. The group has monthly meet-ups and workshops, weekly intro sessions for new members...

Guelph Mercury • 11th February 2023

University of Guelph students, faculty launch Women in Cybersecurity non-profit

More work still needs to be done to address the gender gap in tech especially in tracks like cybersecurity, a complex field that some can find “intimidating” says Keerthana Madhavan, a graduate student at the University of Guelph.