Blackbaud Settles Ransomware Breach Case For $49.5m
Software provider Blackbaud has reached a multimillion-dollar agreement with 49 states over charges connected to a massive 2020 ransomware breach...
Premium Members Content
Weekly Cyber Security Tip: Understanding Security Assessment and Testing
This week's cybersecurity tip revolves around the crucial topic of security assessment and testing. This is a fundamental aspect of...
GoldDigger Android Trojan Drains Victim Bank Accounts
Security researchers have discovered a prolific new Android Trojan designed to covertly harvest user information including banking app credentials, with...
US Government Proposes SBOM Rules for Contractors
Three US government agencies have proposed new rules for federal contractors which would require them to develop and maintain a...
CISA and NSA Tackle IAM Security Challenges in New Report
The CISA and the National Security Agency (NSA) have published new guidelines in a report called "Identity and Access Management:...
Scammers Impersonate Companies to Steal Cryptocurrency from Job Seekers
Security researchers have discovered a major new scam operation designed to trick job seekers into parting with cryptocurrency, by getting...
China Poised to Disrupt US Critical Infrastructure with Cyber-Attacks, Microsoft Warns
Chinese threat actors are positioning themselves to deploy major cyber-attacks against US critical national infrastructure (CNI) in the event of...
Critical Glibc Bug Puts Linux Distributions at Risk
Security researchers from the Qualys Threat Research Unit (TRU) have uncovered a new buffer overflow vulnerability within the GNU C...
CISA and NSA Publish Top 10 Misconfigurations
Two leading US government security agencies have shared the top 10 most common cybersecurity misconfigurations, in a bid to improve...
Apple Issues Emergency Patches for More Zero-Day Bugs
Apple has been forced to issue more emergency updates to fix two new zero-day vulnerabilities impacting iOS and iPadOS users.An...
AWS to Mandate Multi-Factor Authentication from 2024
Amazon Web Services (AWS) said it will require multi-factor authentication (MFA) for all privileged accounts starting mid-2024, in a bid...
Qakbot Gang Still Active Despite FBI Takedown
Despite the takedown of the Qakbot threat gang’s infrastructure by the FBI in late August, some of the group’s affiliates...
Arm and Qualcomm Chips Hit by Multiple Zero-Day Attacks
Qualcomm and Arm have been forced to release security updates to patch several zero-day vulnerabilities exploited in recent targeted attacks...
Red Cross Issues Wartime Hacktivist Rules
The International Committee of the Red Cross (ICRC) has published a new set of rules urging hacktivists to abide by...
Police Issue “Quishing” Email Warning
Police in Northern Ireland have warned organizations in the province to be on their guard after issuing a new Crime...
LightSpy iPhone Spyware Linked to Chinese APT41 Group
Banking security firm ThreatFabric has found evidence that LightSpy, an iPhone spyware discovered in 2020, is more sophisticated than previously...
Malware-Infected Devices Sold Through Major Retailers
Human Security has exposed a significant monetization method employed by a sophisticated cyber-criminal operation. This operation involved the sale of...
EvilProxy Phishing Attack Strikes Indeed, Targets Executives
A new EvilProxy phishing attack has taken aim at the job search platform Indeed while focusing on executives in various...
Fifth of Brits Suspect They’ve Been Monitored by Employers
Nearly one in five (19%) adults polled in a new survey from the UK’s privacy regulator think they’ve been monitored...
Half of Cybersecurity Professionals Report Increase in Cyber-Attacks
Over half (52%) of cybersecurity professionals are experiencing an increase in cyber-attacks compared to a year ago, according to new...
Upstream Supply Chain Attacks Triple in a Year
Security experts have warned of surging cyber risk in open source ecosystems, having detected three times more malicious packages in...
CyberEPQ Course Triples Student Intake for the Coming Year
The Chartered Institute of Information Security (CIISec) has said it hopes to enrol at least 400 students on its CyberEPQ...
EU Cyber Resilience Act Could be Exploited for Surveillance, Experts Warn
The EU’s Cyber Resilience Act (CRA) could be misused by governments for intelligence or surveillance purposes, a group of industry...
Predator Spyware Linked to Madagascar’s Government Ahead of Presidential Election
The Madagascar government likely used the Cytrox-developed Predator spyware to conduct political domestic surveillance ahead of the country’s presidential election,...
