Featured

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw

Application Security, Featured, OAuth, Vulnerabilities, XSS /

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw 2024-07-29 at 15:16 By Kevin Townsend Researchers discovered and published details of an XSS attack that could potentially impact millions of websites around the world. The post Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw appeared first on SecurityWeek. This article is an […]

React to this headline:

Loading spinner

Millions of Websites Susceptible XSS Attack via OAuth Implementation Flaw Read More »

CrowdStrike Explains Why Bad Update Was Not Properly Tested

CrowdStrike, disaster recovery, Endpoint Security, Featured, Incident Response /

CrowdStrike Explains Why Bad Update Was Not Properly Tested 2024-07-24 at 14:16 By Eduard Kovacs CrowdStrike has shared a preliminary incident review, explaining why the update that caused global chaos was not caught by testing.  The post CrowdStrike Explains Why Bad Update Was Not Properly Tested appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

CrowdStrike Explains Why Bad Update Was Not Properly Tested Read More »

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating

Featured, FrostyGoop, ICS malware, ICS/OT, Russia, Ukraine /

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating 2024-07-23 at 13:31 By Eduard Kovacs The FrostyGoop ICS malware was used recently in an attack against a Ukrainian energy firm that resulted in loss of heating for many buildings. The post FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating appeared first on SecurityWeek. This

React to this headline:

Loading spinner

FrostyGoop ICS Malware Left Ukrainian City’s Residents Without Heating Read More »

Microsoft Says 8.5 Million Windows Devices Impacted by CrowdStrike Incident, Publishes Recovery Tool

CrowdStrike, Endpoint Security, Featured, Incident Response, Microsoft, outage, tool /

Microsoft Says 8.5 Million Windows Devices Impacted by CrowdStrike Incident, Publishes Recovery Tool 2024-07-21 at 16:31 By Mike Lennon Microsoft says roughly 8.5 million Windows devices were impacted by the faulty software update from CrowdStrike, and published a tool to help admins through the recovery process. The post Microsoft Says 8.5 Million Windows Devices Impacted

React to this headline:

Loading spinner

Microsoft Says 8.5 Million Windows Devices Impacted by CrowdStrike Incident, Publishes Recovery Tool Read More »

CrowdStrike Provides Remediation Guidance After Software Update Causes Worldwide IT Chaos

CrowdStrike, Featured, Incident Response, outage, Windows /

CrowdStrike Provides Remediation Guidance After Software Update Causes Worldwide IT Chaos 2024-07-20 at 17:01 By Mike Lennon CrowdStrike on Saturday provided technical information and remediation guidance to help organizations impacted by the faulty software update that trigged massive IT outages across the globe on Friday.   The post CrowdStrike Provides Remediation Guidance After Software Update

React to this headline:

Loading spinner

CrowdStrike Provides Remediation Guidance After Software Update Causes Worldwide IT Chaos Read More »

Bad CrowdStrike Update Linked to Major IT Outages Worldwide

BSOD, buggy update, CrowdStrike, Featured, Incident Response, Microsoft /

Bad CrowdStrike Update Linked to Major IT Outages Worldwide 2024-07-19 at 14:01 By Eduard Kovacs Organizations worldwide are reporting major outages due to Windows system crashes caused by a bad CrowdStrike update. The post Bad CrowdStrike Update Linked to Major IT Outages Worldwide appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Bad CrowdStrike Update Linked to Major IT Outages Worldwide Read More »

Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says

Featured, Military, Tracking & Law Enforcement /

Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says 2024-07-18 at 16:01 By Associated Press Teixeira, who was part of the 102nd Intelligence Wing at Otis Air National Guard Base in Massachusetts, worked as a cyber transport systems specialist. The post Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says appeared

React to this headline:

Loading spinner

Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says Read More »

Rite Aid Says Hack Impacts 2.2M People as Ransomware Gang Threatens to Leak Data

data breach, Data Breaches, Featured, Ransomware /

Rite Aid Says Hack Impacts 2.2M People as Ransomware Gang Threatens to Leak Data 2024-07-17 at 11:46 By Eduard Kovacs Pharmacy chain Rite Aid says 2.2 million people are impacted by a recent data breach for which the RansomHub group has taken credit. The post Rite Aid Says Hack Impacts 2.2M People as Ransomware Gang

React to this headline:

Loading spinner

Rite Aid Says Hack Impacts 2.2M People as Ransomware Gang Threatens to Leak Data Read More »

Kaspersky Leaving US Following Government Ban

Featured, Government, Kaspersky, layoffs, Management & Strategy, Russia /

Kaspersky Leaving US Following Government Ban 2024-07-16 at 13:31 By Eduard Kovacs Kaspersky is shutting down operations in the US and laying off employees following the recent Commerce Department ban. The post Kaspersky Leaving US Following Government Ban appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React

React to this headline:

Loading spinner

Kaspersky Leaving US Following Government Ban Read More »

AT&T Data Breach: ‘Nearly All’ Wireless Customers Exposed in Massive Hack

AT&T, data breach, Data Breaches, Featured /

AT&T Data Breach: ‘Nearly All’ Wireless Customers Exposed in Massive Hack 2024-07-12 at 16:01 By Mike Lennon Data breach exposed records of call and text interactions for nearly all AT&T’s wireless customers and has been linked to the recent attacks targeting Snowflake customers. The post AT&T Data Breach: ‘Nearly All’ Wireless Customers Exposed in Massive

React to this headline:

Loading spinner

AT&T Data Breach: ‘Nearly All’ Wireless Customers Exposed in Massive Hack Read More »

Can AI be Meaningfully Regulated, or is Regulation a Deceitful Fudge?

