Security
Microsoft employees exposed internal passwords in security lapse
11:11 am PDT • April 9, 2024
The tech giant secured a cloud storage server that was inadvertently spilling Microsoft internal data and credentials to the open internet.
Featured Article
Should we ban ransom payments?
As cybercriminals continue to reap the financial rewards of their attacks, talk of a federal ban on ransom payments is getting louder. U.S. officials have long urged against paying ransom demands. But while several U.S. states — including North Carolina and Florida — have made it illegal for local government entities to pay ransom demands,…
8:00 am PST • March 4, 2024
Security
NSA says it’s tracking Ivanti cyberattacks as hackers hit US defense sector
8:00 am PST • March 1, 2024
The U.S. National Security Agency has confirmed that hackers exploiting flaws in Ivanti’s widely used enterprise VPN appliance have targeted organizations across the U.S. defense sector. NSA spokesperson Edward Bennett…
Featured Article
Feds hack LockBit, LockBit springs back. Now what?
Days after it was knocked offline by a sweeping, years-in-the-making law enforcement operation, the notorious Russia-based LockBit ransomware group has returned to the dark web with a new leak site complete with a number of new victims. In a verbose, borderline-rambling statement published Saturday, the remaining LockBit administrator blamed its own negligence for last week’s…
12:15 pm PST • February 26, 2024
Security
Researchers say easy-to-exploit security bugs in ConnectWise remote-access software now under mass attack
8:06 am PST • February 26, 2024
Security researchers say a pair of easy-to-exploit flaws in a popular remote-access tool used by more than a million companies around the world are now being mass exploited, with hackers…
Security
Hackers are exploiting ConnectWise flaws to deploy LockBit ransomware, security experts warn
12:55 am PST • February 23, 2024
Security experts are warning that a pair of high-risk flaws in a popular remote access tool are being exploited by hackers to deploy LockBit ransomware — days after authorities announced…
Featured Article
Researchers warn high-risk ConnectWise flaw under attack is ’embarrassingly easy’ to exploit
Security experts are warning that a high-risk vulnerability in a widely used remote access tool is “trivial and embarrassingly easy” to exploit, as the software’s developer confirms malicious hackers are actively exploiting the flaw. The maximum severity-rated vulnerability affects ConnectWise ScreenConnect (formerly ConnectWise Control), a popular remote access software that allows managed IT providers and…
9:31 am PST • February 21, 2024
A sweeping law enforcement operation led by the U.K.’s National Crime Agency (NCA) this week took down LockBit, the notorious Russia-linked ransomware gang that for years has wreaked havoc on…
Featured Article
Authorities disrupt operations of notorious LockBit ransomware gang
A coalition of international law enforcement agencies, including the U.S. Federal Bureau of Investigation and the U.K.’s National Crime Agency, have disrupted the operations of the notorious LockBit ransomware gang. LockBit’s dark web leak site — where the group publicly lists its victims and threatens to leak their stolen data unless a ransom demand is…
12:49 am PST • February 20, 2024
Featured Article
Why are ransomware gangs making so much money?
For many organizations and startups, 2023 was a rough year financially, with companies struggling to raise money and others making cuts to survive. Ransomware and extortion gangs, on the other hand, had a record-breaking year in earnings, if recent reports are anything to go by. It’s hardly surprising when you look at the state of…
5:00 am PST • February 17, 2024
Security
BMW security lapse exposed sensitive company information, researcher finds
10:00 am PST • February 14, 2024
A misconfigured cloud storage server belonging to automotive giant BMW exposed sensitive company information, including private keys and internal data, TechCrunch has learned. Can Yoleri, a security researcher at threat…
Security
UK utility giant Southern Water says hackers stole personal data of hundreds of thousands of customers
7:15 am PST • February 14, 2024
U.K.-based water utility Southern Water has confirmed that hackers stole the personal data of as many as 470,000 customers in a recent data breach. Southern Water, which provides water and…
Security
Researchers say attackers are mass-exploiting new Ivanti VPN flaw
11:46 am PST • February 8, 2024
Hackers have begun mass exploiting a third vulnerability affecting Ivanti’s widely used enterprise VPN appliance, new public data shows. Last week, Ivanti said it had discovered two new security flaws…
Security
China-backed Volt Typhoon hackers have lurked inside US critical infrastructure for ‘at least five years’
12:38 pm PST • February 7, 2024
China-backed hackers have maintained access to American critical infrastructure for “at least five years” with the long-term goal of launching “destructive” cyberattacks, a coalition of U.S. intelligence agencies warned on…
Security
