ICO Prepares £6m Fine for NHS Supplier Advanced
The UK’s data protection watchdog has announced a provisional £6m fine for a healthcare IT service provider, after ruling that...
News
#BHUSA: DARPA’s AI Cyber Challenge Heats Up as Healthcare Sector Watches
With software vulnerabilities being exploited at an alarming rate, the Defense Advanced Research Projects Agency's (DARPA) AI Cyber Challenge (AIxCC)...
#BHUSA: The Board Needs to Understand AI Deployment Risks
The idiosyncratic use of AI within organizations is a problem when it comes to risk. Instead, AI deployment must be...
UK Managers Improve Cyber Knowledge but Staff Lack Training
Managers in UK organizations are getting better at understanding online safety best practice, but their skills are not necessarily matched...
CISA Releases Guide to Enhance Software Security Evaluations
The US Cybersecurity and Infrastructure Security Agency (CISA) has released a new guide to enhance how organizations evaluate software manufacturers'...
#BHUSA: New Ransomware Groups Emerge Despite Crackdowns
New ransomware groups are emerging as financial gain continues to outweigh the risks for cybercriminals, a new report by Rapid7...
#BHUSA: CrowdStrike Outage Serves as Dress Rehearsal for China-Led Cyber-Attacks
The recent CrowdStrike IT outage served as a dress rehearsal for a potential cyber-attack on critical infrastructure that could potentially...
Ireland’s DPC Takes Twitter to Court Over AI User Data Concerns
The Data Protection Commission (DPC), Ireland’s data protection regulator, has launched High Court proceedings against Twitter International Unlimited Company, X...
Microsoft 365 Phishing Alert Can Be Hidden with CSS
Recent research by cybersecurity experts has uncovered a vulnerability in Microsoft 365's anti-phishing mechanisms, which can be exploited using CSS....
New Linux Kernel Exploit Technique ‘SLUBStick’ Discovered by Researchers
Cybersecurity researchers have shed light on a novel Linux kernel exploitation technique dubbed SLUBStick that could be exploited to elevate...
Roundcube Webmail Flaws Allow Hackers to Steal Emails and Passwords
Cybersecurity researchers have disclosed details of security flaws in the Roundcube webmail software that could be exploited to execute malicious...
New Go-based Backdoor GoGra Targets South Asian Media Organization
An unnamed media organization in South Asia was targeted in November 20233 using a previously undocumented Go-based backdoor called GoGra....
CrowdStrike Reveals Root Cause of Global System Outages
Cybersecurity company CrowdStrike has published its root cause analysis detailing the Falcon Sensor software update crash that crippled millions of...
Chameleon Android Banking Trojan Targets Users Through Fake CRM App
Cybersecurity researchers have lifted the lid on a new technique adopted by threat actors behind the Chameleon Android banking trojan...
Apple’s New macOS Sequoia Tightens Gatekeeper Controls to Block Unauthorized Software
Apple on Tuesday announced an update to its next-generation macOS version that makes it a little more difficult for users...
Police Recover Over $40m Headed to BEC Scammers
A Singaporean commodity firm has had a narrow escape after police managed to intervene to recover nearly all of the $42.3m...
French Museums Hit By Ransomware Attack
IT systems used by about 40 French museums, including the Grand Palais, have been targeted by a ransomware attack.The French...
#BHUSA: Ransom Payments Surge, Organizations Pay Average of $2.5m
Most organizations pay ransoms when they find themselves victim of a ransomware attack, a new survey by Extrahop has highlighted....
#BHUSA: 17.8m Phishing Emails Detected in First Half of 2024
Darktrace researchers have reported that 17.8 million phishing emails were detected between December 2023 and July 2024.The new report, published...
CVEs Surge 30% in 2024, Only 0.91% Weaponized
In the first half of 2024, the number of reported Common Vulnerabilities and Exposures (CVEs) has increased by 30% compared...
Mobile Guardian Hack Leads to 13,000 Student Devices Wiped in Singapore
Singapore’s Ministry of Education has found that 13,000 students in the country had their data remotely wiped following a cyber-attack...
INTERPOL Recovers $41 Million in Largest Ever BEC Scam in Singapore
INTERPOL said it devised a "global stop-payment mechanism" that helped facilitate the largest-ever recovery of funds defrauded in a business...
Suspicious Minds: Insider Threats in The SaaS World
Everyone loves the double-agent plot twist in a spy movie, but it's a different story when it comes to securing...
North Korean Hackers Moonstone Sleet Push Malicious JS Packages to npm Registry
The North Korea-linked threat actor known as Moonstone Sleet has continued to push malicious npm packages to the JavaScript package...
