Custom search

Black Basta’s ransom haul tops $100M in less than 2 years

Analysis reveals 18 of ransomware gang Black Basta’s 300-plus victims were extorted over $1 million each, with one handed over $9 million.

Security Affairs

CISA adds ownCloud and Google Chrome bugs to its Known Exploited Vulnerabilities catalog

US CISA added ownCloud and Google Chrome vulnerabilities to its Known Exploited Vulnerabilities catalog......

CSO

Apple patches info-stealing, zero day bugs in iPads and Macs

The vulnerabilities that can allow the leaking of sensitive information and enable arbitrary code execution have had exploitations in the wild.

The Hacker News

Zero-Day Alert: Apple Rolls Out iOS, macOS, and Safari Patches for 2 Actively Exploited Flaws

Two critical security flaws in iOS, macOS, and Safari are under attack. Find out the details of CVE-2023-42916 and CVE-2023-42917 and how they could l

The Record

60 credit unions facing outages due to ransomware attack on popular tech provider

The ransomware attack targeted the cloud services provider Ongoing Operations, a company owned by credit union technology firm Trellance.

The Record

IoT vulnerability reporting obligations set to apply in EU from 2027

The new Cyber Resilience Act is intended to increase security standards for the Internet of Things. Manufacturers would face penalties for not properly reporting actively exploited vulnerabilities.

Trend Micro

Opening Critical Infrastructure: The Current State of Open RAN Security

The Open Radio Access Network (ORAN) architecture provides standardized interfaces and protocols to previously closed systems. However, our research on ORAN demonstrates the potential threat posed by malicious xApps that are capable of compromising the entire Ran Intelligent Controller (RIC) subsystem.

Bleeping Computer

Capital Health Hospitals hit by cyberattack causing IT outages

Capital Health hospitals and physician offices across New Jersey are experiencing IT outages after a cyberattack hit the non-profit organization's network earlier this week.

HACKRead

Android Banking Malware FjordPhantom Steals Funds Via Virtualization

Currently, the FjordPhantom malware appears to be active in Southeast Asia, covering countries including Malaysia, Thailand, Indonesia, Singapore, and Vietnam.

SC Magazine

Fewer cybersecurity professionals losing their jobs in breach ‘blame’ game

Cybersecurity job security, vendor loyalty and board support after a breach were covered in a survey of 500 CISOs.

Infosecurity News

Booking.com Customers Scammed in Novel Social Engineering Campaign

The sophisticated campaign has led to customers having their money stolen by cybercriminals

The Hacker News

This Free Solution Provides Essential Third-Party Risk Management for SaaS

Wing Security offers FREE third-party risk assessment for SaaS, enhancing cybersecurity in the digital era. Learn more in this article.

The Hacker News

CACTUS Ransomware Exploits Qlik Sense Vulnerabilities in Targeted Attacks

A CACTUS ransomware campaign has been observed exploiting vulnerabilities in the Qlik Sense cloud analytics and business intelligence platform.

Cyber Security News

New Android Malware Employs Various Tactics to Deceive Malware Analyst

cybercriminals employ ever more sophisticated forms of malware, with code obfuscation standing out as a deceptive technique.

CyberNews

US car dealer admits data breach

Berglund Management Group has disclosed a data breach that may have affected more than 50,000 people in the US.

Cyber Security News

Defend Ransomware Attacks With Top Effective Proactive Measures in 2024

We’re currently living in an age where digital threats loom large. Among these, ransomware has emerged as a formidable adversary, disrupting businesses and individuals alike. This malicious software, designed to encrypt data and demand payment for its release, poses significant challenges in terms of security and data integrity. Understanding and implementing a proactive ransomware protection […]

The Hacker News

U.S. Treasury Sanctions Sinbad Cryptocurrency Mixer Used by North Korean Hackers

The U.S. Treasury Department has imposed sanctions against a virtual currency mixer called Sinbad.

Ars Technica

2 municipal water facilities report falling to hackers in separate breaches

The facilities, in Pennsylvania and Texas, serve more than 2 million residents.

The Record

Thanksgiving hack on North Carolina city caused leak of employee data

A city in North Carolina is warning government employees that data from its systems may have been accessed in a pre-Thanksgiving holiday incident.

The Record

Russian and Chinese interference networks are ‘building audiences’ ahead of 2024, warns Meta

Influence operations from Russia and China are ramping up on social media in the run-up to several key elections that will take place in 2024, Meta said in a new report.

Bleeping Computer

Dollar Tree hit by third-party data breach impacting 2 million people

Discount store chain Dollar Tree was impacted by a third-party data breach affecting 1,977,486 people after the hack of service provider Zeroed-In Technologies.

Bleeping Computer

Dollar Tree hit by third-party data breach impacting 2 million customers

Discount store chain Dollar Tree was impacted by a third-party data breach affecting 1,977,486 customers after the hack of service provider Zeroed-In Technologies.

SC Magazine

Critical ownCloud bug ‘actively exploited’ after disclosure

No confirmed hacking incidents tied to the ownCloud vulnerability has highest severity CVSS score of 10, publicly disclosed Nov. 21.

