Source: www.securityweek.com – Author: Ionut Arghire Xerox says personal information was stolen in a cyberattack at US subsidiary Xerox Business Solutions. The post Xerox Confirms Data...
Author:
Free Decryptor Released for Black Basta Ransomware – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A vulnerability in Black Basta ransomware’s encryption algorithm allows researchers to create a free decryptor. The post Free Decryptor Released...
New DLL Search Order Hijacking Technique Targets WinSxS Folder – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Attackers can abuse a new DLL search order hijacking technique to execute code in applications within the WinSxS folder. The...
Pentagon Wants Feedback on Revised Cybersecurity Maturity Model Certification Program – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire DoD is requesting public opinion on proposed changes to the Cybersecurity Maturity Model Certification program rules. The post Pentagon Wants...
Vulnerabilities in Google Kubernetes Engine Could Allow Cluster Takeover – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Two flaws in Google Kubernetes Engine could be exploited to escalate privileges and take over the Kubernetes cluster. The post...
LoanCare Notifying 1.3 Million of Data Breach Following Cyberattack on Parent Company – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire LoanCare is informing 1.3 million individuals that their personal information was compromised in a data breach. The post LoanCare Notifying...
Mysterious Apple SoC Feature Exploited to Hack Kaspersky Employee iPhones – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire iOS zero-click attack targeting Kaspersky iPhones bypassed hardware-based security protections to take over devices. The post Mysterious Apple SoC Feature...
Police Warn Hundreds of Online Merchants of Skimmer Infections – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Law enforcement authorities in 17 countries discovered more than 400 online merchants infected with skimmers. The post Police Warn Hundreds...
CBS Parent National Amusements Discloses Year-Old Data Breach – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire CBS parent company National Amusements is informing 80,000 individuals of a December 2022 data breach. The post CBS Parent National...
Integris Health Data Breach Could Impact Millions – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Integris Health has started informing patients of a data breach impacting their personal information. The post Integris Health Data Breach...
Chameleon Android Malware Can Bypass Biometric Security – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire A variant of the Chameleon Android banking trojan features new bypass capabilities and has expanded its targeting area. The post...
Iranian Hackers Targeting US Defense Industrial Base Entities With New Backdoor – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Microsoft has observed Iranian state-sponsored hackers targeting employees at US DIB entities with the FalseFont backdoor. The post Iranian Hackers...
Inmate, Staff Information Stolen in Rhode Island Prison Data Breach – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The Donald W. Wyatt Detention Facility says the data of 2,000 inmates, staff, and vendors was stolen in a cyberattack....
Celebrities Found in Unprotected Real Estate Database Exposing 1.5 Billion Records – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Real Estate Wealth Network database containing real estate ownership data, including for celebrities and politicians, was found unprotected. The post...
ESO Solutions Data Breach Impacts 2.7 Million Individuals – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire ESO Solutions is informing 2.7 million individuals of a data breach impacting their personal and health information. The post ESO...
Google Rushes to Patch Eighth Chrome Zero-Day This Year – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Google warns of in-the-wild exploitation of CVE-2023-7024, a new Chrome vulnerability, the eighth documented this year. The post Google Rushes...
Mozilla Patches Firefox Vulnerability Allowing Remote Code Execution, Sandbox Escape – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Firefox and Thunderbird security updates released this week address multiple memory safety bugs in both products. The post Mozilla Patches...
NSA Blocked 10 Billion Connections to Malicious and Suspicious Domains – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The National Security Agency has published a new yearly report detailing its cybersecurity efforts throughout 2023. The post NSA Blocked...
3,500 Arrested, $300 Million Seized in International Crackdown on Online Fraud – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Authorities in 34 countries have cooperated to dismantle cyber-enabled scams as part of a six-month operation. The post 3,500 Arrested,...
Outlook Plays Attacker Tunes: Vulnerability Chain Leading to Zero-Click RCE – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Akamai researchers document more vulnerabilities and patch bypasses leading to zero-click remote code execution in Microsoft Outlook. The post Outlook...
Turngate Raises $5 Million to Shed Light on User Activity – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Turngate has raised $5 million in seed funding to help organizations decipher users’ identities and track their activity. The post...
Mr. Cooper Data Breach Impacts 14.7 Million Individuals – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Mr. Cooper has confirmed that personal and bank account information was compromised in a recent cyberattack. The post Mr. Cooper...
Governments Issue Warning After Play Ransomware Hits Hundreds of Organizations – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire US and Australian government agencies warn organizations of the Play ransomware group’s double-extortion tactics. The post Governments Issue Warning After...
CISA Flags Gaps in Healthcare Org’s Security Posture, Issues Security Guidance – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The US cybersecurity agency CISA issues cybersecurity recommendations for the healthcare and public health sector. The post CISA Flags Gaps...
NSA Issues Guidance on Incorporating SBOMs to Improve Cybersecurity – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire NSA has published guidance to help organizations incorporate SBOM to mitigate supply chain risks. The post NSA Issues Guidance on...
Delta Dental Says Data Breach Exposed 7 Million Customers – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Delta Dental of California says over 6.9 million individuals were impacted by a data breach caused by the MOVEit hack....
3CX Urges Customers to Disable Integration Due to Potential Vulnerability – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire 3CX tells customers to temporarily disable SQL Database integration to mitigate a potential vulnerability. The post 3CX Urges Customers to...
GitHub Improves Secret Scanning Feature With Expanded Token Validity Checks – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire Software development giant GitHub on Wednesday announced an enhancement to its secret scanning feature, now allowing users to check the...
Red Cross Publishes Rules of Engagement for Hacktivists During War – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The International Committee of the Red Cross (ICRC) is urging hacking groups involved in conflict during war to abide by...
CISA, NSA Publish Guidance on IAM Challenges for Developers, Vendors – Source: www.securityweek.com
Source: www.securityweek.com – Author: Ionut Arghire The US cybersecurity agency CISA and the NSA have published new guidance on implementing identity and access management (IAM), focusing...