Security Affairs
E-prescription provider MediSecure impacted by a ransomware attack
Electronic prescription provider MediSecure in Australia suffered a ransomware attack likely originate from a third-party vendor.
Security Affairs
Electronic prescription provider MediSecure in Australia suffered a ransomware attack likely originate from a third-party vendor.
Ars Technica
A journey through busted tapes, the Internet Old Farts Club, and SPARCstations.
The Hacker News
Kimsuky hackers launch new social engineering attack using fake Facebook accounts. Learn how they target activists via Messenger and deliver malware.
Security Affairs
Google released security updates to address a new actively exploited Chrome zero-day vulnerability, the third in a week.
Security Affairs
The Spanish bank Santander disclosed a data breach at a third-party provider that impacted customers in Chile, Spain, and Uruguay.
Security Affairs
An international law enforcement operation coordinated by the FBI led to the seizure of the notorious BreachForums hacking forum.
Security Affairs
One of the developers of the Tornado Cash cryptocurrency mixer has been sentenced to 64 months in prison.........
HACKRead
The cybercrime and hacker forum Breach Forums has been seized by the Federal Bureau of Investigation (FBI) and the Department of Justice.
Infosecurity News
CPR said exploit builders in .NET and Python have been employed to deploy this malware
The Cyber Express
The ever-evolving landscape of cybersecurity is shaped by a dedicated group of individuals. These pioneers, through their research, entrepreneurship, and
The Cyber Express
The notorious DragonForce ransomware group has expanded its list of victims, adding two new names to their dark web portal
Security Affairs
Adobe addressed multiple code execution vulnerabilities in several products, including Adobe Acrobat and Reader.
Security Affairs
The Singing River Health System revealed that the ransomware attack that hit the organization in August 2023 impacted 895,204 people.
Security Affairs
Microsoft Patch Tuesday security updates for May 2024 fixed 59 flaws across various products including an actively exploited zero-day.
Security Affairs
VMware fixed four flaws in its Workstation and Fusion desktop hypervisors, including three zero-days exploited at the Pwn2Own Vancouver 2024
Security Affairs
The non-profit technology organization MITRE released the EMB3D threat model for embedded devices used in critical infrastructure.
HACKRead
A new Android malware poses as popular applications like WhatsApp, Instagram, and Snapchat to steal user data, including login credentials.
Security Affairs
Google released emergency security updates to address an actively exploited Chrome zero-day vulnerability.
Security Affairs
Experts reported that since April, the Phorpiex botnet sent millions of phishing emails to spread LockBit Black ransomware
Security Affairs
Apple rolled out urgent security updates to address code execution vulnerabilities in iPhones, iPads, and macOS.
Security Affairs
The City of Helsinki suffered a data breach that impacted tens of thousands of students, guardians, and personnel.
Security Affairs
A group of hackers that defines itself as 'first-class Russian hackers' claims the defacement of hundreds of British newspaper websites
CyberNews
Europol confirmed one of it web portals was breached.
Cyber Security News
Romance scam schemes involve intricate manipulations, including using fake cryptocurrency exchanges to defraud victims.
Security Affairs
Firstmac Limited disclosed a data breach after the new Embargo extortion group leaked over 500GB of data allegedly stolen from the company.
Security Affairs
Pro-Russia hackers targeted government websites in Kosovo in retaliation for the government's support to Ukraine with military equipment.
Security Affairs
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
Security Affairs
Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024, FBI and CISA reported.
Security Affairs
The cyber attack on the Ohio Lottery on Christmas Eve exposed the personal data of over 538,000 individuals.
Security Affairs
Notorius threat actor IntelBroker claims that Europol has suffered a data breach that exposed FOUO and other classified data.
Security Affairs
A cyberattack hit the US Healthcare giant Ascension and is causing disruption of the systems at hospitals in the country
HACKRead
The notorious IntelBroker hacker claims to have successfully breached the European Union Agency for Law Enforcement Cooperation (Europol).
Bleeping Computer
The threat actor behind the recent Dell data breach revealed they scraped information of 49 million customer records using an partner portal API they accessed as a fake company.
Security Affairs
Since the start of the year, Google released an update to fix the fifth actively exploited zero-day vulnerability in the Chrome browser.
