Featured

$2.5 Million Offered at Upcoming ‘Matrix Cup’ Chinese Hacking Contest 

China, Featured, hacking competition, Matrix CUp, Vulnerabilities /

$2.5 Million Offered at Upcoming ‘Matrix Cup’ Chinese Hacking Contest  2024-05-13 at 13:46 By Eduard Kovacs The Chinese hacking contest Matrix Cup is offering big rewards for exploits targeting OSs, smartphones, enterprise software, browsers, and security products. The post $2.5 Million Offered at Upcoming ‘Matrix Cup’ Chinese Hacking Contest  appeared first on SecurityWeek. This article […]

$2.5 Million Offered at Upcoming ‘Matrix Cup’ Chinese Hacking Contest  Read More »

Exploited Chrome Zero-Day Patched by Google

Chrome, exploited, Featured, Vulnerabilities, Zero-Day /

Exploited Chrome Zero-Day Patched by Google 2024-05-10 at 15:46 By Eduard Kovacs A Chrome 124 update patches the second Chrome zero-day that has been found to be exploited in malicious attacks in 2024. The post Exploited Chrome Zero-Day Patched by Google appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

Exploited Chrome Zero-Day Patched by Google Read More »

Zscaler Investigates Hacking Claims After Data Offered for Sale

cybercrime, data breach, Data Breaches, Featured, Zscaler /

Zscaler Investigates Hacking Claims After Data Offered for Sale 2024-05-09 at 11:01 By Eduard Kovacs Zscaler says its customer, production and corporate environments are not impacted after a notorious hacker offers to sell access. The post Zscaler Investigates Hacking Claims After Data Offered for Sale appeared first on SecurityWeek. This article is an excerpt from

Zscaler Investigates Hacking Claims After Data Offered for Sale Read More »

LockBit Ransomware Mastermind Unmasked, Charged

charged, Featured, LockBit, Ransomware, Sanctions, Tracking & Law Enforcement /

LockBit Ransomware Mastermind Unmasked, Charged 2024-05-07 at 21:01 By Ionut Arghire Charges and sanctions announced against Dimitry Yuryevich Khoroshev, the alleged developer and operator of LockBit ransomware. The post LockBit Ransomware Mastermind Unmasked, Charged appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

LockBit Ransomware Mastermind Unmasked, Charged Read More »

MITRE Hack: China-Linked Group Breached Systems in December 2023

China, cyberespionage, espionage, Featured, Ivanti, MITRE, Nation-State, Zero-Day /

MITRE Hack: China-Linked Group Breached Systems in December 2023 2024-05-07 at 11:16 By Eduard Kovacs MITRE has shared more details on the recent hack, including the new malware involved in the attack and a timeline of the attacker’s activities. The post MITRE Hack: China-Linked Group Breached Systems in December 2023 appeared first on SecurityWeek. This

MITRE Hack: China-Linked Group Breached Systems in December 2023 Read More »

Microsoft Overhauls Cybersecurity Strategy After Scathing CSRB Report

CISO Strategy, cloud security, CSRB, Exchange, Featured, Government, Microsoft /

Microsoft Overhauls Cybersecurity Strategy After Scathing CSRB Report 2024-05-03 at 21:17 By Ryan Naraine Microsoft security chief Charlie Bell pledges significant reforms and a strategic shift to prioritize security above all other product features. The post Microsoft Overhauls Cybersecurity Strategy After Scathing CSRB Report appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Microsoft Overhauls Cybersecurity Strategy After Scathing CSRB Report Read More »

US Says North Korean Hackers Exploiting Weak DMARC Settings 

APT, DMARC, email security, Featured, Kimsuky, Malware & Threats, Nation-State, North Korea /

US Says North Korean Hackers Exploiting Weak DMARC Settings  2024-05-03 at 19:16 By Ionut Arghire The US government warns of a North Korean threat actor abusing weak email DMARC settings to hide spear-phishing attacks. The post US Says North Korean Hackers Exploiting Weak DMARC Settings  appeared first on SecurityWeek. This article is an excerpt from

