Ransomware attacks in Healthcare: A threat to patient safety A ransomware attack on a major U.S. hospital network has been endangering patients’ health. Nurses are forced to manually enter prescription information and work without electronic health records cyberattacks have become…
Category: EN
Shell Data Breach: Hacker Group 888 Claims Responsibility
A hacker group known as 888 has claimed responsibility for a data breach targeting Shell, the British multinational oil and gas company. The breach, allegedly impacting around 80,000 individuals across multiple countries, has raised significant concerns about data security…
Seattle Public Library Hit by Ransomware Attack, Online Services Disrupted
The Seattle Public Library (SPL) has faced a significant cybersecurity incident, with its online services being disrupted due to a ransomware attack. This attack, detected over the weekend, led to the library taking proactive measures by bringing its online…
USENIX Security ’23 – Bleem: Packet Sequence Oriented Fuzzing for Protocol Implementations
Authors/Presenters:Zhengxiong Luo, Junze Yu, Feilong Zuo, Jianzhong Liu, Yu Jiang, Ting Chen, Abhik Roychoudhury, Jiaguang Suny Many thanks to USENIX for publishing their outstanding USENIX Security ’23 Presenter’s content, and the organizations strong commitment to Open Access. Originating from the…
RedTail Cryptomining Malware Exploits Zero-Day Vulnerability in PAN-OS
Cryptomining malware, potentially of North Korean origin, is targeting edge devices, including a zero-day vulnerability in Palo Alto Networks’ custom operating system that the company quickly patched in April. Researchers from Akamai identified the malware, dubbed RedTail due to…
Professional Sporting Events: The Next Frontier of Cybersecurity?
Professional sports has a cybersecurity issue. Last year, the National Cyber Security Centre discovered that 70% of sports organisations face at least one cyberattack each year. This indicates a significant increase from general companies, of which only 32% reported dealing…
Security Affairs newsletter Round 474 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Ticketmaster…
Snowflake at centre of world’s largest data breach
Cloud AI Data platform Snowflake are having a bad month. Due to teenager threat actors and cybersecurity of its own customers… and its own cybersecurity, too, in terms of optics. There are several large data breaches playing out in the media…
Navigating Email: From Spam Wars to Trusted Relationships
Some call it spam. Others call it marketing. Recipients want it to stop, while senders are looking to perfect their “art.” But both sides agree on one thing: Email communication is still broken in 2024. The post Navigating Email: From…
Week in review: Attackers trying to access Check Point VPNs, NIST CSF 2.0 security metrics evolution
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: RansomLord: Open-source anti-ransomware exploit tool RansomLord is an open-source tool that automates the creation of PE files, which are used to exploit ransomware pre-encryption. Attackers…
Ticketmaster Data Breach Affects Over 500 Million Customers
We are all music fans at heart, and recently the most eye-catching tour is the three-hour Taylor Swift concert. The platform that sells tickets for these in-demand tours, Ticketmaster, has taken a hit. In a substantial blow to one…
Ticketmaster confirms data breach impacting 560 million customers
Ticketmaster owner Live Nation confirmed the Ticketmaster data breach that compromised the data of 560 million customers. ShinyHunters, the current administrator of BreachForums, recently claimed the hack of Ticketmaster and offered for sale 1.3 TB of data, including full details of…
Ticketmaster confirms customer data breach
Live Nation has confirmed what everyone has been speculating on for the last week: Ticketmaster has suffered a data breach. This article has been indexed from Malwarebytes Read the original article: Ticketmaster confirms customer data breach
Snowflake denies breach, blames data theft on poorly secured customer accounts
Snowflake is disputing claims made by a threat actor who stole data belonging to Santander and Ticketmaster, and maintains that the theft of customer data was the result of stolen customer login credentials. “We are aware of recent reports related…
Critical Apache Log4j2 flaw still threatens global finance
The vulnerability CVE-2021-44832 is Apache Log4j2 library is still a serious problem for multiple industries, expert warns it threatens global Finance. The independent cyber threat intelligence analyst Anis Haboubi warns of a severe logging configuration flaw that could dramatically impact…
Crooks stole more than $300M worth of Bitcoin from the exchange DMM Bitcoin
Crooks stole approximately 48.2 billion yen ($304 million) worth of Bitcoin from the Japanese cryptocurrency exchange DMM Bitcoin. The Japanese cryptocurrency exchange DMM Bitcoin announced that crooks stole 4,502.9 Bitcoin (BTC), approximately $304 million (48.2 billion yen), from the its…
USENIX Security ’23 – Intender: Fuzzing Intent-Based Networking with Intent-State Transition Guidance
Authors/Presenters: Jiwon Kim, Benjamin E. Ujcich, Dave (Jing) Tian Many thanks to USENIX for publishing their outstanding USENIX Security ’23 Presenter’s content, and the organizations strong commitment to Open Access. Originating from the conference’s events situated at the Anaheim Marriott;…
Why CVEs Reflect an Incentives Problem
Two decades ago, economist Steven Levitt and New York Times reporter Stephen Dubner published “Freakonomics,” a book that applied economic principles to various social phenomena. They argued that understanding how people make decisions requires examining the incentives they respond…
Pirated Microsoft Office Distributes a Malware Cocktail to Infiltrates Systems
The hackers are distributing a malware cocktail via cracked versions of Microsoft Office marketed on torrent websites. Malware distributed to customers includes remote access trojans (RATs), cryptocurrency miners, malware downloaders, proxy tools, and anti-AV programs. The AhnLab Security Intelligence…
NIST Introduces ARIA Program to Enhance AI Safety and Reliability
The National Institute of Standards and Technology (NIST) has announced a new program called Assessing Risks and Impacts of AI (ARIA), aimed at better understanding the capabilities and impacts of artificial intelligence. ARIA is designed to help organizations and…