Security Affairs
CERT Polska warns of a large-scale malware campaign against Polish government institutions conducted by Russia-linked APT28.
The Hacker News
Fake Android apps mimicking popular platforms like Google & WhatsApp are stealing user data.
CyberNews
Cloud security company Zscaler is continuing an investigation into an alleged breach.
Security Affairs
Citrix urges customers to manually address a PuTTY SSH client flaw that could allow attackers to steal a XenCenter admin's private SSH key.
Security Affairs
IT giant Dell disclosed a security breach that exposed millions of customers' names and physical mailing addresses.
Security Affairs
Threat actors exploit recently disclosed Ivanti Connect Secure (ICS) vulnerabilities to deploy the Mirai botnet.
SecurityWeek
BetterHelp customers have started receiving refund notices from a $7.8 million data privacy settlement, the FTC says.
Security Affairs
Cybersecurity firm Zscaler is investigating claims of a data breach after hackers offered access to its network.
Security Affairs
Two high-severity vulnerabilities in BIG-IP Next Central Manager can be exploited to gain admin control and create hidden accounts on any managed assets.
HACKRead
The norotious IntelBroker hackers claims to have breached a leading cybersecurity company selling its access for $20,000 in XMR cryptocurrency.
Security Affairs
The LockBit ransomware group has added the City of Wichita to its Tor leak site and threatened to publish stolen data.
Security Affairs
TunnelVision is a new VPN bypass technique that enables threat actors to spy on users’ traffic bypassing the VPN encapsulation.
Security Affairs
Threat actors are exploiting a high-severity vulnerability in the LiteSpeed Cache plugin for WordPress to take over web sites
Security Affairs
A critical Remote Code Execution vulnerability in the Tinyproxy service potentially impacted 50,000 Internet-Exposing hosts.
Security Affairs
The UK Ministry of Defense disclosed a data breach at a third-party payroll system that exposed data of armed forces personnel and veterans.
The Record
Iraq is one of the few countries that has repeatedly cut off the internet to prevent alleged exam cheating.
Security Affairs
The FBI, UK National Crime Agency, and Europol revealed the identity of the admin of the LockBit operation and sanctioned him.
Bleeping Computer
BetterHelp has agreed to pay $7.8 million in a settlement agreement with the U.S. Federal Trade Commission (FTC) over allegations of misusing and sharing consumer health data for advertising purposes.
Security Affairs
MITRE published more details on the recent security breach, including a timeline of the attack and attribution evidence.
CyberNews
A report shows that myriad Facebook political ads in India during its current election season are run by fake and stolen accounts – despite Meta banning such practice.
Security Affairs
Alexander Vinnik, a Russian operator of virtual currency exchange BTC-e pleaded guilty to participating in a money laundering scheme.
Security Affairs
The City of Wichita in Kansas was forced to shut down its computer systems after a ransomware attack ........
Security Affairs
Resecurity found a massive leak involving the exposure of personally identifiable information (PII) of over 5M citizens of El Salvador.
Security Affairs
Finland's Transport and Communications Agency (Traficom) warned about an ongoing Android malware campaign targeting bank accounts.
Security Affairs
Law enforcement seized the Lockbit group's Tor website again and announced they will reveal more identities of its operators
Security Affairs
NATO and the European Union formally condemned cyber espionage operations carried out by the Russia-linked APT28 against European countries.
Security Affairs
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
Security Affairs
The Blackbasta extortion group claimed responsibility for the attack that in April severely impacted the operations of Synlab Italia.
Ars Technica
Cybercriminals openly run dozens of scams across social media and messaging apps.
CyberNews
Google and the US Justice Department wrap up closing arguments over claims that parent company Alphabet unlawfully dominated web search and related advertising.
Security Affairs
LockBit ransomware operators have published sensitive data allegedly stolen from the Simone Veil hospital in Cannes.
Security Affairs
The Ubiquiti EdgeRouter botnet is still used by Russia-linked group APT28 and cybercriminals organizations.
Security Affairs
Microsoft discovered a security flaw dubbed "Dirty Stream" affecting widely used Android applications, billions of installations are at risk.
