The Cyber Express
Cyberattack Disables Ukrainian Broadcaster 1+1 Media, Affecting 39 Channels
One of Ukraine's major media conglomerates, 1+1 Media, reported a debilitating cyberattack targeting its satellite TV channels. In a statement
DataBreaches
DFS Announces $1 Million Cybersecurity Settlement With First American Title Insurance Company
Press Release of November 28: The New York State Department of Financial Services (DFS) today announced that First American Title Insurance Company (First...
SecurityWeek
BigID Raises $60 Million at $1 Billion Valuation
Data security firm BigID raises $60 million in a growth funding round that values the company at over $1 billion
DataBreaches
More than 1 million Michiganders affected by Welltok cyberattack
Kristen Jordan Shamus reports: More than 1 million Michiganders were affected by a cybersecurity breach at Welltok Inc., a software company contracted to...
The Record
Golf club maker Callaway says 1 million affected by data breach
The company that sells the Callaway brand of golf gear reported a data breach that affected more than 1 million people.
Latest Hacking News
1Password Raise Bug Bounty Rewards To $1 Million
The popular password management solution 1Password has announced expanding its highest bounty reward limits. Onwards, 1Password bug bounty program on Bugcrowd will offer rewards of up to $1 million. 1Password $1 Million Bug Bounty According to a
Infosecurity News
NIST to Scrap SHA-1 Algorithm by 2030
The agency said it will stop using SHA-1 in its last remaining specified protocols by December 31 2030
ZDNet
Cloudflare acquires Area 1 Security for $162 million | ZDNet
Area 1 has worked in the email security space for nine years and has a significant trove of threat intelligence data.
SecurityWeek
Cloudflare Plans to Acquire Email Security Startup Area 1
Cloudflare has announced plans to purchase Area 1, a Kleiner-Perkins-backed startup doing business in the competitive email security space.
SecurityWeek
Wiz Raises $1 Billion at $12 Billion Valuation
Cloud security giant Wiz has raised $1 billion, which brings the total funding to $1.9 billion, at a valuation of $12 billion.
SecurityWeek
Hackers Earn Over $1 Million at Pwn2Own Toronto 2023
Hackers have demonstrated 58 zero-days and earned more than $1 million in rewards at Pwn2Own Toronto 2023.
CyberNews
Google to invest $1 billion in UK data center
Google will invest $1 billion on building a data center just outside of London, to meet its growing demand for internet services in the region.
Cyber Security News
Ransomware Payments Hitting Record High, Exceed $1 Billion
A new report by Chainalysis found that ransomware payments reached a staggering $1 billion in 2023, highlighting the growing threat posed by cybercrime.
SecurityWeek
1Password Increases Top Bug Bounty Reward to $1 Million
Password management software vendor 1Password today announced that it is willing to pay up to $1 million to researchers able to steal secrets from its vault.
Bleeping Computer
Saudi Aramco data breach sees 1 TB stolen data for sale
Attackers have stolen 1 TB of proprietary data belonging to Saudi Aramco and are offering it for sale on the darknet. The Saudi Arabian Oil Company, better known as Saudi Aramco, is one of the largest public petroleum and natural gas companies in the world. The sales price, albeit negotiable, is set at $5 million.
Bleeping Computer
Hacker arrested for cryptojacking 1 million virtual servers
A 29-year-old man in Ukraine was arrested this week for using hacked accounts to create 1 million virtual servers used to mine $2 million in cryptocurrency.
Ars Technica
Microsoft developing MAI-1 language model that may compete with OpenAI—report
In project headed by former Inflection chief, MAI-1 may have 500B parameters.
SecurityWeek
NIST to Retire 27-Year-Old SHA-1 Cryptographic Algorithm
NIST announces that SHA-1 should be phased out by the end of 2030 and replaced with more secure algorithms.
The Cyber Express
Halara in Crisis: Alleged Data Breach Exposes 1 Million Records
A threat actor, identifying as Sanggiero, declares responsibility for the alleged data leak of over 1 million rows of data
DataBreaches
Israeli company Candiru allegedly behind cyberattacks against journalists
Alden Tabac reports: A zero-day vulnerability in Google’s Chrome web browser was discovered on July 1 when it was used to target journalists in the Middle...
Cyber Security News
Researchers Awarded Over $1 Million in Pwn2Own Hacking Competition
At Pwn2Own Automotive 2024 Day 2, researchers were given over $1 million in rewards for exploiting Tesla info and much more.
