The Cyber Express
Russian Hackers Used Two New Backdoors to Spy on European Foreign Ministry
Researchers recently uncovered two new backdoors implanted within the infrastructure of a European Ministry of Foreign Affairs (MFA) and its
The Cyber Express
Researchers recently uncovered two new backdoors implanted within the infrastructure of a European Ministry of Foreign Affairs (MFA) and its
Bleeping Computer
Today, Google announced new security features coming to Android 15 and Google Play that will help block scams, fraud, and malware apps on users' devices.
Bleeping Computer
Today, Google announced new security features coming to Android 15 and Google Play Protect that will help block scams, fraud, and malware apps on users' devices.
Security Magazine
A sophisticated phishing campaign is bypassing multi-factor authentication in order to target Meta business accounts.
Ars Technica
Ebury backdoors SSH servers in hosting providers, giving the malware extraordinary reach.
Cyber Security News
The well-known advanced persistent threat (APT) group Turla, which is based in Russia, is said to be going after the European Ministry.
The Hacker News
Two new backdoors, LunarWeb and LunarMail, have targeted a European ministry of foreign affairs and its diplomatic missions in the Middle East
Cyber Security News
Best Network Security Providers for the Healthcare Industry - 1. Perimeter 81, 2. Palo Alto Networks, 3. Fortinet, 4. Cisco, 5. Trend Micro
The Record
Researchers with cybersecurity company ESET have labeled two new pieces of suspected Russian malware as LunarWeb and LunarMail.
Security Affairs
Experts reported that since April, the Phorpiex botnet sent millions of phishing emails to spread LockBit Black ransomware
SecurityWeek
Weakening liberal democracies and weakening the NATO alliance are conjoined in the hybrid war that Russia is conducting against Ukraine.
The Hacker News
Are your browser extensions safe? 33% in most orgs aren't! Learn to protect your data with insights from the 2024 Browser Security Report.
Infosecurity News
Affiliates of prolific Black Basta ransomware group have breached over 500 global organizations
Security Affairs
Black Basta ransomware affiliates have breached over 500 organizations between April 2022 and May 2024, FBI and CISA reported.
Bleeping Computer
CISA and the FBI said today that Black Basta ransomware affiliates breached over 500 organizations between April 2022 and May 2024.
DarkReading
CISA's agreement is voluntary and, frankly, basic. Signatories say that's a good thing.
The Cyber Express
Lenovo takes a bold step towards fortifying cybersecurity by joining the Secure by Design pledge, initiated by the US Cybersecurity
The Record
The current cybersecurity situation in the healthcare industry is at least a decade in the making, White House official Anne Neuberger said at the RSA Conference.
The Cyber Express
Ascension, one of the largest nonprofit healthcare systems in the United States, is facing disruptions in clinical operations due to
Bleeping Computer
Ascension, one of the largest private healthcare systems in the United States, has taken some of its systems offline to investigate what it describes as a "cyber security event."
Bleeping Computer
The FBI warned retail companies in the United States that a financially motivated hacking group has been targeting employees in their gift card departments in phishing attacks since at least January 2024.
HACKRead
This article explores Microsoft Azure Entra ID flaw, explains the vulnerability in context, and offers actionable steps to secure your organization.
The Cyber Express
A new UPS management vulnerability in CyberPower Uninterrupted Power Supply (UPS) management software has been uncovered, revealing multiple flaws that have
The Cyber Express
MedStar Health, a prominent non-profit healthcare provider disclosed a data breach that impacts more than 183,000 patients from its hundreds
SecurityWeek
Hundreds of companies are showcasing their products and services this week at the 2024 edition of the RSA Conference in San Francisco.
CyberNews
The Federal Bureau of Investigation (FBI) has warned of heightened cybercriminal activity against employees at US retail corporate offices.
SC Magazine
Zero trust, access certification campaigns and regular AD risk assessments are more critical than ever.
Infosecurity News
US government officials discussed plans on how to incentivize security by design principles in the software manufacturing process during RSA
HACKRead
In a major blow to ransomware, international law enforcement has unmasked Dmitry Yuryevich Khoroshev, the leader of LockBit ransomware.
CSO
Organizations that eschew cyber insurance give up not only financial protection but also advice from the insurer on improving the security of their systems.
The Hacker News
APT42, an Iranian state-backed hacking group, is leveling up its social engineering tactics. They're posing as journalists and event organizers to bui
SecurityWeek
Iranian state-sponsored group APT42 is targeting NGOs, government, and intergovernmental organizations with two new backdoors.
Cyber Security News
Two vulnerabilities have been identified in pgAdmin of PostgreSQL which were associated with Cross-Site Scripting and Multi-Factor
CyberSecurity Dive
Change Healthcare was running on legacy technology, which magnified the ransomware attack’s impact and hampered recovery efforts, Andrew Witty said.