HACKRead

Zoom Vulnerability Allowed Hackers to Take Over Meetings, Steal Data

The Zoom vulnerability was originally discovered in June 2023. Despite the discovery being made earlier, the details were only publicly disclosed on November 28, 2023.

Infosecurity News

DeleFriend Weakness Puts Google Workspace Security at Risk

Hunters’ Team Axon said the flaw could lead to the unauthorized access of emails in Gmail and more

PCMag

Okta: October Breach Actually Affected All Customer Support Users

The breach was originally believed to have only hit 134 corporate clients, but Okta now says it involved the 'names and email addresses of all Okta customer support system users.'

Bleeping Computer

How Continuous Pen Testing Protects Web Apps from Emerging Threats

The nature and ubiquity of modern web apps make them rife for targeting by hackers. Learn more from Outpost24 about the value of continuous monitoring to secure modern web apps.

CyberNews

Okta breach impacts all of its customers

Okta data breach impacted all of its users.

SecurityWeek

Okta Broadens Scope of Data Breach: All Customer Support Users Affected

Okta expands scope of October breach, saying hackers stole names and email addresses of all its customer support system users.

CyberNews

China's ride-hailing giant Didi offers coupons to apologize for app glitch

China's Didi Global is offering millions of its customers coupons worth 10 yuan ($1.40) as part of an apology for a glitch that hit its ride-hailing app this week.

Security Affairs

Okta reveals additional attackers' activities in October 2023 Breach

Cloud identity and access management solutions provider Okta revealed additional threat actor activity linked to the October 2023 breach.

SecurityWeek

Google Will Start Deleting ‘Inactive’ Accounts in December. Here’s What You Need to Know

Under Google’s updated inactive-account policy, accounts that haven’t been used in at least two years can be deleted.

CyberSecurity Dive

For financial services firms, a pattern of malicious cyber activity is emerging

The suspected ransomware attack against Fidelity National Financial marks the latest in a series of incidents, leading regulators to take additional enforcement actions.

HACKRead

OwnCloud "graphapi" App Vulnerability Exposes Sensitive Data

OwnCloud has fixed the issue in version 10.9.01 but urges customers to change their OwnCloud admin password, database and mail server credentials.

Infosecurity News

Hackers Exploit Critical Vulnerability in ownCloud

Zero-day bug could allow remote control of servers

Infosecurity News

Google Fixes Sixth Chrome Zero-Day Bug of the Year

Critical vulnerability is being exploited in the wild

The Hacker News

Discover Why Proactive Web Security Outsmarts Traditional Antivirus Solutions

Don't Rely on Antivirus Alone. Discover why proactive web security is crucial in the ever-changing digital landscape.

The Cyber Express

Okta Data Breach: Hackers Access Data of All Customer Support Users, Says Firm

In a letter to clients, Okta revealed that hackers who breached the cybersecurity firm's customer support system had obtained data

Computerworld

How to go incognito in Chrome, Edge, Firefox, and Safari

While incognito mode in any of the big four web browsers offers a measure of privacy, it doesn’t completely hide your tracks online. Here’s how the feature works in each browser, and how to use it.

The Cyber Express

Cyberattack on Japan’s Space Agency JAXA Confirmed!

Japan's space agency, JAXA, confirmed that it had been the subject of a cyberattack. On Wednesday, a spokesperson from Japan's

The Cyber Express

LockBit Ransomware Group Claims Cyberattack on India’s National Aerospace Laboratories

India's National Aerospace Laboratories (NAL) faces a serious threat as the notorious LockBit ransomware group has claimed responsibility for a

Ars Technica

ownCloud vulnerability with maximum 10 severity score comes under “mass” exploitation

Easy-to-exploit flaw can give hackers passwords and cryptographic keys to vulnerable servers.

The Record

Google network displayed ads on sanctioned websites, report shows

The Google Search Partners network showed ads from corporations and government agencies on sites belonging to sanctioned Iranian and Russian entities, according to a report from Adalytics.

The Record

New Jersey, Pennsylvania hospitals affected by cyberattacks

Hospitals in New Jersey and Pennsylvania are dealing with the ramifications of cyberattacks this week following several similar incidents that took place during the Thanksgiving holiday.

Bleeping Computer

New BLUFFS attack lets attackers hijack Bluetooth connections

Researchers at Eurecom have developed six new attacks collectively named 'BLUFFS' that can break the secrecy of Bluetooth sessions, allowing for device impersonation and man-in-the-middle (MitM) attacks.

Security Affairs

Threat actors started exploiting critical ownCloud flaw

Threat actors started exploiting a critical ownCloud vulnerability (CVE-2023-49103) that can lead to sensitive information disclosure.

Bleeping Computer

Google Chrome emergency update fixes 5th zero-day exploited in 2023

Google has fixed the fifth Chrome zero-day vulnerability this year in an emergency security update released today to counter ongoing exploitation in attacks.

Bleeping Computer

Google Chrome emergency update fixes 6th zero-day exploited in 2023

Google has fixed the sixth Chrome zero-day vulnerability this year in an emergency security update released today to counter ongoing exploitation in attacks.