SecurityWeek
Google Contributes $1 Million to Rust, Says It Prevented Hundreds of Android Vulnerabilities
Google announces $1 million investment in improving Rust interoperability after it prevented Android vulnerabilities.
SecurityWeek
Netflix Paid Out Over $1 Million via Bug Bounty Program
Netflix has paid out more than $1 million for vulnerabilities found in its products since the launch of its bug bounty program in 2016.
Security Affairs
NextGen Healthcare suffered a data breach that impacted +1 Million individuals
NextGen Healthcare suffered a data breach, the security incident exposed the personal information of approximately 1 million individuals. Healthcare solutions provider NextGen Healthcare suffered a data breach that exposed the personal information of informing approximately one million individuals. NextGen Healthcare, Inc. is an American software and services company that develops and sells electronic health record (EHR) software and practice management systems to […]
SecurityWeek
Over $1 Million Offered at New Pwn2Own Automotive Hacking Contest
ZDI is offering more than $1 million at the Pwn2Own Automotive hacking contest, hosted in January at the Automotive World conference in Tokyo.
The Hacker News
Magnet Goblin Hacker Group Leveraging 1-Day Exploits to Deploy Nerbian RAT
Magnet Goblin, a threat group known for fast exploitation of 1-day vulnerabilities, targets edge devices & public servers to deploy malware.
Bleeping Computer
Americans report losing over $1 billion to cryptocurrency scams
The U.S. Federal Trade Commission (FTC) says Americans have reported losing more than $1 billion worth of cryptocurrency to scams between January 2021 and March 2022.
The Hacker News
Goodbye SHA-1: NIST Retires 27-Year-Old Widely Used Cryptographic Algorithm
NIST has formally retired the widely used 27-year-old SHA-1 cryptographic algorithm, bringing cryptographic security into the modern age.
Bleeping Computer
Criminal IP Elevates Payment Security with PCI DSS Level 1 Certification
Criminal IP, a cyber threat intelligence search engine, has achieved PCI DSS Level 1 certification. Learn more from Criminal IP about their cyber threat intelligence search engine.
The Hacker News
U.S. Proposes $1 Million Fine on Colonial Pipeline for Safety Violations After Cyberattack
U.S. agency proposes nearly $1 million in penalties against Colonial Pipeline for multiple violations of Federal pipeline safety regulations.
Bleeping Computer
Cryptominers hijack $53 worth of system resources to earn $1
Security researchers estimate that the financial impact of cryptominers infecting cloud servers costs victims about $53 for every $1 worth of cryptocurrency threat actors mine on hijacked devices.
Bleeping Computer
Hacker spins up 1 million virtual servers to illegally mine crypto
A 29-year-old man in Ukraine was arrested this week for using hacked accounts to create 1 million virtual servers used to mine $2 million in cryptocurrency.
SecurityWeek
Security Analytics Firm Securonix Scores $1 Billion+ Growth Investment
Cybersecurity firm Securonix, which provides SIEM and Extended Detection and Response (XDR) technologies, has received more than $1 billion through an investment led by Vista Equity Partners
ZDNet
Log4j RCE activity began on December 1 as botnets start using vulnerability | ZDNet
Cloudflare said the earliest activity for the vulnerability known as Log4Shell was from December 1.
SecurityWeek
Over 1 Million Impacted in Data Breach at Texas Dental Services Provider
JDC Healthcare Management LLC discloses data breach impacting the personal information of more than 1 million Texans.
SecurityWeek
Device Exploits Earn Hackers Nearly $1 Million at Pwn2Own Toronto 2022
Pwn2Own Toronto 2022 has come to an end, with participants earning nearly $1 million for hacking smartphones, printers, routers, NAS devices, and smart speakers.
Bleeping Computer
Facebook to delete 1 billion faceprints in Face Recognition shutdown
Facebook announced today that they will no longer use the Face Recognition system on their platform and will be deleting over 1 billion people's facial recognition profiles.
The Hacker News
New Cyber Platform Lab 1 Decodes Dark Web Data to Uncover Hidden Supply Chain Breaches
Lab 1: a new cyber platform that uncovers hidden breach risks in supply chains by analyzing stolen data on the Dark Web
The Hacker News
Getting Your SOC 2 Compliance as a SaaS Company
Getting Your SOC 2 Compliance as a SaaS Company
Security Affairs
Pokemon Company resets some users' passwords
The Pokemon Company resets some users' passwords in response to hacking attempts against some of its users.
CyberNews
TV company exposes over 100K records
Zapping.com, a Chilean online television company, has leaked the sensitive data of over 100,000 of its customers.