Cyber Security News
The weekly news summary keeps you up to date with what’s happening in cybersecurity, including developments, vulnerabilities, breaches, threats, and defensive strategies. Knowing about new cyber risks and attack vectors helps you put up safeguards and preventive measures as soon as possible to protect your systems. Remaining constantly aware gives you a holistic view of […]
Bleeping Computer
The Iranian state-backed threat actor tracked as APT42 is employing social engineering attacks, including posing as journalists, to breach corporate networks and cloud environments of Western and Middle Eastern targets.
The Hacker News
Czechia and Germany reveal they were targets of a massive cyber espionage campaign by Russia-linked APT28 hacker group.
The Cyber Express
The digital world continues to spin at breakneck speed, and this week's TCE Cyberwatch brings you the latest updates on
DarkReading
Patch now: Cyberattackers are exploiting CVE-2023-7028 (CVSS 10) to take over and lock users out of GitLab accounts, steal source code, and more.
Bleeping Computer
NATO and the European Union, with international partners, formally condemned a long-term cyber espionage campaign against European countries conducted by the Russian threat group APT28.
Bleeping Computer
Bitwarden, the creator of the popular open-source password manager, has just launched a new authenticator app called Bitwarden Authenticator, which is available for iOS and Android devices.
Ars Technica
The threat is potentially grave because it could be used in supply chain attacks.
DarkReading
Threat actor dropped in to Dropbox Sign production environment and accessed emails, passwords, and other PII, along with APIs, OAuth, and MFA info.
Cyber Security News
Washington, D.C., May 1, 2024 – The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert concerning a newly
The Cyber Express
In today's digital age, the necessity of strong and unique passwords has never been more critical. With cyber threats looming
Infosecurity News
Attackers accessed emails, usernames, phone numbers, hashed passwords and authentication information
Infosecurity News
The US and its allies claim Russian hacktivists are disruptive operations in water, energy, food and agriculture sectors
The Cyber Express
CEO Andrew Witty testified before Congress on Wednesday, disclosing a significant cyberattack on Change Healthcare, a subsidiary of UnitedHealth Group.
SecurityWeek
Dropbox says hackers breached its Sign production environment and accessed customer email addresses and hashed passwords.
Cyber Security News
Today marks the annual celebration of World Password Day, emphasizing the critical role that strong passwords play in safeguarding our digital
CSO
Mandiant observed several malicious campaigns with threat actors impersonating journalists and harvesting the victim’s cloud environment credentials.
CSO
Despite paying a $22 million ransom in Bitcoin to regain access to encrypted files, the company cannot confirm whether copies of the data were made or published online.
Cyber Security News
Dropbox disclosed a significant security breach affecting its electronic signature service, Dropbox Sign (formerly known as HelloSign).
SC Magazine
More than 2,100 servers may still be vulnerable to GitLab password reset exploits.
DarkReading
The breach used stolen Citrix credentials for an account with no MFA. Attackers went undetected for days, and Change's backup strategy failed.
Bleeping Computer
Cloud storage firm DropBox says hackers breached production systems for its DropBox Sign eSignature platform and gained access to authentication tokens, MFA keys, hashed passwords, and customer information.
Infosecurity News
The data from ReliaQuest also suggests LockBit faced a significant setback due to law enforcement action
Infosecurity News
Andrew Witty made the claims in a written testimony submitted before a House subcommittee hearing
SC Magazine
Andrew Witty stuck with the familiar corporate line of providing consumers with two years of credit monitoring.
Ars Technica
Ransomware attack on the $371 billion company hamstrung US prescription market.
CyberSecurity Dive
AlphV deployed ransomware nine days after it used access to a Citrix portal on Change’s network to move laterally within systems, CEO Andrew Witty said in testimony prepared for a House subcommittee hearing set for Wednesday.
Bleeping Computer
UnitedHealth confirms that Change Healthcare's network was breached by the BlackCat ransomware gang, who used stolen credentials to log into the company's Citrix remote access service, which did not have multi-factor authentication enabled.
CyberSecurity Dive
Critics say negligence, misguided investments and hubris have left the enterprise giant on its back foot.
SC Magazine
UnitedHealth Group’s CEO Andrew Witty set to testify before Congress tomorrow – security pros say there’s more to the story and it will take several more months of investigation before we know the full kill chain.
DarkReading
Okta warns users that the attack requests are made through an anonymizing service like Tor or various commercial proxy networks.
Bleeping Computer
Identity-based attacks have become one of the most significant threats facing organizations today. Learn more from Specops Software on tactics used in these types of attacks and how to defend against them.
