Microsoft Visual Studio Code flaw lets extensions steal passwords
Microsoft's Visual Studio Code (VS Code) code editor and development environment contains a flaw that allows malicious extensions to retrieve...
New Inception attack leaks sensitive data from all AMD Zen CPUs
Researchers have discovered a new and powerful transient execution attack called 'Inception' that can leak privileged secrets and data using...
Microsoft Office update breaks actively exploited RCE attack chain
Microsoft today released a defense-in-depth update for Microsoft Office that prevents exploitation of a remote code execution (RCE) vulnerability tracked...
Microsoft Monthly Security Update (August 2023)
Microsoft has released monthly security update for their products: Vulnerable ProductRisk LevelImpactsNotesBrowser Medium RiskSecurity Restriction Bypass Microsoft Office Extremely High RiskRemote Code...
Invisible Ad Fraud Targets Korean Android Users
Cybersecurity experts have discovered a new adware campaign specifically targeting Korean Android users. The discovery by McAfee’s Mobile Research Team shed...
US Primary Care Services Shuttered After Cyber-Attack
A widespread cyber-attack on hospital computer systems has caused significant disruptions across the United States, leading to the closure of...
FBI Warns Against Criminals Posing as NFT Developers
The US Federal Bureau of Investigation (FBI) has issued a warning concerning a growing wave of financial fraud within the...
Russian Hacktivists Overwhelm Spanish Sites With DDoS
A leading Spanish research institute has become the latest organization in the country to come under cyber-attack from Russia, after...
North Korean Hackers Compromise Russian Missile Maker
Security researchers have discovered a likely North Korean cyber-espionage campaign targeting the IT network of a Russian manufacturer of intercontinental...
#BHUSA: Identity Compromise the Cause of Most Breaches
Identity theft has established itself as the main initial access method for threat actors, according to CrowdStrike.In its 2023 Threat...
Over 200 Million Brits Have Data Compromised in Four Years
UK organizations lost billions in data breaches between 2019 and 2022, with hundreds of millions of their customers suffering compromise...
Two-Thirds of UK Sites Vulnerable to Bad Bots
The majority (66%) of UK websites are unable to block simple bot attacks, exposing their businesses to fraud, account compromise...
Vietnamese-Origin Ransomware Operation Mimics WannaCry Traits
An unidentified threat actor, reportedly originating from Vietnam, has been observed engaging in a ransomware campaign that commenced no later...
#BHUSA: Ransomware Threat Activity Cluster Uncovered
Sophos X-Ops has exposed a new connection between seemingly unrelated ransomware attacks. The findings, based on several ransomware attacks in the...
UK Voters’ Data Exposed in Electoral Commission Cyber-Attack
The UK’s Electoral Commission has revealed it has been the victim of a “complex cyber-attack,” exposing the personal details of...
Tampa General Hospital Sued Over Data Breach
Law firm Morgan & Morgan has lodged a class-action lawsuit against Tampa General Hospital on behalf of three victims affected...
CraftRise – 2,532,527 breached accounts
HIBP In May 2023, news broke of a data breach of the Turkish Minecraft server known as CraftRise. The data...
CISA: CISA, NSA, FBI, and International Partners Release Joint CSA on Top Routinely Exploited Vulnerabilities of 2022
CISA, NSA, FBI, and International Partners Release Joint CSA on Top Routinely Exploited Vulnerabilities of 2022 The U.S. Cybersecurity and...
CISA: CISA Releases its Cybersecurity Strategic Plan
CISA Releases its Cybersecurity Strategic Plan Today, CISA released a strategic plan to lay out how we will fulfill our...
CISA: Mozilla Releases Security Updates for Multiple Products
Mozilla Releases Security Updates for Multiple Products Mozilla has released security updates to address vulnerabilities for Firefox 116, Firefox ESR...
CISA: CISA and International Partner NCSC-NO Release Joint Cybersecurity Advisory on Threat Actors Exploiting Ivanti EPMM Vulnerabilities
CISA and International Partner NCSC-NO Release Joint Cybersecurity Advisory on Threat Actors Exploiting Ivanti EPMM Vulnerabilities The Cybersecurity and Infrastructure...
CISA: CISA Releases Five Industrial Control Systems Advisories
CISA Releases Five Industrial Control Systems Advisories CISA released five Industrial Control Systems (ICS) advisories on August 3, 2023. These...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on August 8, 2023. These...
CISA: Adobe Releases Security Updates for Multiple Products
Adobe Releases Security Updates for Multiple Products Adobe has released security updates to address multiple vulnerabilities in Adobe software. An...