AI, Artificial Intelligence, ChatGPT, Featured, generative AI, Government, Microsoft, OpenAI, Regulations /

Can AI be Meaningfully Regulated, or is Regulation a Deceitful Fudge? 2024-07-10 at 16:46 By Kevin Townsend Few people understand AI, nor how to use nor control it, nor where it is going. Yet politicians wish to regulate it. The post Can AI be Meaningfully Regulated, or is Regulation a Deceitful Fudge? appeared first on

React to this headline:

Loading spinner

Can AI be Meaningfully Regulated, or is Regulation a Deceitful Fudge? Read More »

BlastRADIUS Attack Exposes Critical Flaw in 30-Year-Old RADIUS Protocol

BlastRADIUS, Featured, Identity & Access, InkBridge Networks, man-in-the-middle, Network Security, RADIUS, Vulnerabilities /

BlastRADIUS Attack Exposes Critical Flaw in 30-Year-Old RADIUS Protocol 2024-07-09 at 20:22 By Ryan Naraine Security vendor InkBridge Networks calls urgent attention to the discovery of a decades-old design flaw (CVE-2024-3596) in the popular RADIUS protocol. The post BlastRADIUS Attack Exposes Critical Flaw in 30-Year-Old RADIUS Protocol appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

BlastRADIUS Attack Exposes Critical Flaw in 30-Year-Old RADIUS Protocol Read More »

Global Coalition Blames China’s APT40 for Hacking Government Networks

APT40, China, Data Breaches, Featured, Nation-State /

Global Coalition Blames China’s APT40 for Hacking Government Networks 2024-07-09 at 14:16 By Ionut Arghire Seven nations are backing Australia in calling out a China-linked hacking group for compromising government networks. The post Global Coalition Blames China’s APT40 for Hacking Government Networks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

React to this headline:

Loading spinner

Global Coalition Blames China’s APT40 for Hacking Government Networks Read More »

Mandiant Highlights Russian and Chinese Cyber Threats to NATO on Eve of 75th Anniversary Summit

China, Cyberwarfare, Featured, NATO, Russia /

Mandiant Highlights Russian and Chinese Cyber Threats to NATO on Eve of 75th Anniversary Summit 2024-07-08 at 21:31 By Kevin Townsend On the eve of NATO’s 75th anniversary summit in Washington DC, Mandiant outlines the current state of cyberthreats facing NATO and aligned countries. The post Mandiant Highlights Russian and Chinese Cyber Threats to NATO

React to this headline:

Loading spinner

Mandiant Highlights Russian and Chinese Cyber Threats to NATO on Eve of 75th Anniversary Summit Read More »

Supreme Court Ruling Threatens the Framework of Cybersecurity Regulation

Featured, Government, Regulations /

Supreme Court Ruling Threatens the Framework of Cybersecurity Regulation 2024-07-08 at 17:01 By Kevin Townsend The Supreme Court’s striking down of the Chevron Doctrine will have a major effect on the determination and enforcement of cyber regulation in the US. The post Supreme Court Ruling Threatens the Framework of Cybersecurity Regulation appeared first on SecurityWeek.

React to this headline:

Loading spinner

Supreme Court Ruling Threatens the Framework of Cybersecurity Regulation Read More »

Hacker Stole Secrets From OpenAI

Artificial Intelligence, ChatGPT, Featured, OpenAI /

Hacker Stole Secrets From OpenAI 2024-07-05 at 19:46 By Kevin Townsend ChatGPT maker OpenAI was breached in 2023, but the company says source code and customer data were not accessed. The post Hacker Stole Secrets From OpenAI appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

Hacker Stole Secrets From OpenAI Read More »

OVHcloud Sees Record 840 Mpps DDoS Attack

cybercrime, DDoS, Featured, record /

OVHcloud Sees Record 840 Mpps DDoS Attack 2024-07-05 at 15:02 By Ionut Arghire OVHcloud says it mitigated the largest ever DDoS attack leveraging packet rate, which peaked at 840 Mpps. The post OVHcloud Sees Record 840 Mpps DDoS Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

OVHcloud Sees Record 840 Mpps DDoS Attack Read More »

Twilio Confirms Data Breach After Hackers Leak 33M Authy User Phone Numbers

data breach, Data Breaches, Featured, Twilio /

Twilio Confirms Data Breach After Hackers Leak 33M Authy User Phone Numbers 2024-07-04 at 10:48 By Eduard Kovacs Twilio has confirmed a data breach after hackers leaked 33 million phone numbers associated with the Authy app. The post Twilio Confirms Data Breach After Hackers Leak 33M Authy User Phone Numbers appeared first on SecurityWeek. This

React to this headline:

Loading spinner

Twilio Confirms Data Breach After Hackers Leak 33M Authy User Phone Numbers Read More »

Evolve Bank Shares Data Breach Details as Fintech Firms Report Being Hit

bank, data breach, Data Breaches, Featured, Ransomware, Wise /

Evolve Bank Shares Data Breach Details as Fintech Firms Report Being Hit 2024-07-02 at 16:31 By Eduard Kovacs Fintech companies Wise and Affirm are impacted by the data breach at Evolve Bank, which has shared additional details on the recent ransomware attack. The post Evolve Bank Shares Data Breach Details as Fintech Firms Report Being

React to this headline:

Loading spinner

Evolve Bank Shares Data Breach Details as Fintech Firms Report Being Hit Read More »

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies

Cisco, cyberespionage, exploited, Featured, Malware & Threats, Velvet Ant, Zero-Day /

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies 2024-07-02 at 12:16 By Ionut Arghire Cisco has patched an NX-OS command injection zero-day exploited by China-linked cyberespionage group Velvet Ant. The post Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

Cisco Patches NX-OS Zero-Day Exploited by Chinese Cyberspies Read More »

Scroll to Top