US Says North Korean Hackers Exploiting Weak DMARC Settings  Read More »

Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals

botnet, cybercrime, Featured, Malware & Threats, Russia /

Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals 2024-05-03 at 17:09 By Ionut Arghire A botnet dismantled in January and used by Russia-linked APT28 consisted of more than just Ubiquiti Edge OS routers. The post Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals appeared first on SecurityWeek. This article is an

Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals Read More »

Dropbox Data Breach Impacts Customer Information

data breach, Data Breaches, Dropbox, Featured /

Dropbox Data Breach Impacts Customer Information 2024-05-02 at 11:31 By Eduard Kovacs Dropbox says hackers breached its Sign production environment and accessed customer email addresses and hashed passwords.  The post Dropbox Data Breach Impacts Customer Information appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Dropbox Data Breach Impacts Customer Information Read More »

CISO Conversations: Talking Cybersecurity With LinkedIn’s Geoff Belknap and Meta’s Guy Rosen

CISO, CISO Conversations, CISO Strategy, Facebook, Featured, LinkedIn, Management & Strategy, Meta /

CISO Conversations: Talking Cybersecurity With LinkedIn’s Geoff Belknap and Meta’s Guy Rosen 2024-05-01 at 15:31 By Kevin Townsend SecurityWeek interviews Geoff Belknap, CISO at LinkedIn, and Guy Rosen, CISO at Facebook parent company Meta. The post CISO Conversations: Talking Cybersecurity With LinkedIn’s Geoff Belknap and Meta’s Guy Rosen appeared first on SecurityWeek. This article is

CISO Conversations: Talking Cybersecurity With LinkedIn’s Geoff Belknap and Meta’s Guy Rosen Read More »

UnitedHealth CEO Says Hackers Lurked in Network for Nine Days Before Ransomware Strike

Featured, Incident Response, Ransomware, United Healthcare /

UnitedHealth CEO Says Hackers Lurked in Network for Nine Days Before Ransomware Strike 2024-05-01 at 06:01 By Ionut Arghire UnitedHealth Group’s CEO Andrew Witty shares details on the damaging cyberattack in testimony before a US Congress committee set for May 1, 2024. The post UnitedHealth CEO Says Hackers Lurked in Network for Nine Days Before

UnitedHealth CEO Says Hackers Lurked in Network for Nine Days Before Ransomware Strike Read More »

Vulnerability in R Programming Language Could Fuel Supply Chain Attacks

CVE-2024-27322, Featured, Vulnerabilities, vulnerability /

Vulnerability in R Programming Language Could Fuel Supply Chain Attacks 2024-04-30 at 17:16 By Ionut Arghire A vulnerability (CVE-2024-27322) in the R programming language implementation can be exploited to execute arbitrary and be used as part of a supply chain attack. The post Vulnerability in R Programming Language Could Fuel Supply Chain Attacks appeared first

Vulnerability in R Programming Language Could Fuel Supply Chain Attacks Read More »

Okta Warns of Credential Stuffing Attacks Using Tor, Residential Proxies

credential stuffing, Featured, Identity & Access, Network Security, Tor /

Okta Warns of Credential Stuffing Attacks Using Tor, Residential Proxies 2024-04-29 at 14:32 By Ionut Arghire Okta warned of a spike in credential stuffing attacks using anonymizing services such as Tor, DataImpulse, Luminati, and NSocks. The post Okta Warns of Credential Stuffing Attacks Using Tor, Residential Proxies appeared first on SecurityWeek. This article is an

Okta Warns of Credential Stuffing Attacks Using Tor, Residential Proxies Read More »

