Chinese APT ToddyCat Targets Asian Telecoms, Governments
A new malicious espionage campaign is targeting telecommunications organizations and governments across Central and Southeast Asia, CheckPoint Research has discovered.The...
Premium Members Content
Fifth of UK Cybersecurity Pros Work Excessive Hours
The UK’s cybersecurity professionals believe they have excellent career prospects and are employed in a “booming” sector, but many are...
European Police Hackathon Hunts Down Traffickers
Law enforcers from 26 countries came together recently in a hackathon designed to enhance intelligence gathering on human trafficking gangs,...
UK Regulator Fines Equifax £11m for 2017 Data Breach
The UK’s financial regulator has fined Equifax Ltd. over £11m ($13.4m) for failing to protect UK consumer data stolen in...
Vulnerability Exposed in WordPress Plugin User Submitted Posts
A new vulnerability in the User Submitted Posts WordPress plugin (versions 20230902 and below) has been discovered by the Patchstack...
New Phishing Campaign Uses LinkedIn Smart Links in Blanket Attack
Email security provider Cofense has discovered a new phishing campaign comprising over 800 emails and using LinkedIn Smart Links.The campaign...
California Enacts “Delete Act” For Data Privacy
California Governor Gavin Newsom has signed into law the first bill in the US compelling data brokers to delete all...
Half of CISOs Now Report to CEO as Influence Grows
Nearly half (47%) of global CISOs now report to their CEO, and the vast majority (78%) are backed by a...
Flagstar Bank MOVEit Breach Affects 800K Customer Records
Flagstar Bank, a prominent Michigan-based financial services provider, has warned 837,390 of its US customers about a data breach that...
New Threat Actor “Grayling” Blamed For Espionage Campaign
Security researchers have shared evidence of a new APT group that targeted mainly Taiwanese organizations in a cyber-espionage campaign lasting...
October Patch Tuesday Addresses Three Zero-Days
Microsoft has fixed three zero-day vulnerabilities in its latest security update round this month, all of which are being actively...
Tech Giants Reveal Record-Breaking “Rapid Reset” DDoS Bug
Threat actors have been exploiting a zero-day vulnerability in the HTTP/2 protocol since August to launch the largest DDoS attacks...
IZ1H9 Botnet Targets IoT Devices With New Exploits
FortiGuard Labs, the research arm of security firm Fortinet, has uncovered a significant evolution in the IZ1H9 Mirai-based DDoS campaign. Discovered...
Air Europa Asks Customers to Cancel Cards After Breach
A leading Spanish airline has told some of its customers to cancel their payment cards after revealing their details were...
Cyber Professionals Alarmed by Growing Attacker Use of AI
IT security decision makers are concerned about the use of AI by cyber-criminals, particularly surrounding deepfakes, and many believe AI...
US Government Issues Open-Source Security Guidance for Critical Infrastructure
The US government has issued guidance on securing open-source software (OSS) in operational technology (OT) critical infrastructure environments.The joint advisory,...
Curl Releases Fixes For High-Severity Vulnerability
In a recent security alert, the team behind the popular open-source tool curl has announced the release of fixes for...
Exploitation Accounts For 29% of Education Sector Attacks
The education sector has been confirmed as a prime target for threat actors, with 29% of attacks originating from vulnerability...
Social Dominates as Victims Take $2.7bn Fraud Hit
Fraud victims lost $2.7bn to scammers operating on social media between January 2021 and June 2023, according to new research...
Google Bug Bounty Program Expands to Chrome V8, Google Cloud
Google's research team has launched v8CTF, a capture-the-flag (CTF) challenge focused on its Chrome browser’s V8 JavaScript engine.The competition opened...
Blackbaud Settles Ransomware Breach Case For $49.5m
Software provider Blackbaud has reached a multimillion-dollar agreement with 49 states over charges connected to a massive 2020 ransomware breach...
MGM Resorts Reveals Over $100M in Costs After Ransomware Attack
MGM Resorts International has disclosed that costs resulting from a ransomware attack in September have surpassed $100m, including $10m in...
DNA Tester 23andMe Hit By Credential Stuffing Campaign
A leading genetics testing firm has confirmed that customers had their profile information accessed by threat actors following a credential...
Weekly Cyber Security Tip: Understanding Security Assessment and Testing
This week's cybersecurity tip revolves around the crucial topic of security assessment and testing. This is a fundamental aspect of...