CyberNews
Multi-factor and 2-factor authentication, its safety and how hackers can overcome it
SecurityWeek
Okta warns of an increase in credential stuffing attacks leveraging anonymizing services such as DataImpulse, Luminati, and NSocks.
Infosecurity News
IoT manufacturers, retailers and importers must comply with new security legislation, the PSTI act, from today
The Hacker News
Unlock Endpoint Security with our top 10 must-know tips! From MFA to EDR, discover how to protect your digital kingdom.
DarkReading
Attacks by a previously unknown state-sponsored actor leveraged two bugs in firewall devices to install custom backdoors on several government networks globally.
Infosecurity News
An advisory from Cisco Talos has highlighted a sophisticated cyber-espionage campaign targeting government networks globally
CyberNews
MFA breaches were behind last year’s major cyberattacks against casino giants MGM and Caesars. Yet some companies are just adding it as an extra layer of security.
Ars Technica
Perimeter devices ought to prevent network hacks. Why are so many devices allowing attacks?
SecurityWeek
Cisco warns that nation state-backed hackers are exploiting at least two zero-day vulnerabilities in its ASA firewall platforms.
Bleeping Computer
Cisco warned today that a state-backed hacking group has been exploiting two zero-day vulnerabilities in Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) firewalls since November 2023 to breach government networks worldwide.
Bleeping Computer
The Federal Trade Commission is sending $5.6 million in refunds to Ring users whose private video feeds were accessed without consent by Amazon employees and contractors, or had their accounts and devices hacked because of insufficient security protections.
CSO
Absence of multi-factor authentication reportedly left a remote access application exposed.
SecurityWeek
Mandiant's M-Trends 2024 Report unveils mixed signals in cybersecurity. While defenses are improving, attackers still retain the upper hand.
DarkReading
The irony is lost on few, as a Chinese threat actor used eight MITRE techniques to breach MITRE itself — including exploiting the Ivanti bugs that attackers have been swarming on for months.
Security Affairs
Government agencies revealed that Akira ransomware has breached over 250 entities worldwide and received over $42 million in ransom payments.
Security Affairs
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
The Cyber Express
The digital landscape continues to be a battleground, with cyber threats evolving and attackers targeting an ever-wider range of victims.
Bleeping Computer
The MITRE Corporation says a state-backed hacking group breached its systems in January 2024 by chaining two Ivanti VPN zero-days.
DarkReading
CryptoChameleon attackers trade quantity for quality, dedicating time and resources to trick even the most diligent into handing over their high-value credentials.
The Cyber Express
The Akira ransomware group has been identified as the culprit behind a series of cyberattacks targeting businesses and critical infrastructure
Infosecurity News
A joint advisory from Europol and US and Dutch government agencies estimated that Akira made around $42m in ransomware proceeds from March 2023 to January 2024
The Hacker News
How attackers are hacking organizations without touching the endpoint by targeting cloud identities.
The Hacker News
Akira Ransomware group has already extorted roughly $42 million from over 250 victims globally. They are now targeting both Windows and Linux systems.
CyberNews
In less than a year of operations, the Akira Ransomware gang, known for multi-extortion tactics, has claimed approximately $42 million in ransomware proceeds.
CyberNews
The FBI warns that Chinese government-backed hackers have infiltrated US critical infrastructure and are waiting "for just the right moment to deal a devastating blow."
Cyber Security News
In a sophisticated cyber attack, hackers have been discovered impersonating LastPass employees in an elaborate phishing campaign designed to steal users' master passwords and hijack their accounts.
SC Magazine
despite a pause in the rise of ransomware, organizations are failing to take the steps necessary to adequately defend themselves against the increase in attacks to come.
Ars Technica
Campaign used email, SMS, and voice calls to trick targets into divulging master passwords.
Bleeping Computer
According to a joint advisory from the FBI, CISA, Europol's European Cybercrime Centre (EC3), and the Netherlands' National Cyber Security Centre (NCSC-NL), the Akira ransomware operation has breached the networks of over 250 organizations and raked in roughly $42 million in ransom payments.
The Hacker News
FIN7, a notorious cybercrime group, is targeting the U.S. automotive industry with spear-phishing attacks.
Infosecurity News
A US government advisory sets out actions election officials need to take to mitigate the impact of nation-state influence campaigns ahead of the November elections
Infosecurity News
The Metropolitan Police and partners have disrupted the prolific LabHost phishing-as-a-service platform
Bleeping Computer
The financially motivated threat actor FIN7 targeted a large U.S. car maker with spear-phishing emails for employees in the IT department to infect systems with the Anunak backdoor.
SC Magazine
T-Mobile and Verizon workers report receiving text messages offering them up to $300 for each illegal SIM swap they complete.
Loading more articles....