In October 2024, the flat earth sun, moon and zodiac app created by Flat Earth Dave was found to be leaking extensive personal information of its users. The data included 33k unique email addresses along with usernames, latitudes and longitudes…
Category: EN
Hackers can Crack Into Car Cameras Within Minutes Exploiting Vulnerabilities
At the upcoming Black Hat Asia 2025 conference, cybersecurity experts will unveil a groundbreaking vulnerability in modern dashcam technology, exposing how hackers can exploit these devices to breach privacy and steal sensitive data. The session, titled DriveThru Car Hacking: Fast…
Network Penetration Testing Checklist – 2025
Network penetration testing is a cybersecurity practice that simulates cyberattacks on an organization’s network to identify vulnerabilities and improve security defenses. Ethical hackers, or penetration testers, use tools and techniques to mimic real-world hacking attempts, targeting network components like routers,…
Stalkerware: How Scammers Might Be Tracking Your Phone and What You Can Do
Spyware applications designed to secretly monitor people’s phones are becoming more common. These programs, known as stalkerware, can track private messages, calls, photos, locations, and other personal data without the user’s knowledge. Often installed without permission, they operate silently…
When Your SaaS Vendor Goes Dark: A Guide to Protecting Your Business
When a SaaS vendor unexpectedly shuts down, your business faces significant risks. This comprehensive guide provides actionable strategies to recover your data, find alternative solutions, and implement preventative measures to ensure business continuity. The post When Your SaaS Vendor Goes…
Freedom to Choose the Best Secrets Vault?
Are You Making Informed Decisions About Your Secrets Vault? It’s a question that resonates deeply among cybersecurity professionals today. A seasoned data management experts and security enthusiasts understand the importance of flexibility when it comes to selecting a secrets vault.…
How Supported is Your NHIs Policy Enforcement?
Does Your Approach to NHI Policy Enforcement Make the Grade? One question that often arises is: “how effectively are we managing Non-Human Identities (NHIs) policy enforcement in our supported systems?” For numerous enterprises, maintaining a robust NHI management regime is…
Justified Spending on Cybersecurity Technology?
Is Your Cybersecurity Spending Justified? With digital becoming more complex, organizations are continually urged to increase their cybersecurity spending. But the crucial question that arises is – “Is your investment in cybersecurity technology delivering an appropriate return on investment (ROI)?”…
Weak cyber defenses are exposing critical infrastructure — how enterprises can proactively thwart cunning attackers to protect us all
If businesses fail to up their cybersecurity game, the systems everyone relies on could face serious and devastating disruptions. This article has been indexed from Security News | VentureBeat Read the original article: Weak cyber defenses are exposing critical infrastructure —…
Ransomware gangs exploit a Paragon Partition Manager BioNTdrv.sys driver zero-day
Microsoft warns of a Paragon Partition Manager BioNTdrv.sys driver zero-day flaw actively exploited by ransomware gangs in attacks. Microsoft discovered five vulnerabilities in the Paragon Partition Manager BioNTdrv.sys driver. The IT giant reported that one of these flaws is exploited by…
Microsoft disrupted a global cybercrime ring abusing Azure OpenAI Service
Microsoft exposed four individuals behind an Azure Abuse scheme using unauthorized GenAI access to create harmful content. Microsoft shared the names of four developers of malicious tools designed to bypass the guardrails of generative AI services, including Microsoft’s Azure OpenAI…
Independent Audit for Your Secrets Management?
Why Should Organizations Focus on Independent Audit for Secrets Management? Are you overlooking an essential aspect of your organization’s cybersecurity strategy? This aspect is the management of Non-Human Identities (NHIs) and their secrets, which are often overlooked but vital components…
Certain About Your Data Privacy Measures?
Are You Confident in Your Data Privacy Measures? Professionals in financial services in healthcare, travel, DevOps, and SOC teams that managing securitization processes in the cloud; do you feel confident about your data privacy measures? Where marked by increasing cybersecurity…
How Stable is Your Cloud Infrastructure Security?
Are Your Machine Identities Protected Within Your Cloud Infrastructure? Let’s delve into a thought-provoking question: Within your seemingly secure systems, how comprehensively are your Non-Human Identities (NHIs) and their secrets protected? NHIs, as machine identities, play a crucial role in…
LightSpy Malware Attacks Users, Launches Over 100 Commands to Steal Data
Cybersecurity researchers at Hunt.io have found an updated version of LightSpy implant, a modular surveillance framework for data collection and extraction. Famous for attacking mobile devices initially, further enquiry revealed it can attack macOS, Windows, Linux, and routers. LightSpy has…
Bybit Suffers Historic $1.5 Billion Crypto Hack, Lazarus Group Implicated
Dubai-based cryptocurrency exchange Bybit Technology Ltd. has fallen victim to a massive cyberattack, with approximately $1.5 billion in cryptocurrency stolen. The breach is believed to be the largest single theft in cryptocurrency history. Bybit, a well-established exchange with over…
Metrics That Matter for CISOs
With security budgets tightening and business leaders taking a more watchful eye toward cybersecurity, security operations leaders are increasingly looking to justify their work with key performance indicators. But the question remains: Which metrics matter most? Earning a seat at…
DM Clinical Research Database Exposed Online, Leaking 1.6M Patient Records
A clinical research database containing over 1.6 million patient records was discovered publicly accessible online without encryption or password protection. Security researcher Jeremiah Fowler found the dataset, linked to DM Clinical Research, exposing sensitive information such as names, medical…
Beware of Fake Viral Video Links Spreading Malware
McAfee Labs has uncovered a rise in cyber scams where fraudsters use fake viral video links to trick people into downloading malware. These attacks rely on social engineering, enticing users with promises of exclusive or leaked content. Once a…
Open Access to Critical Data With Bank Staff Leading to Financial Scam
A concerning trend has sent shockwaves across cybersecurity authorities, with central cyber and intelligence organisations tracking and documenting large-scale data leaks perpetrated by bank staff and third party contractors. According to a senior Indian government official, the issue has…