- Metacurity
- Archive
- Page 3
Archive
Researchers Stopped XZ Utils-Type Malicious Actors Targeting Three JavaScript Projects
RansomHub starts leaking Change Healthcare data, Hackers stole some Cisco Duo's customers' VoIP and SMS logs, Cryptojacker busted for stealing cloud services, Chirp Systems silent on smart lock vulnerability, Critics question Microsoft's incentive to improve security, FTC slams Cerebral for sharing customers' health info with advertisers, Ukraine hackers claim Russian drone developer breach, Palo Alto rolls out fixes for zero-day, much more
Ex-Amazon Engineer Sentenced to Three Years for Stealing Millions in Cryptocurrency
Credential stuffing attack hits 576K Roku accounts, Dutch chip giant Nexperia hit by ransomware attack, Hamas cyber official sanctioned by US Treasury Dept., Iranian group claims breach of Israel's radar systems, Hive RAT developers busted by US and Australia, Threat actor leaks 2.8m Giant Tiger customer records, Hunter's International linked to Hoya's ransomware attack, FBI warns of unpaid tolls smishing, much more
Best Infosec-Related Long Reads for the Week of 4/6/24
Tech giants break the rules in race for AI data, New approach needed to avert next XZ Utils backdoor, Drone 'hackers' are winning in Ukraine war, DNA-reliant cryptographic functions might someday protect passwords, House data broker bill might be too narrow
CISA Says Russian Hackers Compromised Agencies Using Stolen Microsoft Emails
Sisense hackers have access to all customer credentials, Biden eyes wider Kaspersky Lab ban, Threat actors targeted LastPass with deepfake audio, Palo Alto says hackers are exploiting high severity vulnerability, Vulnerability in server hardware due to supply chain software will never be fixed, Ukraine hackers shut off sensors in Moscow sewage network, D-Link NAS exploits escalate, French cities hit by large-scale attack, much more
Apple Sent Mercenary Threat Notifications to iPhone Users in 92 Countries
CISA warns Sisense customers to reset credentials, Cybercom conducted 22 hunt forward ops last year, New side-channel flaw demo'ed affecting Intel-powered Linux systems, AT&T notifies regulators of breach, Sec. 702 reauthorization sidelined by Trump, NetHunter group hacked Israeli military affairs ministry, Intellexa showcases spyware delivered via ads, GitHub search functionality exploited to deliver malware, much more
Ukraine Suspends Cyber Chief Amid Reports of Corruption, Journalist Intimidation
Open Azure server spilled Bing internal information, Microsoft reports record number of Patch Tuesday fixes, LG smart TV vulnerabilities flaws disclosed, Ransomware gang stole sensitive info on 500K from Wisconsin healthcare provider, Congress races to save Sec. 702, EPA was not breached, much more
New Group RansomHub Claims Attack on Change Healthcare
Ukrainian hackers claim destruction of Russian military cloud provider, Hackers steal nearly 350K SSNs from US gov't contractor Greylock McKinnon, Mobile gadget maker Targus hit by cyberattack, Threat actor doxes almost every adult in El Salvador, Massive anti-Ukraine troll operation revealed, Summer Olympics face cyber threats, much more
Congress May Be Close to Passing a Comprehensive Data Privacy Framework
Maryland legislature passed sweeping data privacy bills, Hackers broke into Israeli Justice Ministry's systems, D-Link NAS command injection and backdoor flaw disclosed, Cybercrime group The Manipulaters still at it, Hackers promote fake AI services to deliver malware, Home Depot confirms breach, Critical architecture flaws found in Hugging Face, much more
China Is Increasingly Using AI to Target Voters With Disinformation
Czech minister says Russia is trying to sabotage European railways, Japanese lens maker Hoya halts production after unauthorized access, Chinese-made devices on US corporate networks continue to grow, Winnti evades detection with UNAPIMON malware, German state ditches Microsoft Office, much more
IntelBroker Claims Theft of Five Eyes Data From State Department Contractor
Google sues two pig-butchering crypto app scammers, Ukraine to report Kyivstar hackers to The Hague, Ukraine sends awards to vigilante hackers, Omni Hotels hit by likely ransomware attack, NYC payroll system offline due to smishing attacks, Russia indicts credit card skimmers, Google fixes exploited Pixel zero days, Canonical delays Ubuntu release due to XZ-utils backdoor, much more
Cyber Safety Review Board Eviscerates Microsoft's Handling of Chinese Hack
XZ Utils backdoor rocks the cybersecurity world, Experts think XZ backdoor developer was likely a nation-state persona, Google agrees to delete billions of Incognito mode records, AT&T resets millions of account passcodes, Anti-Kremlin hackers deface Russian prison website with pro-Navalny message, NIST blames lack of interagency support for NVD backlog, much more