SC Magazine

Thanksgiving week ransomware attack hits Ardent Health hospitals in 6 states

More than 200 sites of care and 30 hospitals in Ardent Health Services' system were affected by the ransomware attack, which was discovered Thanksgiving morning.

Bleeping Computer

DP World confirms data stolen in cyberattack, no ransomware used

International logistics giant DP World has confirmed that data was stolen during a cyber attack that disrupted its operations in Australia earlier this month. However, no ransomware payloads or encryption was used in the attack.

Infosecurity News

Ardent Health Services Grapples With Ransomware Disruption

Non-urgent procedures are being rescheduled, emergency room patients redirected to other hospitals

The Cyber Wire

Ransomware attacks against healthcare organizations.

Why criminals find healthcare organizations attractive targets.

Infosecurity News

Deepfake Digital Identity Fraud Surges Tenfold, Sumsub Report Finds

AI-powered tools are among the top fraud techniques used by threat actors in 2023, according to Sumsub’s third annual Identity Fraud Report

The Hacker News

Design Flaw in Google Workspace Could Let Attackers Gain Unauthorized Access

Researchers reveal a critical design flaw in Google Workspace, dubbed "DeleFriend," that could allow attackers to steal emails, exfiltrate data.

Cyber Security News

Ardent Health Ransomware Attack: Multiple Hospitals Affected

Ardent Health services were affected by an information Technology cybersecurity incident which has been determined as a Ransomware Attack.

Security Affairs

Healthcare provider Ardent Health Services disclosed a ransomware attack

The US Healthcare provider Ardent Health Services disclosed that it was the victim of a ransomware attack last week.

Cyber Security News

OwnCloud Critical Vulnerability Exploited in the Wild

Owncloud was discovered with a new vulnerability which was associated with the exposure of sensitive information.

The Cyber Wire

Iran hits Pennsylvania water utility.

Iranian hacktivists claim an attack on a Pennsylvania water utility.

The Hacker News

N. Korean Hackers 'Mixing' macOS Malware Tactics to Evade Detection

Lazarus Group's evolving cyber tactics target macOS systems by combining elements from multiple malware campaigns for better effectiveness and to avoi

The Record

North Texas water utility serving 2 million hit with cyberattack

A water utility serving two million people in North Texas is dealing with a cybersecurity incident that caused operational issues.

The Record

English council spent £1.1 million recovering from ransomware attack

Gloucester's local government released the expense figures related to a 2021 attack. The council had received a formal reprimand from the Information Commissioner's Office in August.

The Record

Senate proposes surveillance bill without FBI warrant requirement

The bipartisan Senate legislation would not require the FBI to obtain a warrant before searching the NSA’s massive data trove for information related to Americans.

CyberNews

"Systems malfunction" hits China's DiDi ride-hailing app, stranding millions

DiDi Global, the multi-app transportation platform, said its ride-hailing application in China experienced a 'systems malfunction,' leaving millions of riders stranded.

Bleeping Computer

Healthcare giant Henry Schein hit twice by BlackCat ransomware

American healthcare company Henry Schein has reported a second cyberattack this month by the BlackCat/ALPHV ransomware gang, who also breached their network in October.

Latest Hacking News

Multiple Vulnerabilities Found In ownCloud File Sharing App

Numerous security vulnerabilities riddled the privacy of ownCloud users that the vendor patched recently. Exploiting these vulnerabilities could expose users’ passwords to potential adversaries. ownCloud Vulnerabilities Risked User Accounts According to the recent advisories, ownCloud addressed three

Security Affairs

Ukraine's intelligence service hacked Russia's Federal Air Transport Agency, Rosaviatsia

Ukraine's intelligence service announced the hack of the Russian Federal Air Transport Agency, 'Rosaviatsia.'

Bleeping Computer

Ukraine says it hacked Russian aviation agency, leaks data

Ukraine's intelligence service, operating under the Defense Ministry, claims they hacked Russia's Federal Air Transport Agency, 'Rosaviatsia,' to expose a purported collapse of Russia's aviation sector.

Infosecurity News

Cybersecurity Incident Hits Fidelity National Financial

The Alphv/BlackCat ransomware group has claimed responsibility for the attack

SecurityWeek

Critical ownCloud Flaws Lead to Sensitive Information Disclosure, Authentication Bypass

Three critical vulnerabilities in ownCloud could lead to sensitive information disclosure and authentication and validation bypass.

Bleeping Computer

Leveraging Wazuh to combat insider threats

Effective strategies for mitigating insider threats involve a combination of detective and preventive controls. Such controls are provided by the Wazuh SIEM and XDR platform.

Cyber Security News

Kansas Court Hack: Attackers Stole Sensitive Data From Systems

Kanas Supreme Court released the statement for the cyber incident that stole sensitive data from systems,the cybercriminals also stole data.

SecurityWeek

US, UK Cybersecurity Agencies Publish AI Development Guidance

New guidance from US and UK cybersecurity agencies provides recommendations for secure AI system development.

