Source: go.theregister.com – Author: Team Register Some smart locks controlled by Chirp Systems’ software can be remotely unlocked by strangers thanks to a critical security vulnerability....
Day: April 16, 2024
Roku makes 2FA mandatory for all after nearly 600K accounts pwned – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Streaming giant Roku is making 2FA mandatory after attackers accessed around 591,000 customer accounts earlier this year. That’s as specific...
Delinea Secret Server customers should apply latest patches – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Updated Customers of Delinea’s Secret Server are being urged to upgrade their installations “immediately” after a researcher claimed a critical...
US senator wants to put the brakes on Chinese EVs – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Electric vehicles may become a new front in America’s tech war with China after a US senator called for Washington...
Likely State Hackers Exploiting Palo Alto Firewall Zero-Day – Source: www.databreachtoday.com
Source: www.databreachtoday.com – Author: 1 Endpoint Security Company Released a Hotfix to the Command Injection Vulnerability Mihir Bagwe (MihirBagwe) • April 15, 2024 Likely...
FTC Bans Online Mental Health Firm From Sharing Certain Data – Source: www.databreachtoday.com
Source: www.databreachtoday.com – Author: 1 Fraud Management & Cybercrime , Governance & Risk Management , Healthcare Proposed Action Also Orders Cerebral Inc. to Pay $7M Penalty...
Law Firm to Pay $8M to Settle Health Data Hack Lawsuit – Source: www.databreachtoday.com
Source: www.databreachtoday.com – Author: 1 Healthcare , Industry Specific , Legislation & Litigation Orrick Herrington Cyberattack Compromised Clients’ Data, Affected Nearly 638,000 Marianne Kolbasuk McGee (HealthInfoSec)...
Sisense Breach Highlights Rise in Major Supply Chain Attacks – Source: www.databreachtoday.com
Source: www.databreachtoday.com – Author: 1 3rd Party Risk Management , Governance & Risk Management Experts Warn of Growing Threat From Supply Chain Attacks After High-Profile Breach...
Ransomware gang starts leaking alleged stolen Change Healthcare data – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Lawrence Abrams The RansomHub extortion gang has begun leaking what they claim is corporate and patient data stolen from United Health subsidiary...
New SteganoAmor attacks use steganography to target 320 orgs globally – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas A new campaign conducted by the TA558 hacking group is concealing malicious code inside images using steganography to deliver various...
Microsoft will limit Exchange Online bulk emails to fight spam – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Sergiu Gatlan Microsoft has announced plans to fight spam by imposing a daily Exchange Online bulk email limit of 2,000 external recipients starting...
Crypto miner arrested for skipping on $3.5 million in cloud server bills – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Image: Midjourney The U.S. Department of Justice has announced the arrest and indictment of Charles O. Parks III, known as...
Chipmaker Nexperia confirms breach after ransomware gang leaks data – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Dutch chipmaker Nexperia confirmed late last week that hackers breached its network in March 2024 after a ransomware gang leaked...
Daixin ransomware gang claims attack on Omni Hotels – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Sergiu Gatlan The Daixin Team ransomware gang claimed a recent cyberattack on Omni Hotels & Resorts and is now threatening to publish...
Cisco Duo warns third-party data breach exposed SMS MFA logs – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Bill Toulas Cisco Duo’s security team warns that hackers stole some customers’ VoIP and SMS logs for multi-factor authentication (MFA) messages in a...
Palo Alto Networks fixes zero-day exploited to backdoor firewalls – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Sergiu Gatlan Palo Alto Networks has started releasing hotfixes for a zero-day vulnerability that has been actively exploited since March 26th to...
Microsoft lifts Windows 11 block on some Intel systems after 2 years – Source: www.bleepingcomputer.com
Source: www.bleepingcomputer.com – Author: Sergiu Gatlan Microsoft has finally lifted a compatibility hold blocking Windows 10 users from updating to Windows 11 on systems with Intel...
Cisco Duo warns telephony supplier data breach exposed MFA SMS logs – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Cisco Duo warns telephony supplier data breach exposed MFA SMS logs Cisco Duo warns that a data breach involving one...
Ukrainian Blackjack group used ICS malware Fuxnet against Russian targets – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Ukrainian Blackjack group used ICS malware Fuxnet against Russian targets The Ukrainian hacking group Blackjack used a destructive ICS malware...
CISA adds Palo Alto Networks PAN-OS Command Injection flaw to its Known Exploited Vulnerabilities catalog – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini CISA adds Palo Alto Networks PAN-OS Command Injection flaw to its Known Exploited Vulnerabilities catalog U.S. Cybersecurity and Infrastructure Security...
Threat actors exploited Palo Alto Pan-OS issue to deploy a Python Backdoor – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini Threat actors exploited Palo Alto Pan-OS issue to deploy a Python Backdoor Threat actors have been exploiting the recently disclosed...
U.S. and Australian police arrested Firebird RAT author and operator – Source: securityaffairs.com
Source: securityaffairs.com – Author: Pierluigi Paganini U.S. and Australian police arrested Firebird RAT author and operator A joint investigation conducted by U.S. and Australian authorities led...
Russia and Ukraine Top Inaugural World Cybercrime Index – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 Russia, Ukraine and China harbor the greatest cybercriminal threat, according to the first World Cybercrime Index (WCI). This world-first cybercrime ranking...
New LockBit Variant Exploits Self-Spreading Features – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 A recent incident in West Africa has once again brought attention to the persistent threat posed by the LockBit ransomware. Cybercriminals,...
Palo Alto Networks Zero-Day Flaw Exploited in Targeted Attacks – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 Palo Alto Networks has detected targeted assaults exploiting a recently unearthed critical zero-day vulnerability within its PAN-OS software, designated CVE-2024-3400 with...
Chipmaker Giant Nexperia Confirms Cyber-Attack Amid Ransomware Group Claims – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 Global chipmaker giant Nexperia has revealed it suffered a cyber-attack amid reports that ransomware hackers stole sensitive documents and intellectual property...
FBI Warns of Massive Toll Services Smishing Scam – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 The FBI has warned of a prolific new smishing campaign using road toll collection as a pretext to trick victims into...
Police Swoop on €645m Cannabis Investment Fraud Gang – Source: www.infosecurity-magazine.com
Source: www.infosecurity-magazine.com – Author: 1 European police have made nine arrests and seized millions of euros in a bid to crack a notorious investment fraud scheme...