Pwn2Own Contest Unearths Dozens of Zero-Day Vulnerabilities
Some of the world’s top ethical hackers are competing in Tokyo this week, having already found close to 40 zero-day...
Premium Members Content
North Korea Hacks Crypto: More Targets, Lower Gains
North Korea-backed threat actors hacked more crypto platforms than ever in 2023 but stole less of the digital currency in...
Data Privacy Week: US Data Breaches Surge, 2023 Sees 78% Increase in Compromises
The number of reported data compromises in the US in 2023 increased by 78% compared to 2022, reaching 3205, according...
Southern Water Confirms Data Breach Following Black Basta Claims
UK water supplier Southern Water has confirmed that it suffered a data breach after the Black Basta ransomware group appeared...
Government Security Vulnerabilities Surge By 151%, Report Finds
The government sector has witnessed the most significant growth in crowdsourced security in 2023, marking a 151% increase in vulnerability...
Data Privacy Week: Companies are Banning Generative AI Due to Privacy Risks
More than a quarter (27%) of organizations have banned the use of generative AI among their workforce over privacy and...
China-Aligned APT Group Blackwood Unleashes NSPX30 Implant
ESET researchers have recently unveiled a highly sophisticated implant known as NSPX30, which has been linked to a newly identified...
New Leaks Expose Web of Iranian Intelligence and Cyber Companies
New evidence shows that Iran’s intelligence and military services are associated with cyber activities targeting Western countries through their network...
Ukraine Arrests Hacker for Assisting Russian Missile Strikes
Ukrainian security services have arrested a hacker for allegedly targeting government websites and providing intelligence to Russia to carry out...
Exploit Code Released For Critical Fortra GoAnywhere Bug
Threat actors could soon strike after a proof-of-concept exploit was published for a critical vulnerability in managed file transfer (MFT)...
AI Set to Supercharge Ransomware Threat, Says NCSC
Malicious AI use will “almost certainly” drive an increase in the volume and impact of cyber-attacks over the next two...
Why Bulletproof Hosting is Key to Cybercrime-as-a-Service
The emergence of cybercrime-as-a-service (RaaS) has lowered the entry barrier into cybercrime by allowing cybercriminals to specialize in only one...
ChatGPT Cybercrime Surge Revealed in 3000 Dark Web Posts
Security researchers have observed a notable surge in dark web discussions regarding the illicit use of ChatGPT and other Large...
X Makes Passkeys Available for US-Based Users
Social media giant X (formerly Twitter) has made passkeys available as a login option for US-based users on iOS.A post...
Browser Phishing Threats Grew 198% Last Year
Security researchers have observed a 198% increase in browser-based phishing attacks during the latter half of 2023 compared to the...
Mega-Breach Database Exposes 26 Billion Records
A new 12TB database of 26 billion records has been found exposed online by security researchers, although its contents were...
Australia Sanctions Russian Hacker Behind Medibank Breach
The Australian government has publicly named a Russian cybercriminal as responsible for the Medibank data breach, which affected 9.7 million...
SEC Confirms SIM Swap Attack Behind X Account Takeover
A US regulator has confirmed that its official X (formerly Twitter) account was hijacked earlier this month after hackers were...
LoanDepot Data Breach Hits 16.6 Million Customers
LoanDepot, one of the largest US-based retail mortgage lenders, has confirmed that around 16.6 million of its customers have had...
New Cybersecurity Governance Code Puts Cyber Risks on Boardroom Agenda
The UK government has published a new Code of Practice on cybersecurity governance, targeting directors and other senior business leaders.The...
French Watchdog Slams Amazon with €32m Fine for Spying on Workers
Amazon France Logistique, a subsidiary of the e-commerce giant that manages its large warehouses in France, has been fined €32m...
Malicious npm Packages Used to Target GitHub Developer SSH Keys
Security researchers have uncovered two new malicious packages on the npm open source package manager that utilized GitHub to store...
Hackers Target Atlassian Confluence With RCE Exploits
Security experts are observing attempts to exploit the remote code execution (RCE) vulnerability CVE-2023-22527 affecting outdated Atlassian Confluence servers. The company disclosed the...
Russian Spies Brute Force Senior Microsoft Staff Accounts
Russian state hackers managed to compromise the email accounts of some of Microsoft’s senior leadership team, using basic brute-force techniques,...