CyberNews

Ukraine intelligence takes credit for Russia’s aviation agency hack

It is quite rare that a state openly boasts of an offensive cyber operation – but Ukraine did just that, announcing a hack of Russia’s civil aviation agency.

CyberSecurity Dive

Fidelity National Financial investigating cyberattack that led to service disruption

AlphV/BlackCat claimed responsibility for the attack on the title insurance giant, which is trying to determine whether the attack will have a material impact.

Infosecurity News

General Electric Investigates Alleged DARPA Breach

IntelBroker claims to be selling sensitive military data

CyberSecurity Dive

SEC’s cyber disclosure rules: Key considerations for the board, C-suite and risk managers

Each business stakeholder has a different cyber risk management responsibility. Given the SEC’s coming disclosure rules, it’s even more important to outline who owns what.

CyberNews

Robeson Health Care admits data breach

A healthcare provider in the US has disclosed a data breach that may have exposed the sensitive data of tens of thousands.

The Hacker News

U.S., U.K., and Global Partners Release Secure AI System Development Guidelines

U.K., U.S., and 16 other international partners have released new guidelines for the development of secure artificial intelligence (AI) systems.

Security Affairs

The hack of MSP provider CTS potentially impacted hundreds of UK law firms

The cyber attack that hit the managed service provider (MSP) CTS potentially impacted hundreds in the United Kingdom.

SecurityWeek

Pentagon’s AI Initiatives Accelerate Hard Decisions on Lethal Autonomous Weapons

The U.S. military is increasing use of artificial intelligence (AI) technology that will fundamentally alter the nature of war.

The Record

Multiple hospitals divert ambulances after ransomware attack on parent company

Ardent Health Services confirmed that it was responding to an incident. Hospitals in Texas, Idaho, Oklahoma, New Mexico and New Jersey reported problems over several days.

The Hacker News

8 days ago

Warning: 3 Critical Vulnerabilities Expose ownCloud Users to Data Breaches

ownCloud, an open-source file-sharing software, has disclosed 3 critical vulnerabilities.

Bleeping Computer

Critical bug in ownCloud file sharing app exposes admin passwords

Open source file sharing software ownCloud is warning of three critical-severity security vulnerabilities, including one that can expose administrator passwords and mail server credentials.

Infosecurity News

Cyber-Attack Disrupts UK Property Deals

A legal sector specialist infrastructure service provider has experienced a service outage that is impacting up to 200 conveyancing firms across the UK

Infosecurity News

Windows Hello Fingerprint Tech is Hacked

Blackwing researchers bypass the authentication system

The Record

How one Russian nonprofit is trying to crack through the Kremlin’s censorship wall

A decade after its founding, the internet freedom organization Roskomsvoboda finds itself adjusting to harsh political and social realities within Russia, where a wartime regime continues to expand its authority over the internet.

Security Affairs

Welltok data breach impacted 8.5 million patients in the U.S.

Healthcare services provider Welltok disclosed a data breach that impacted nearly 8.5 million patients in the U.S.

CyberNews

Cyber pros avoid smart devices: there is a good reason

Each new smart device creates a new vulnerability at home by providing a fresh attack vector for attackers. And some devices could cause actual physical harm.

Infosecurity News

North Korean Supply Chain Threat is Booming, UK and South Korea Warn

The UK’s NCSC and South Korea’s NIS issued a joint advisory describing some of North Korean hackers’ tactics in deploying supply chain attacks

The Hacker News

6 Steps to Accelerate Cybersecurity Incident Response

Effective Incident Response is more than just tools. It's a process. Explore the 6-step framework for successful IR.

Cyber Security News

WailingCrab Malware Abuse Messaging Protocol for C2 Communications

WailingCrab's backdoor component has been in contact with the C2 since the middle of 2023 via the lightweight IoT message protocol MQTT.

CyberNews

City in Texas attacked by Akira ransomware gang

Nassau Bay has admitted to having suffered a ransomware attack, leaving more than 8,000 affected.

Computerworld

What is Contact Key Verification and how is it used?

Apple’s iMessage will soon offer a new secure identity verification system enterprise professionals might want to use: Contact Key Verification.

CyberNews

DDoS has evolved in 2023: longer, more frequent, and more sophisticated

Novel approaches allow cyberattackers to bypass geoblocking defenses, flooding servers more frequently and for longer.

Security Affairs

Automotive parts giant AutoZone disclosed data breach after MOVEit hack

American retailer and distributor of automotive parts and accessories AutoZone discloses a data breach after a MOVEit attack

CyberNews

FEAM Aero reportedly hit by ransomware

Feam Aero, the global aircraft maintenance and technical services company, has been claimed by the LockBit ransomware gang.

DarkReading

Scattered Spider Hops Nimbly from Cloud to On-Prem in Complex Attack

The actor behind the high-profile MGM incident jumps across segmentations in under an hour, in a ransomware attack spanning Okta, Citrix, Azure, SharePoint, and more.

Bleeping Computer

Open-source Blender project battling DDoS attacks since Saturday

Blender has confirmed that recent site outages have been caused by ongoing DDoS (distributed denial of service) attacks that started on Saturday.

