Microsoft Patches One Critical and One Zero-Day Vulnerability
System administrators have had a relatively quiet June Patch Tuesday after Microsoft revealed updates for just 51 vulnerabilities, only one...
Premium Members Content
70% of Cybersecurity Pros Often Work Weekends, 64% Looking for New Jobs
Over 70% of cybersecurity professionals often have to work weekends to address security concerns at their organization, according to a...
Chinese FortiGate Espionage Campaign Snares 20,000+ Victims
A sophisticated Chinese espionage campaign targeting Fortinet edge devices was far more extensive than previously thought, resulting in the compromise...
Chinese Hackers Leveraging ‘Noodle RAT’ Backdoor
A backdoor in Executable and Linkable Format (ELF) files used by Chinese hackers has wrongly been identified as a variant...
Scattered Spider Now Affiliated with RansomHub Following BlackCat Exit
The notorious Scattered Spider cybercrime group has become an affiliate of the RansomHub ransomware-as-a-service (RaaS) operator, according to an analysis...
WithSecure Reveals Mass Exploitation of Edge Software and Infrastructure Appliances
Vulnerabilities in edge services and infrastructure devices are being increasingly exploited by cyber threat actors, according to a new report...
Ukrainian Cyber Police Identify Suspected LockBit and Conti Member
Police in Kyiv have “identified” a 28-year-old man on suspicion of working with big-name Russian ransomware groups to make their...
CISA Warns Phone Scammers Are Impersonating its Staff
A leading US security agency has warned people not to fall for a new phone-based impersonation fraud campaign, in which...
Ascension Attack Caused by Employee Downloading Malicious File
Ascension has revealed that ransomware attackers gained access to its systems after an employee accidently downloaded a malicious file.The incident,...
Arid Viper Hackers Spy in Egypt and Palestine Using Android Spyware
Researchers at cybersecurity provider ESET detected five cyber espionage campaigns starting in 2022, targeting Android users with trojanized apps in...
Kaspersky Finds 24 Flaws in Chinese Biometric Hardware Provider
Chinese hybrid biometric access systems provider ZkTeco is under scrutiny following a Kaspersky report revealing several new vulnerabilities in its...
Cyber Insurance Claims Hit Record High in North America
Cyber insurance claims in North America reached record levels in 2023, according to insurance broker Marsh.The firm received over 1800...
UK and Canadian Privacy Regulators Investigate 23andMe
Genetic testing firm 23andMe is facing the combined scrutiny of the UK and Canadian data protection authorities following a major...
Phishing Attacks Targeting US and European Organizations Double
Phishing continues to be one of the most favored ways of compromising systems for hacking groups, Abnormal Security has found.In...
UK Police Arrest Two People for Smishing via Fake Cell Tower
UK police have arrested two individuals accused of sending thousands of SMS phishing (smishing) messages, posing as banks and other...
NVIDIA and Arm Urge Customers to Patch Bugs
NVIDIA and Arm have urged customers to upgrade their products after revealing a series of new vulnerabilities.Arm announced an actively...
Threat Actor Breaches Snowflake Customers, Victims Extorted
A cyber threat actor is suspected to have stolen a significant volume of customer data from data warehousing platform Snowflake,...
NHS Appeals For Blood and Volunteers After Cyber-Attack
The NHS is fighting on several fronts to recover from the impact of a crippling ransomware attack last week, issuing...
IoT Vulnerabilities Skyrocket, Becoming Key Entry Point for Attackers
Internet of Things (IoT) devices containing vulnerabilities have surged by 136% compared to a year ago, according to Forescout’s The...
Threat Actor Claims to Leak 270GB of New York Times Data
An anonymous threat actor has posted what they claim to be 270GB of source code stolen from the New York...
Security Flaws Found in Popular WooCommerce Plugin
Multiple security vulnerabilities have been found in the WooCommerce Amazon Affiliates (WZone) plugin, according to Patchstack. This premium WordPress plugin, developed...
#Infosec2024: Collaboration is Key to an Effective Security Culture
Security leaders need to foster a culture where their colleagues do more than just follow the rules, according to a...
EmailGPT Exposed to Prompt Injection Attacks
A new vulnerability has been found in the EmailGPT service, a Google Chrome extension and API service that utilizes OpenAI’s...
#Infosec2024: Cyber Resilience Means Being Willing to Learn From a Crisis
Most CISOs now plan on the basis that a cyber-attack or data breach will happen, but there is still work...