DataBreaches
Hacker spins up 1 million virtual servers to illegally mine crypto
Bill Toulas reports: A 29-year-old man in Ukraine was arrested this week for using hacked accounts to create 1 million virtual servers used to mine $2 million...
Bleeping Computer
Magnet Goblin hackers use 1-day flaws to drop custom Linux malware
A financially motivated hacking group named Magnet Goblin uses various 1-day vulnerabilities to breach public-facing servers and deploy custom malware on Windows and Linux systems.
SecurityWeek
Luxembourg Energy Company Hit by Ransomware
The BlackCat (Alphv) ransomware group has taken credit for an attack on Luxembourg energy company Creos (Encevo).
Cyber Security News
Vendor SOC 1, 2 or 3 – Understanding the Differences
Your vendors pose different types of risks to your business and organization. Make sure they comply with industry standards. Deal with a SOC-compliant vendor if you use its services for critical projects. The three main SOC reports include SOC 1, SOC 2 and SOC 3. What are the differences between these reports? The following explanation […]
DataBreaches
Kashmir University Hacking: Data of 1 Million Students Found on Dark Web
Zaid Bin Shabir reports: A data breach at the University of Kashmir has exposed the personal information of over 1 million students of the varsity and...
CyberSecurity Dive
Microsoft CEO says security is its No. 1 priority
The comments from Satya Nadella come weeks after a withering report from the federal Cyber Safety Review Board scrutinized how the company prioritized speed to market over security.
DataBreaches
FBI investigating $100 million theft from blockchain company Harmony
Jonathan Greig reports: Blockchain company Harmony said $100 million in cryptocurrency was stolen from the platform on Thursday evening. The company said the...
Security Affairs
Anonymous leaked data stolen from Russian pipeline company Transneft
Anonymous hacked Omega Company, the in-house R&D unit of Transneft, the Russian oil pipeline giant, and leaked stolen data. Anonymous collective claims it has hacked Omega Company, which is the in-house R&D unit of Transneft, the Russia-based state-controlled oil pipeline company. Transneft is the largest oil pipeline company in the world, the hacktivists have stolen […]
Security Affairs
Asian media company Nikkei suffered a ransomware attack
The media company Nikkei has disclosed a ransomware attack and revealed that the incident might have impacted customer data. The Japanese-based media company Nikkey is focused on the business and financial industry, it is the world’s largest financial newspaper. This week the company disclosed a security breach, ransomware infected one of its servers at a […]
DataBreaches
Mansfield company hacked, personal information stolen
Oops — I missed this one last week. George W. Rhodes reported: The computer system of a Mansfield company that does background checks for employers was...
The Record
Aviation leasing company AerCap investigates ransomware incident
AerCap, a global company that leases aircraft, engines and helicopters, reported this week that it was responding to a ransomware attack.
DarkReading
Aircraft Leasing Company Acknowledges Cyberattack in SEC Filing
Black Basta ransomware claimed responsibility, but the company says its investigation is ongoing.
SecurityWeek
1 in 4 Organizations Shut Down OT Operations Due to Cyberattacks: Survey
A Palo Alto Networks survey shows many industrial organizations experience cyberattacks and 1 out of 4 has shut down OT operations.
SecurityWeek
Regulator Proposes $1 Million Fine for Colonial Pipeline One Year After Cyberattack
One year after the ransomware attack, the US Department of Transportation has proposed a fine of nearly $1 million to Colonial Pipeline over control room management failures.
DarkReading
Cyberattackers Target Nuclear Waste Company via LinkedIn
The hackers were unsuccessful in their attempts, but this is not the first time the company has experienced this kind of attack.
Bleeping Computer
Windows 11 may support Intel 7th gen, AMD Zen 1 CPUs in the future
Microsoft announced today that they might lower the Windows 11 system requirements to allow Intel 7th generation and AMD Zen 1 CPUs to use the new operating system.
The Record
German database company Genios confirms ransomware attack
The Munich-based company said that as a result of the incident, “unfortunately we have to assume an outage for several days.”
DataBreaches
PHOBOS ransomware infection at the Clinical Hospital No.1 CF Witting in Bucharest
The following is all machine translation of a notice from CERT-RO (Romania) SRI, in cooperation with CERT-RO and the Clinical Hospital No.1 CF Witting in...
DataBreaches
Australian infrastructure company Ventia hit with cyberattack
Jonathan Greig reports: The Australian infrastructure services provider Ventia is dealing with a cyberattack that began this weekend. On Saturday, the company...
