In an era defined by the exponential growth of digital transformation, traditional Virtual Private Network (VPN) solutions have become a significant liability for modern organizations. While VPNs were once heralded as a secure method of enabling remote connectivity, they are…
Category: EN
Tibber – 50,002 breached accounts
In November 2024, the German electricity provider Tibber suffered a data breach that exposed the personal information of 50k customers. The data included names, email addresses, geographic locations (city and postcode) and total spend on purchases. The data was provided…
Yonéma – 35,962 breached accounts
In November 2024, data from the Senegalese payment platform Yonéma was posted to a popular hacking forum. The data included 36k unique email addresses alongside phone numbers, names and what appears to be encrypted passwords and dates of birth. This…
AI and Quantum Computing – Waves of innovation and Cyber Security Concerns: Cyber Security Today Weekend for December 14, 2024
AI and Quantum Computing: Waves of Innovation and Cybersecurity Concerns In this episode of Cyber Security Today, host Jim Love delves into the latest in AI advancements, discussing their impact on cybersecurity with guests Marcel Gagné and John Pinard. The…
Building a Future-Ready Cybersecurity Workforce: The OffSec Approach to Talent Development
Learn all about our recent webinar, In the webinar “Building a Future-Ready Cyber Workforce: The OffSec Approach to Talent Development”. The post Building a Future-Ready Cybersecurity Workforce: The OffSec Approach to Talent Development appeared first on OffSec. This article has…
Red Team vs Blue Team in Cybersecurity
Learn what a red team and blue team in cybersecurity are, pros and cons of both, as well as how they work together. The post Red Team vs Blue Team in Cybersecurity appeared first on OffSec. This article has been…
Iran-linked crew used custom ‘cyberweapon’ in US critical infrastructure attacks
IOCONTROL targets IoT and OT devices from a ton of makers, apparently An Iranian government-linked cybercriminal crew used custom malware called IOCONTROL to attack and remotely control US and Israel-based water and fuel management systems, according to security researchers.… This…
Crypted Hearts: Exposing the HeartCrypt Packer-as-a-Service Operation
Analysis of packer-as-a-service (PaaS) HeartCrypt reveals its use in over 2k malicious payloads across 45 malware families since its early 2024 appearance. The post Crypted Hearts: Exposing the HeartCrypt Packer-as-a-Service Operation appeared first on Unit 42. This article has been…
Black Hat Europe 2024: Can AI systems be socially engineered?
Could attackers use seemingly innocuous prompts to manipulate an AI system and even make it their unwitting ally? This article has been indexed from WeLiveSecurity Read the original article: Black Hat Europe 2024: Can AI systems be socially engineered?
Australian IT Pros Urged to Guard Against Chinese Cybersecurity Threats
Australian IT pros are urged to strengthen defenses as Chinese cyber threats target critical infrastructure and sensitive data. This article has been indexed from Security | TechRepublic Read the original article: Australian IT Pros Urged to Guard Against Chinese Cybersecurity…
Scumbag gets 30 years in the clink for running CSAM dark-web chatrooms, abusing kids
‘Today’s sentencing is more than just a punishment. It’s a message’ A Texan who ran a forum on the dark web where depraved netizens could swap child sex abuse material (CSAM), and chat freely about abusing kids, has been sentenced…
Unauthenticated Webpages: Hidden HIPAA Risks on Public-Facing Websites
When we think about HIPAA compliance and websites, the focus often shifts to patient portals, online scheduling systems, and other secure areas requiring user authentication. However, it’s crucial to recognize that even unauthenticated webpages, those accessible to the public without…
Canadian Eyecare Firm Care1 Exposes 2.2TB of Patient Records
Another day, another healthcare database misconfiguration exposing sensitive patient information. This article has been indexed from Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News Read the original article: Canadian Eyecare Firm Care1 Exposes 2.2TB of Patient Records
Risk & Repeat: Attacks ramp up on Cleo MFT software
This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Search Security Resources and Information from TechTarget Read the original article: Risk & Repeat: Attacks ramp up…
Week in Review: Salt Typhoon saga, Microsoft MFA bypass, Yahoo cuts Paranoids
Link to episode page This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Jimmy Sanders, president, ISSA International. ISSA International April 2025- will be celebrating its 40th Anniversary in April 2025. Watch for…
UnitedHealth’s Optum left an AI chatbot, used by employees to ask questions about claims, exposed to the internet
Optum’s AI chatbot was found exposed online at a time when the healthcare giant faces scrutiny for its use of AI to allegedly deny patient claims. © 2024 TechCrunch. All rights reserved. For personal use only. This article has been…
German agency BSI sinkholed a botnet of 30,000 devices infected with BadBox
The German agency BSI has sinkholed a botnet composed of 30,000 devices shipped with BadBox malware pre-installed. The Federal Office for Information Security (BSI) announced it had blocked communication between the 30,000 devices infected with the BadBox malware and the…
Google Timeline location purge causes collateral damage
Privacy measure leaves some mourning lost memories A year ago, Google announced plans to save people’s Location History, which it now calls Timeline, locally on devices rather than on its servers.… This article has been indexed from The Register –…
Decrypting Full Disk Encryption with Dissect
Author: Guus Beckers Back in 2022 Fox-IT decided to open source its proprietary incident response tooling known as Dissect. Since then it has been adopted by many different companies in their regular workflow. For those of you who are not yet familiar…
Starbucks, Supermarkets Targeted in Ransomware Attack
In December, ransomware group Termite claimed responsibility for the attacks. This article has been indexed from Security | TechRepublic Read the original article: Starbucks, Supermarkets Targeted in Ransomware Attack