Infosecurity News

Why Ensuring Supply Chain Security in the Space Sector is Critical

Cybersecurity challenges facing the space sector are unique and securing the supply chain is a high priority

The Hacker News

AI Solutions Are the New Shadow IT

AI Solutions Are the New Shadow IT - Ambitious Employees Tout New AI Tools, Ignore Serious SaaS Security Risks

Latest Hacking News

Canada Government Admits Data Breach Impacting Public Employees

The Government of Canada recently admitted suffering a security breach that impacted data of current and former public employees. The incident even affected the staff from the Royal Canadian Mounted Police and Canadian Armed Forces. Canada

CyberSecurity Dive

Cloud security myths can leave SMBs exposed

AWS identified three cyber misconceptions that hinder small- and medium-sized businesses as they migrate workloads.

The Record

North Korean attack on CyberLink impacted devices around the world, Microsoft says

Microsoft has uncovered a supply chain attack by North Korean hackers who attached a malicious file to a CyberLink photo and video editing application installer.

Trend Micro

Attack Signals Possible Return of Genesis Market, Abuses Node.js, and EV Code Signing

The Trend Micro Managed XDR team encountered malicious operations that used techniques similar to the ones used by Genesis Market, a website for facilitating fraud that was taken down in April 2023.

DarkReading

Exploit for Critical Windows Defender Bypass Goes Public

Threat actors were actively exploiting CVE-2023-36025 in Windows SmartScreen as a zero-day vulnerability before Microsoft patched it in November.

Security Affairs

Tor Project removed several relays associated with a suspicious cryptocurrency scheme

The Tor Project removed several relays that were used as part of a cryptocurrency scheme and represented a threat to the users

Bleeping Computer

Auto parts giant AutoZone warns of MOVEit data breach

AutoZone is warning tens of thousands of its customers that it suffered a data breach as part of the Clop MOVEit file transfer attacks.

Bleeping Computer

Citrix warns admins to kill NetScaler user sessions to block hackers

Citrix reminded admins today that they must take additional measures after patching their NetScaler appliances against the CVE-2023-4966 'Citrix Bleed' vulnerability to secure vulnerable devices against attacks.

Cyber Security News

Rhysida Ransomware Attacking Windows Machine Through VPN Devices and RDP

Rhysida, a new ransomware group, hit its first victim in May 2023. They use their ransomware, offered as RaaS (Ransomware-as-a-Service), with at least 50 global victims listed on their website.

CyberNews

Russia leads in content removal requests to Google

Russia accounts for two thirds of 355,000 content removal requests Google received from various governments over the last decade.

Infosecurity News

Black Friday: Significant Security Gaps in E-Commerce Web Apps

Millions of consumers’ PII could be at risk due to exploitable vulnerabilities and a lack of basic security protocols in e-commerce web apps

SecurityWeek

Canadian Military, Police Impacted by Data Breach at Moving Companies

Data breaches at two moving companies impacts Canadian government employees, and military and police personnel.

SecurityWeek

Sumo Logic Completes Investigation Into Recent Security Breach

Sumo Logic has completed its investigation into the recent security breach and found no evidence of impact to customer data.

CyberSecurity Dive

Retailers brace for cyberthreat feast ahead of Thanksgiving shopping weekend

A rise in social engineering and generative AI pose increased risks as phishing attacks and ransomware gain speed and grow more sophisticated.

CyberNews

AutoZone adds itself to MOVEit victim list

US automotive parts giant says up to nearly 185,000 people may have been affected by cyberattack earlier this year.

CyberSecurity Dive

SMBs hit by rise in legitimate tool-based attacks

Attackers are moving away from malware and evading detection by abusing remote monitoring and management software, according to Huntress research.

CyberSecurity Dive

Companies are getting smarter about cyber incidents

Although incidents are up and risks are expanding, businesses are better prepared to send threat actors away empty-handed, a specialist says.

Security Affairs

The Top 5 Reasons to Use an API Management Platform - Security Affairs

Organizations need to govern and control the API ecosystem, this governance is the role of API management.

CSO

MOVEit carnage continues with over 2600 organizations and 77M people impacted so far

The number of companies impacted by one of the biggest cyberattack incidents of the year continues to grow.

The Record

Crypto firm Kronos Research says $26 million stolen after cyberattack

Cryptocurrency trading and investment firm Kronos Research said $26 million worth of cryptocurrency was stolen from its systems following a cyberattack.

DarkReading

Proof of Concept Exploit Publicly Available for Critical Windows SmartScreen Flaw

Threat actors were actively exploiting CVE-2023-36025 before Microsoft patched it in November.

Bleeping Computer

How to boost Security with Self-Service Password Resets

Learn more from Specops Software about the benefits of self-service password resets and ways to accomplish this with on-premises Active Directory.

SecurityWeek

5 Steps to Assessing Risk Profiles of Third-Party SSE Platforms

Secure Services Edge (SSE) platforms can introduce loopholes & vulnerabilities; it's crucial to assess the risk profiles of SSE platforms.