HopSkipDrive says personal data of 155,000 drivers stolen in data breach
8:08 am PST • February 5, 2024
Student rideshare startup HopSkipDrive has confirmed a data breach involving the personal data of more than 155,000 drivers. Los Angeles-based HopSkipDrive offers an Uber-style rideshare service for children and teenagers.…
Security
Remote access giant AnyDesk resets passwords and revokes certificates after hack
6:20 am PST • February 5, 2024
Remote desktop software provider AnyDesk confirmed late Friday that a cyberattack allowed hackers to gain access to the company’s production systems, putting the company in lockdown for almost a week.…
Security
FTC orders Blackbaud to overhaul ‘reckless’ security practices in wake of 2020 breach
5:20 am PST • February 2, 2024
Education tech company Blackbaud agreed to settle with the U.S. Federal Trade Commission over the company’s security practices that resulted in a 2020 data breach. The FTC alleges that Blackbaud,…
Security
US gives federal agencies 48 hours to disconnect flawed Ivanti VPN tech
9:45 am PST • February 1, 2024
U.S. cybersecurity agency CISA has ordered federal agencies to urgently disconnect Ivanti VPN appliances given the risk of malicious exploitation due to multiple software flaws. In an update to an…
Security
Okta lays off 400 employees — almost exactly a year after last staff cuts
6:32 am PST • February 1, 2024
U.S. access and identity management giant Okta has said it is laying off approximately 400 employees, or 7% of its global workforce. The layoffs come almost exactly a year to…
Featured Article
US disrupts China-backed hacking operation amid warning of threat to American infrastructure
The U.S. government announced Wednesday it had disrupted a China-backed hacking operation targeting U.S. critical infrastructure, amid warnings that Beijing is preparing to cause “real-world harm” to Americans in the event of a future conflict. Speaking during a U.S. House of Representatives committee hearing on cyber threats posed by China, FBI director Christopher Wray told…
10:00 am PST • January 31, 2024
Security
Ivanti patches two zero-days under attack, but finds another
6:58 am PST • January 31, 2024
Ivanti warned on Wednesday that hackers are exploiting another previously undisclosed zero-day vulnerability affecting its widely used corporate VPN appliance. Since early December, Chinese state-backed hackers have been exploiting Ivanti…
Security
ICO confirms data breach probe as UK councils remain downed by cyberattack
9:18 am PST • January 26, 2024
Three local councils in the United Kingdom continue to experience disruption to their online services, a week after confirming a cyberattack had knocked some systems offline. The councils for Canterbury,…
Security
How a mistakenly published password exposed Mercedes-Benz source code
7:05 am PST • January 26, 2024
Mercedes-Benz accidentally exposed a trove of internal data after leaving a private key online that gave “unrestricted access” to the company’s source code, according to the security research firm that…
Security
HPE says it was hacked by Russian group behind Microsoft email breach
2:09 am PST • January 25, 2024
Hewlett Packard Enterprise said on Wednesday that its cloud-based email system was compromised by Midnight Blizzard, a Russia-linked hacking group that recently broke into Microsoft’s corporate network. In a filing…
Security
US sanctions Russian citizen accused of playing key role in Medibank ransomware attack
9:01 am PST • January 23, 2024
The U.S. government sanctioned a Russian national for allegedly playing a “pivotal role” in the ransomware attack against Australian health insurance giant Medibank that exposed the sensitive information of almost…
Three councils in the United Kingdom have taken some of their public-facing systems offline due to an ongoing cybersecurity issue. Canterbury City Council, Dover District Council, and Thanet District Council,…
Security
FTC bans another data broker from selling consumers’ location data
5:20 am PST • January 19, 2024
The U.S. Federal Trade Commission has continued its crackdown on data brokers with a settlement banning data aggregation company InMarket from selling consumers’ precise location data. Texas-based InMarket, which debuted…
Security
Google says Russian espionage crew behind new malware campaign
6:00 am PST • January 18, 2024
Google researchers say they have evidence that a notorious Russian-linked hacking group — tracked as “Cold River” — is evolving its tactics beyond phishing to target victims with data-stealing malware.…
Malicious hackers have begun mass-exploiting two critical zero-day vulnerabilities in Ivanti’s widely used corporate VPN appliance. That’s according to cybersecurity company Volexity, which first reported last week that China state-backed…
Security
Framework says hackers accessed customer data after phishing attack on accounting partner
6:55 am PST • January 12, 2024
U.S. repairable laptop maker Framework has confirmed that hackers accessed customer data after successfully phishing an employee at its accounting service provider. In an email sent to affected customers, Framework…