Security Affairs
Zloader continues to evolve, its authors added an anti-analysis feature that was originally present in the Zeus banking trojan.
Security Affairs
A Ukrainian national, a member of the REvil group, has been sentenced to more than 13 years in prison for his role in extortion activities.
Security Affairs
Government agencies from the US, Canada and the UK warn of Russian threat actors targeting critical infrastructure in North America and Europe
Security Affairs
HPE Aruba Networking addressed four critical remote code execution vulnerabilities impacting its ArubaOS network operating system.
Security Affairs
Threat actors breached the Dropbox Sign production environment and accessed customer email addresses and hashed passwords
Security Affairs
CISA adds GitLab Community and Enterprise Editions improper access control vulnerability to its Known Exploited Vulnerabilities catalog.
Security Affairs
Panda Restaurant Group disclosed a data breach that occurred in March, resulting in the theft of associates' personal information.
SecurityWeek
Police say a principal from a Maryland high school was framed as racist by a fake recording of his voice using AI-based deepfake technology.
Security Affairs
A former U.S. NSA employee has been sentenced to nearly 22 years in prison for attempting to sell classified documents to Russia.
Security Affairs
Cuttlefish malware targets enterprise-grade and small office/home office (SOHO) routers to harvest public cloud authentication data.
Security Affairs
A flaw in the R programming language enables the execution of arbitrary code when parsing specially crafted RDS and RDX files.
SecurityWeek
SecurityWeek discusses cybersecurity leadership with Geoff Belknap, CISO at LinkedIn, and Guy Rosen, CISO at Facebook parent company Meta.
Security Affairs
The China-linked threat actors Muddling Meerkat are manipulating DNS to probe networks globally since 2019..
Security Affairs
Finnish hacker was sentenced to more than six years in prison for hacking into an online psychotherapy clinic and attempted extortion.
Bleeping Computer
A new vulnerability has been discovered in the R programming language that allows arbitrary code execution upon deserializing specially crafted RDS and RDX files.
Security Affairs
The US government’s cybersecurity agency CISA published a series of guidelines to protect critical infrastructure against AI-based attacks.
SecurityWeek
A vulnerability (CVE-2024-27322) in the R programming language implementation can be exploited to execute arbitrary and be used as part of a supply chain attack.
Security Affairs
The UK National Cyber Security Centre (NCSC) orders smart device manufacturers to ban default passwords starting from April 29, 2024.
Security Affairs
The FCC fined the largest U.S. wireless carriers $200 million for sharing customers' real-time location data without consent.
The Record
The European Commission "has created means to protect European citizens from targeted disinformation and manipulation by third countries. If we suspect a violation of the rules, we act," said President Ursula von der Leyen.
The Record
The pair was allegedly receiving orders from Russian intelligence services. If found guilty, they could face up to seven years in prison.
Security Affairs
Google announced they have prevented 2.28 million policy-violating apps from being published in the official Google Play.
Security Affairs
Financial Business and Consumer Solutions (FBCS) suffered a data breach that exposed information 2 million individuals.
CyberNews
Multi-factor and 2-factor authentication, its safety and how hackers can overcome it
Security Affairs
A Belarusian group of activist group claims to have infiltrated the network of the country’s main KGB agency.
CyberSecurity Dive
The largest data breach reported to the HHS’ Office for Civil Rights so far this year comes as regulators reconsider healthcare’s use of tracking technologies.
CyberSecurity Dive
Regulators have been pursuing more enforcement actions against health applications sharing consumers’ data. Friday’s final rule should give those actions more heft.
Security Affairs
Los Angeles County Department of Health Services reported a data breach that exposed thousands of patients' personal and health information.
Security Affairs
Multiple flaws in Brocade SANnav storage area network (SAN) management application can allow to compromise impacted appliances.
The Record
A cyberattack that knocked out the system providing real-time updates along the highway coincided with severe storms.
Security Affairs
ICICI Bank, a major private bank in India, mistakenly exposed the sensitive data of thousands of new credit cards to unintended recipients.
Security Affairs
Identity and access management services provider Okta warned of a spike in credential stuffing attacks aimed at online services.
Security Affairs
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
Loading more articles....