SecurityWeek

Yamaha Motor Confirms Data Breach Following Ransomware Attack

Yamaha Motor discloses ransomware attack impacting the personal information of its Philippines subsidiary’s employees.

Latest Hacking News

Google Elaborates On Campaigns Exploiting A Now-Patched Zimbra Zero-Day

Months after ensuring that the patch actually works, Google has now disclosed more details about active exploitation of a Zimbra zero-day vulnerability. The tech giant explained how the threat actors exploited the Zimbra zero-day in

Infosecurity News

Secretary Fined For Accessing Scores of Patient Records

NHS worker broke strict rules governing the special category data

CyberNews

Canadian Armed Forces, Mounties exposed in data breach

Members of the Canadian Armed Forces members, public servans, Mounties were exposed in a massive data breach.

CyberNews

Most cyberattacks in Russia come from China and North Korea

China and North Korea were behind most of state-sponsored cyberattacks in Russia, according to the country’s security firm Solar.

The Hacker News

Indian Hack-for-Hire Group Targeted U.S., China, and More for Over 10 Years

Indian Hack-for-Hire Group targeted U.S., China, Pakistan, and more for over a decade.

Bleeping Computer

15 days ago

Google shares plans for blocking third-party cookies in Chrome

Google has officially announced plans to gradually eliminate third-party cookies, a key aspect of its Privacy Sandbox initiative.

DarkReading

15 days ago

Shadowy Hack-for-Hire Group Behind Sprawling Web of Global Cyberattacks

For several years operators at New Delhi-based Appin hacked into, spied on, and stole data from targets around the world for clients that included private investigators, government agencies, law enforcement, and others.

Computerworld

Critical zero-day flaws in Windows, Office mean it's time to patch

Microsoft's Patch Tuesday release for November delivers 63 updates, with three zero-day flaws affecting Windows and Office. That makes quick patching a must.

DarkReading

Actions to Take to Defeat Initial Access Brokers

Initial access brokers (IAB) are often difficult to track. This Tech Tip spells out some countermeasures enterprises need to defend against stolen credentials.

Bleeping Computer

Yamaha Motor confirms ransomware attack on Philippines subsidiary

Yamaha Motor's Philippines motorcycle manufacturing subsidiary was hit by a ransomware attack last month, resulting in the theft and leak of some employees' personal information.

Bleeping Computer

Google: Hackers exploited Zimbra zero-day in attacks on govt orgs

Hackers leveraged a medium-severity security issue now identified as CVE-2023-37580 since June 29, nearly a month before the vendor addressed it in version 8.8.15 Patch 41of the software on July 25.

SecurityWeek

In Other News: Major Law Firm Hacked, Chinese Bank Pays Ransom, PyPI Security Audit

Noteworthy stories that might have slipped under the radar: top law firm hacked, Chinese bank pays ransom, PyPI conducts first security audit

DarkReading

Detection & Response That Scales: A 4-Pronged Approach

Building a resilient incident response team requires more than a simple combination of tools and on-call rotations.

CyberNews

European Commission, IBM pull ads from Elon Musk’s X

The EU’s executive branch said advertising on X posed “reputational damage” while IBM pulled ads after they were displayed next to Nazi content.

CyberNews

Change of tactics: ALPHV reports target to SEC for failing to disclose breach

In what’s probably a first, the ALPHV/BlackCat ransomware gang has filed a US Securities and Exchange Commission (SEC) complaint against one of their alleged victims.

CyberNews

City of Long Beach declares local emergency after cyberattack

The City of Long Beach, California declares a Local Emergency after a 'network security incident' on November 14th, forcing the city to shut down some systems..

Ars Technica

Ransomware group reports victim it breached to SEC regulators

Group tells SEC that the victim is in violation for not reporting it was hacked.

Security Affairs

Zimbra zero-day exploited to steal government emails by 4 groups

Google TAG revealed that threat actors exploited a Zimbra Collaboration Suite zero-day (CVE-2023-37580) to steal emails from governments.

Ars Technica

No Bing, no Edge, no upselling: De-crufted Windows 11 coming to Europe soon

Some changes will arrive for non-EU users, too, but not the easy removals.

SecurityWeek

Biden Campaign Looking for CISO

The Biden for President campaign is looking for a cybersecurity chief to “define the organization's risk appetite” and run the IT operations.

The Hacker News

Zero-Day Flaw in Zimbra Email Software Exploited by Four Hacker Groups

Zero-day flaw ( CVE-2023-37580) in Zimbra Collaboration email software was exploited by 4 groups, exposing email data and credentials.

SecurityWeek

Zimbra Zero-Day Exploited to Hack Government Emails

Google says a Zimbra zero-day from earlier this year, CVE-2023-37580, was exploited in several campaigns to hack government emails.

SecurityWeek

Threat Intel: To Share or Not to Share is Not the Question

Three things to look for in a threat intelligence sharing community that will make the process more attainable and impactful.

Security Affairs

Samsung suffered a new data breach

Samsung Electronics disclosed a data breach that exposed customer personal information to an unauthorized individual.