The Hacker News
How to Automate Offboarding to Keep Your Company Safe
How to Automate Offboarding to Keep Your Company Safe
SecurityWeek
Fast Company Hack Impacts Website, Apple News Account
American business magazine Fast Company confirms Apple News account hijack after its content management system (CMS) was hacked.
The Record
North Korean gov’t hackers targeted aerospace company in Spain
Hackers with Lazarus used a spearphishing campaign to infiltrate the unnamed company.
DataBreaches
Company accuses former exec of data theft
TNN reports: A company engaged in providing holistic care to children with special needs has accused one of its former executives of stealing confidential data...
Security Affairs
Australian Telecoms company Optus discloses security breach
Australian telecoms company Optus disclosed a data breach, threat actors gained access to former and current customers. Optus, one of the largest service providers in Australia, disclosed a data breach. The intruders gained access to the personal information of both former and current customers. The company is a subsidiary of Singtel with 10.5 million subscribers as of 2019. […]
Bleeping Computer
Google Analytics data transfer to U.S. brings $1 million fine to Swedish firms
The Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten - IMY) has fined two companies with 12.3 million SEK (€1 million/$1.1 million) for using Google Analytics and warned two others about the same practice.
Bleeping Computer
No More Ransom saves almost €1 billion in ransomware payments in 5 years
The No More Ransom project celebrates its fifth anniversary today after helping over six million ransomware victims recover their files and saving them almost €1 billion in ransomware payments.
SecurityWeek
Microsoft to Acquire Cyber Threat Analysis Company Miburo
Microsoft is acquiring Miburo, a cyber threat analysis and research company that specializes in foreign information operations.
Security Affairs
US. rail and locomotive company Wabtec hit with Lockbit ransomware
US. rail and locomotive company Wabtec Corporation disclosed a data breach after it was hit with Lockbit ransomware attack. Wabtec Corporation is an American company formed by the merger of the Westinghouse Air Brake Company (WABCO) and MotivePower Industries Corporation in 1999. It manufactures products for locomotives, freight cars and passenger transit vehicles, and builds new locomotives up to 6,000 horsepower. The company employs […]
Security Affairs
Cyberattack halted the production at the Iranian state-owned Khuzestan Steel company
Iranian state-owned Khuzestan Steel Company was hit by a cyber attack that forced the company to halt its production. The Khuzestan Steel Company is one of the major steel companies owned by the Iranian government. The company was forced to halt production due to a cyberattack. According to the Associated Press, Khuzestan Steel Company has a monopoly […]
DataBreaches
Emma Sleep Company admits checkout Magecart attack
Paul Kunert reports: Emma Sleep Company has confirmed to The Reg that it suffered a Magecart attack which enabled ne’er-do-wells to skim...
SecurityWeek
Data Stolen in Breach at Security Company Entrust
Entrust suffered a data breach last month and the security company has confirmed that the attackers have stolen some files.
SecurityWeek
Risk Intelligence Company Strider Raises $45 Million
Risk intelligence startup Strider Technologies today announced that it has raised $45 million in Series B funding, which brings the total investment in the company to $57 million.
SecurityWeek
SSE Company Skyhigh Security Emerges From McAfee Enterprise
Symphony Technology Group announces the launch of SSE company Skyhigh Security after McAfee Enterprise has been split into two organizations.
Cyber Security News
Uber Hack – Company Said No Data Was Leaked in the Breach
All the services provided by the company are active and the company has notified law enforcement. Previously, the company did not disclose particulars about the attack, and experts believe that it doesn’t have clear idea about the depth of the incident.
Latest Hacking News
Bancor Announces a $1 Million Bug Bounty Program ahead of V3 Mainnet Launch
Bancor, the first automated market maker (AMM) on Ethereum, has released Bancor v3 Code on GitHub and announced the beginning of the Bancor v3 Bug Bounty Program offering up to $1 million in rewards. The Bancor
The Record
FBI investigating $100 million theft from blockchain company Harmony
Blockchain company Harmony said $100 million in cryptocurrency was stolen from the platform on Thursday evening.
The Record
Albanian parliament, telecom company hit by cyberattacks
The Albanian parliament and a telecom company operating in the country were targeted by cyberattacks this week, the country’s cyber agency said in a statement.
CyberNews
Jack Dorsey’s company Block sued over security breach | Cybernews
A class action lawsuit alleges the company failed to protect the data of over 8.2 million users.