Microsoft DRM Hack Could Allow Movie Downloads From Popular Streaming Services

Data Protection, Featured, piracy, PlayReady, Streaming, Vulnerabilities /

Microsoft DRM Hack Could Allow Movie Downloads From Popular Streaming Services 2024-04-23 at 14:01 By Eduard Kovacs Microsoft PlayReady vulnerabilities that could allow rogue subscribers to illegally download movies from popular streaming services. The post Microsoft DRM Hack Could Allow Movie Downloads From Popular Streaming Services appeared first on SecurityWeek. This article is an excerpt

Microsoft DRM Hack Could Allow Movie Downloads From Popular Streaming Services Read More »

MITRE Hacked by State-Sponsored Group via Ivanti Zero-Days

Featured, MITRE, Nation-State /

MITRE Hacked by State-Sponsored Group via Ivanti Zero-Days 2024-04-22 at 13:16 By Eduard Kovacs MITRE R&D network hacked in early January by a state-sponsored threat group that exploited an Ivanti zero-day vulnerability. The post MITRE Hacked by State-Sponsored Group via Ivanti Zero-Days appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

MITRE Hacked by State-Sponsored Group via Ivanti Zero-Days Read More »

Frontier Communications Shuts Down Systems Following Cyberattack

cyberattack, cybercrime, Featured, Ransomware /

Frontier Communications Shuts Down Systems Following Cyberattack 2024-04-19 at 15:16 By Ionut Arghire Telecom giant Frontier shuts down systems to contain a cyberattack that led to personal information compromise. The post Frontier Communications Shuts Down Systems Following Cyberattack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

Frontier Communications Shuts Down Systems Following Cyberattack Read More »

Phishing Platform LabHost Shut Down by Law Enforcement

cybercrime, Featured, phishing, takedown /

Phishing Platform LabHost Shut Down by Law Enforcement 2024-04-18 at 14:46 By Eduard Kovacs LabHost, a major phishing-as-a-service platform, has been shut down as part of a major law enforcement operation.  The post Phishing Platform LabHost Shut Down by Law Enforcement appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

Phishing Platform LabHost Shut Down by Law Enforcement Read More »

Oracle Patches 230 Vulnerabilities With April 2024 CPU

Featured, Oracle, Vulnerabilities /

Oracle Patches 230 Vulnerabilities With April 2024 CPU 2024-04-17 at 14:31 By Ionut Arghire Oracle releases 441 new security patches to address 230 vulnerabilities as part of its April 2024 Critical Patch Update. The post Oracle Patches 230 Vulnerabilities With April 2024 CPU appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

Oracle Patches 230 Vulnerabilities With April 2024 CPU Read More »

Delinea Scrambles to Patch Critical Flaw After Failed Responsible Disclosure Attempt

Delinea, Featured, Vulnerabilities, vulnerability /

Delinea Scrambles to Patch Critical Flaw After Failed Responsible Disclosure Attempt 2024-04-16 at 13:46 By Eduard Kovacs PAM company Delinea over the weekend rushed to patch a critical authentication bypass vulnerability after it apparently ignored the researcher who found the flaw. The post Delinea Scrambles to Patch Critical Flaw After Failed Responsible Disclosure Attempt appeared

Delinea Scrambles to Patch Critical Flaw After Failed Responsible Disclosure Attempt Read More »

Palo Alto Networks Releases Fixes for Firewall Zero-Day as First Attribution Attempts Emerge

exploited, Featured, Malware & Threats, Nation-State, Palo Alto Networks, Zero-Day /

Palo Alto Networks Releases Fixes for Firewall Zero-Day as First Attribution Attempts Emerge 2024-04-15 at 14:00 By Eduard Kovacs Palo Alto Networks has started releasing hotfixes for the firewall zero-day CVE-2024-3400, which some have linked to North Korea’s Lazarus.  The post Palo Alto Networks Releases Fixes for Firewall Zero-Day as First Attribution Attempts Emerge appeared

Palo Alto Networks Releases Fixes for Firewall Zero-Day as First Attribution Attempts Emerge Read More »

Scroll to Top