SecurityWeek

Ransomware Group Files SEC Complaint Over Victim's Failure to Disclose Data Breach

Alphv/BlackCat ransomware group files SEC complaint against MeridianLink over its failure to disclose a data breach caused by the hackers

The Hacker News

Hackers Could Exploit Google Workspace and Cloud Platform for Ransomware Attacks

Novel attack methods targeting Google Workspace & Cloud Platform could enable ransomware and data breaches.

CyberNews

Samsung notifies UK store customers of data breach

Samsung Electronics, a South Korean multinational tech corporation, has notified some of its customers of a data breach that exposed their personal data to a hacker.

Cyber Security News

Best Network Security Vendors for SaaS - 2024

Best Network Security Vendors for SaaS : 1. Perimeter 81 2. Palo Alto Networks 3. Fortinet 4. Symantec 5. Check Point 6. McAfee 7. Okta.

Cyber Security News

Wireshark 4.2.0 Released - What’s New!

Wireshark is a popular open-source network protocol analyzer that is primarily used by security experts and network administrators.

Bleeping Computer

Ransomware gang files SEC complaint over victim’s undisclosed breach

The ALPHV/BlackCat ransomware operation has taken extortion to a new level by filing a U.S. Securities and Exchange Commission complaint against one of their alleged victims for not complying with the four-day rule to disclose a cyberattack.

Ars Technica

Developers can’t seem to stop exposing credentials in publicly accessible code

Many transgressions come from "very large companies that have robust security teams."

CSO

Top cybersecurity product news of the week

New product and service announcements from Wiz, Palo Alto Networks, Sophos, SecureAuth, Kasada, Lacework, Noname Security, and more.

The Record

MeridianLink confirms cyberattack after ransomware gang claims to report company to SEC

Ransomware group AlphV claimed on its leak site that it reported MeridianLink to the Securities and Exchange Commission (SEC) for not informing the regulator of a cyberattack.

The Record

FTC targets telecom provider for inmates after massive data breach

The federal agency wants Virginia-based Global Tel*Link Corp. to improve its security practices and incident reporting policies.

The Record

Hackers target Greece, Tunisia, Moldova, Vietnam and Pakistan with Zimbra zero-day

The attacks targeting government agencies were carried out by four different groups throughout the summer, Google's Threat Analysis Group found.

Bleeping Computer

Samsung hit by new data breach impacting UK store customers

Samsung Electronics is notifying some of its customers of a data breach that exposed their personal information to an unauthorized individual.

Bleeping Computer

New Samsung data breach impacts UK store customers

Samsung Electronics is notifying some of its customers of a data breach that exposed their personal information to an unauthorized individual.

Ars Technica

Microsoft launches custom chips to accelerate its plans for AI domination

Amid GPU shortages, Microsoft reaches for custom silicon to run its AI language models.

CyberNews

Henry Schein data breach: banking details exposed

Henry Schein confirms an October data breach, claimed by APLHV/BlackCat ransom group, and reveals that customer bank account and credit card numbers were likely exposed.

Bleeping Computer

PJ&A says cyberattack exposed data of nearly 9 million patients

PJ&A (Perry Johnson & Associates) is warning that a cyberattack in March 2023 exposed the personal information of almost nine million patients.

Bleeping Computer

The OWASP Top 10: What They Are and How to Test Them

This article takes a deep dive into the OWASP Top 10 and advises on how to test your web applications for susceptibility to these security risks.

CyberNews

LockBit ransom gang behind mass exploitation of Citrix bug, researchers say

Security researchers are blaming a now-patched Citrix zero-day vulnerability for a recent spate of ransomware attacks said to be carried out by the LockBit gang.

The Record

Privacy watchdog chair Sharon Bradford Franklin on the fraught surveillance renewal debate

Recorded Future News speaks with Sharon Bradford Franklin, chair of the Privacy and Civil Liberties Oversight Board (PCLOB), about the watchdog's recommendations on the renewal of the powerful surveillance program and what the board is working on next.

The Record

Coker nomination for cyber director role advances to Senate

The Senate Homeland Security & Governmental Affairs Committee advanced the nomination of Harry Coker, moving him one step closer to taking over as the White House’s national cyber director.

The Record

CISA adds three Microsoft Patch Tuesday bugs to vulnerability list

The top cybersecurity agency in the U.S. warned that hackers are exploiting three vulnerabilities disclosed by Microsoft on Tuesday.

DarkReading

Microsoft Zero-Days Allow Defender Bypass, Privilege Escalation

Another two bugs in this month's set of fixes for 63 CVEs were publicly disclosed previously but have not been exploited yet.

CyberNews

Meta, Alphabet, ByteDance must face social media addiction lawsuits

A federal judge rejects Meta, Alphabet, and ByteDance's effort to dismiss litigation claiming their social media platforms addict children and damage their mental health.