DataBreaches
Thousands Affected by Ransomware Attack on Hawaii Company
Peter Boylan reports: About 4,500 customers of a Honolulu payroll processing company were potentially affected by a ransomware attack that exposed Social...
DataBreaches
Kaiser Wins Trademark Injunction Against Patient Data Company
Isaiah Poritz reports: Kaiser Foundation Health Plan Inc. won a preliminary injunction in California federal court against medical records company SureFile...
Security Affairs
Airline company Air France-KLM discloses security breach
Airline company Air France-KLM is notifying the customers of its loyalty program Flying Blue of a data breach. Airline company Air France-KLM announced it has suffered a data breach, data belonging to customers of its loyalty program Flying Blue were exposed. The Flying Blue loyalty program is used by other airlines, including Aircalin, Kenya Airways, […]
Bleeping Computer
Cisco confirms Yanluowang ransomware leaked stolen company data
Cisco has confirmed that the data leaked yessterday by the Yanluowang ransomware gang was stolen from the company network during a cyberattack in May.
Security Affairs
DoJ charged Tornado Cash founders with laundering more than $1 billion
The U.S. DoJ charged two men with operating the Tornado Cash service and laundering more than $1 Billion in criminal proceeds. The U.S. Justice Department charged two Tornado Cash founders ROMAN STORM and ROMAN SEMENOV have been charged with one count of conspiracy to commit money laundering and one count of conspiracy to violate the […]
Security Affairs
Crooks stole €15 Million from European retail company Pepco
Crooks stole €15.5 million from the European variety retail and discount store company Pepco through a phishing attack.
SecurityWeek
Data Security Company Open Raven Raises $20 Million
Data security firm Open Raven has raised $20 million in a Series B funding round that brings the total amount raised by the company to $40 million.
The Record
Russian hackers targeted petroleum refining company in NATO state
A hacking group associated with Russia’s Federal Security Service (FSB) unsuccessfully attempted to compromise a large petroleum refining company.
The Record
Hackers damaged some infrastructure of Ukraine’s Kyivstar telecom company
Kyivstar CEO Oleksandr Komarov said the incident managed to destroy some of its functions. The company has been slowly restoring services.
Cyber Security News
IT Security Analyst Jailed for Impersonating as a Hacker in Own Company
A 28 years old Former IT security analyst of an Oxford-based company has been sentenced to three years for deceiving the company to extort money.
DataBreaches
KS: Company that dumped private records in public trash is fined
AP reports: A national company will pay nearly $500,000 in fines for improperly disposing of documents that contained personal information of clients, the...
CyberNews
Akasa Air confirms the company was breached | Cybernews
Akasa Air, an Indian low-cost airline, issued an apology over a data breach. The company says names, gender, email addresses, and phone numbers may have been accessed.
The Hacker News
Indian Energy Company Tata Power's IT Infrastructure Hit By Cyber Attack
Tata Power, India's largest integrated power company, has been hit by a cyberattack.
CyberNews
Almost two million affected by data company Zeroed-In Technologies breach
HR data analytics company Zeroed-In Technologies was hacked in August this year.
The Hacker News
New SystemBC Malware Variant Targets South African Power Company
Russian threat actors suspected in cyber attack on South African power company using a new variant of the SystemBC malware called DroxiDat
The Record
Atlassian says employee, company info stolen from third-party app
Atlassian confirmed that data related to the company was stolen from Envoy, a third-party software supplier.
The Hacker News
Gaming Company Ubisoft Confirms It was Hacked, Resets Staff Passwords
French video game company Ubisoft on Friday confirmed it was a victim of a "cyber security incident."
Security Affairs
The Black Basta ransomware gang hit multinational company ABB
Swiss electrification and automation technology giant ABB suffered a Black Basta ransomware attack that impacted its business operations. Swiss multinational company ABB, a leading electrification and automation technology provider, it the last victim of the notorious Black Basta ransomware group. The company has more than 105,000 employees and has $29.4 billion in revenue for 2022. […]
The Hacker News
Taiwanese PC Company MSI Falls Victim to Ransomware Attack
Taiwanese PC company MSI confirms cyber attack on its systems and urges users to only download firmware/BIOS updates from its official website.
CyberSecurity Dive
Freight company Wabtec discloses June cyberattack impacting US, overseas operations
The Pittsburgh-based company began notifications in late December, months after stolen data posted on a LockBit site.
Trend Micro
LV Ransomware Exploits ProxyShell in Attack on a Jordan-based Company
Our blog entry provides a look at an attack involving the LV ransomware on a Jordan-based company from an intrusion analysis standpoint
Loading more articles....