Orange Spain Faces BGP Traffic Hijack After RIPE Account Hacked by Malware
Mobile network operator Orange Spain suffered an internet outage for several hours on January 3 after a threat actor used...
News
Exposed Secrets are Everywhere. Here’s How to Tackle Them
Picture this: you stumble upon a concealed secret within your company's source code. Instantly, a wave of panic hits as...
Russian Hackers Had Covert Access to Ukraine’s Telecom Giant for Months
Ukrainian cybersecurity authorities have disclosed that the Russian state-sponsored threat actor known as Sandworm was inside telecom operator Kyivstar's systems...
Alert: Ivanti Releases Patch for Critical Vulnerability in Endpoint Manager Solution
Ivanti has released security updates to address a critical flaw impacting its Endpoint Manager (EPM) solution that, if successfully exploited,...
New Bandook RAT Variant Resurfaces, Targeting Windows Machines
A new variant of remote access trojan called Bandook has been observed being propagated via phishing attacks with an aim...
Data Breach At Healthcare Tech Firm Impacts 45 Million Patients
HealthEC LLC, a provider of health management solutions, suffered a data breach that impacts close to 4.5 million individuals who received...
Cisa Warns Of Actively Exploited Bugs In Chrome And Excel Parsing Library
The U.S. Cybersecurity and Infrastructure Security Agency has added two vulnerabilities to the Known Exploited Vulnerabilities catalog, a recently patched...
Nearly 11 Million Ssh Servers Vulnerable To New Terrapin Attacks
Almost 11 million internet-exposed SSH servers are vulnerable to the Terrapin attack that threatens the integrity of some SSH connections....
Ftc Offers 25 000 Prize For Detecting Ai Enabled Voice Cloning
The U.S. Federal Trade Commission (FTC) has started accepting submissions for its Voice Cloning Challenge, a public competition with a...
Hackers Hijack Govt And Business Accounts On X For Crypto Scams
Hackers are increasingly targeting verified accounts on X (formerly Twitter) belonging to government and business profiles and marked with 'gold'...
Ivanti Warns Critical Epm Bug Lets Hackers Hijack Enrolled Devices
Ivanti fixed a critical remote code execution (RCE) vulnerability in its Endpoint Management software (EPM) that can let unauthenticated attackers hijack...
Everything Blocks Devs From Removing Their Own Npm Packages
Over the holidays, the npm package registry was flooded with more than 3,000 packages, including one called "everything," and others named a...
Russian Hackers Wiped Thousands Of Systems In Kyivstar Attack
The Russian hackers behind a December breach of Kyivstar, Ukraine's largest telecommunications service provider, have wiped all systems on the...
Zeppelin Ransomware Source Code Sold For 500 On Hacking Forum
A threat actor announced on a cybercrime forum that they sold the source code and a cracked version of the...
Experts Clash Over Ransomware Payment Ban
Security experts have begun the year in combative mood after a leading security vendor called on the US government to...
Nigerian Faces $7.5m BEC Charges After Charities Are Swindled
A Nigerian national is facing an eight-count indictment related to business email compromise (BEC) charges involving two US charities, after...
HealthEC Data Breach Impacts 4.5 Million Patients
A data breach at HealthEC LLC has impacted nearly 4.5 million people, with highly sensitive medical information accessed by cyber...
Using Stronger Passwords Among Top 2024 Digital Resolutions
Almost a quarter of people mentioned cybersecurity among their New Year’s digital resolutions for 2024, according to Kaspersky.In the latest...
LastPass Enforces 12-Character Master Passwords
Two years after suffering a series of major beaches, LastPass has started implementing stricter password measures for its customers.These include...
Ukraine Blames Russian Sandworm Hackers for Kyivstar Attack
Ukraine’s security service has attributed the cyber-attack on mobile operator Kyivstar to Russian hacking group Sandworm.Kyivstar is Ukraine’s largest mobile...
Beware: 3 Malicious PyPI Packages Found Targeting Linux with Crypto Miners
Three new malicious packages have been discovered in the Python Package Index (PyPI) open-source repository with capabilities to deploy a...
Three Ways To Supercharge Your Software Supply Chain Security
Section four of the "Executive Order on Improving the Nation's Cybersecurity" introduced a lot of people in tech to the...
UAC-0050 Group Using New Phishing Tactics to Distribute Remcos RAT
The threat actor known as UAC-0050 is leveraging phishing attacks to distribute Remcos RAT using new strategies to evade detection...
Mandiant’s Twitter Account Restored After Six-Hour Crypto Scam Hack
American cybersecurity firm and Google Cloud subsidiary Mandiant had its X (formerly Twitter) account compromised for more than six hours...