Latest Hacking News

ICBC Ransomware Attack – China’s Largest Bank Forced To Use USBs

As ransomware attacks continue wreaking havoc, the latest victim turned out to be the largest Chinese bank. The ICBC Bank admitted suffering a ransomware attack, following which, the bank switched to using USB sticks to

Bleeping Computer

Windows 11 KB5032190 update enables Moment 4 features for everyone

Microsoft has released the KB5032190 cumulative update to fix security vulnerabilities in Windows 11. This is the first Patch Tuesday update with access to Windows 11 Moment 4 features, provided you turn on the "Get latest updates" toggle.

Bleeping Computer

Windows 10 KB5032189 update released with 11 improvements

Microsoft has released the KB5032189 cumulative update for Windows 10 21H2 and Windows 10 22H2, which contains eleven fixes for various issues.

SecurityWeek

Zip Raises $7.7 Million to Expand SMB Cybersecurity Business

Zip Security raised $7.7 million in funding led by General Catalyst, co-led by Human Capital, and with participation from Box Group.

Infosecurity News

Python Package Index Faces Security Crisis With Validated Leaks

2922 projects contained at least one unique secret, including from AWS, Redis and Google

Cyber Security News

8 New Metasploit Exploit Modules Released Targeting Critical Vulnerabilities

Metasploit is an open-source penetration testing framework created by Rapid7 that enables security professionals to simulate attacks against computer systems, networks, and applications.

Cyber Security News

McLaren Health Care Hacked: Attackers Claim 6 TB of Patient Data Stolen

McLaren Health Care was hacked 2.2 million individual data were breached after the attack of 6TB of Patient records in August.

SecurityWeek

ICS Patch Tuesday: 90 Vulnerabilities Addressed by Siemens and Schneider Electric

Siemens and Schneider Electric’s Patch Tuesday advisories for November 2023 address 90 vulnerabilities affecting their products.

CyberNews

Pro-Hamas cybergang develops complex infection tactics with new downloader

A threat actor targeting West Asian governments now uses a labyrinthine infection chain based on delivering a new initial access downloader dubbed IronWind

SecurityWeek

Hacker Conversations: Chris Wysopal, AKA Weld Pond

Chris Wysopal (AKA Weld Pond) founder and CTO of Veracode and member of the hacker collective L0pht Heavy Industries.

SecurityWeek

Webinar Today: Using Governance and Privilege to Gain Control Over Third-Party Access

Webinar demonstrates how to create sustainable processes and tools that enable you to control third-party (vendor) access.

CyberNews

Open-source software more resilient, study finds

Software written in the past few years is less error-prone on the whole and therefore more resistant to cyberattacks.

The Hacker News

CI/CD Risks: Protecting Your Software Development Pipelines

Malicious actors are exploiting Dependabot's trust. Learn how to protect your CI/CD pipelines and software supply chain.

CyberSecurity Dive

File-transfer services, rich with sensitive data, are under attack

This year has seen a trio of supply-chain attacks that created turmoil for thousands of corporate victims and their customers.

CSO

Cohesity taps Amazon for generative AI, cloud-based security

: The cloud-based data management provider said today that its many of its generative AI features will soon be available on Amazon Bedrock.

The Record

Tom Tugendhat criticizes fake AI attempts to ‘besmirch’ Keir Starmer and Sadiq Khan

Tom Tugendhat, Britain’s minister of state for security — and a Conservative Party politician — decried on Tuesday AI-generated fake audio clips that intended to damage the reputations of high-profile opposition politicians in the United Kingdom.

The Record

Cyber incident reports hit ‘all-time high,’ warns UK NCSC

The National Cyber Security Centre said that it received 2,005 voluntary reports over the past year, a 64% increase on last year’s figures. Nearly 400 of those were so serious that the agency's incident management team had to triage the response.

Ars Technica

Nvidia introduces the H200, an AI-crunching monster GPU that may speed up ChatGPT

The H200 will likely power the next generation of AI chatbots and art generators.

DarkReading

Ducktail Malware Targets the Fashion Industry

Threat actors distributed an archive containing images of new products by major clothing companies, along with a malicious executable disguised with a PDF icon.

CyberSecurity Dive

New York proposes ‘nation-leading’ hospital cybersecurity regulations

The rules, which would require facilities to develop response plans and hire a chief information security officer, aim to safeguard hospitals from growing threats and keep them operating during an attack.

SecurityWeek

Dragos Says No Evidence of Breach After Ransomware Gang Claims Hack via Third Party

Dragos finds no evidence of a data breach after the BlackCat ransomware group claimed to have hacked the security firm via a third party.

SecurityWeek

2.2 Million Impacted by Data Breach at McLaren Health Care

McLaren Health Care is informing roughly 2.2 million individuals of a data breach impacting their personal information.

Ars Technica

In a first, cryptographic keys protecting SSH connections stolen in new attack

An error as small as a single flipped memory bit is all it takes to expose a private key.

CyberSecurity Dive

Dragos again targeted by ransomware group, this time from AlphV

The industrial cybersecurity specialist previously thwarted a shakedown attempt in May and says the current threat has not been substantiated.

The Record

Canadian banking tech giant Moneris says it prevented ransomware attack

The joint venture of the Royal Bank of Canada and Bank of Montreal said its cybersecurity team “prevented access to critical data and no ransom request was made.”

The Record