A building automation engineering firm located in Germany suffered a cyberattack that locked it out of the Building Automation System (BAS) it had constructed for an office building client, resulting in loss of contact with hundreds of BAS devices, such…

The Fisher-Price Chatter phone is a classic kids toy that has been revamped for adults as it can now make and receive calls over Bluetooth using a nearby smartphone. The Chatter is now more like a novelty Bluetooth speaker with a microphone that…

CrowdStrike's Falcon OverWatch team has discovered that China-linked cyberespionage group Aquatic Panda exploited the Log4Shell vulnerability to compromise a large academic institution.  As part of a recent campaign, the OverWatch security…

Sapio Research surveyed over 1,500 security professionals on behalf of the machine identity management provider Venafi. Of those who participated in the survey, 60 percent reported considering ransomware and terrorism equal threats. The findings reflect…

T-Mobile has reportedly suffered another data breach a few months after a huge breach in August. The new breach seems to have affected a smaller group of customers, and the total amount of customers affected is still unknown. The customers affected by…

An Amazon S3 bucket belonging to the logistics company D.W. Morgan was discovered to be open, exposing more than 100 GB of sensitive data about shipments and clients, including Fortune 500 companies such as Cisco and Ericsson. The Website Planet security…

QNAP network-attached storage (NAS) device users have been reporting eCh0raix (also known as QNAPCrypt) ransomware attacks on their systems. The threat actor behind the eCh0raix ransomware attacks appears to have amplified their activity a week before…

The Food and Drug Administration (FDA) recently released an alert about the Cybersecurity and Infrastructure Security Agency's (CISA) warning of a dozen vulnerabilities identified in specific components of Germany-based medical device manufacturer…

Security researchers at Kasada released new data on the latest fraud and malicious automation trends.  The researchers observed a 4x increase in automated online gift card lookup attempts during the holiday season.  The researchers also…

Shutterfly, an online platform for photography and personalized products, has confirmed that a ransomware attack has affected some of its services.  Shutterfly operates multiple services and brands, such as BorrowLenses, GrooveBook, Lifetouch,…

Schneider Electric has released patches for flaws found in its EVlink electric vehicle charging stations. The security vulnerabilities affect EVlink City (EVC1S22P4 and EVC1S7P4), Parking (EVW2, EVF2, and EVP2PE), Smart Wallbox (EVB1A) devices, and some…

Federal IT teams are trying to patch the Log4j vulnerabilities and follow guidance issued by the US Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA), which requires federal agencies to mitigate the…