-
"Thousands of Open-Source Projects' Secrets Revealed via Travis CI Flaw"The Continuous Integration and Continuous Delivery (CI/CD) service for cloud platform projects, Travis CI, has addressed a severe security flaw, which exposed API keys, access tokens, and credentials, posing a significant threat to businesses that set…
-
"Universal Decryptor Released for past Victims of REvil Ransomware Group"Bitdefender has announced the release of a free, universal decryption key for REvil ransomware victims to recover their locked data. The tool, created by Bitdefender together with an unnamed law enforcement, can restore files from REvil attacks before…
-
"U.S. Agencies Warn of APTs Exploiting Recent ADSelfService Plus Zero-Day"The U.S. Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Coast Guard Cyber Command (CGCYBER) warn of the exploitation of a recently disclosed vulnerability…
-
"Email Scammers Posed As DOT Officials in Phishing Messages Focused on $1 Trillion Bill"Threat actors posed as U.S. Department of Transportation (DOT) officials in a phishing campaign shortly after Congress took action on a $1 trillion infrastructure package. As fake DOT officials, the attackers invited targets to bid for some of the $1…
-
"60 Percent of Americans Have Smart TVs but Many Remain Unprotected"A new study by the VPN provider NordVPN draws further attention to the possibility of hackers gaining access to a smart TV's camera and microphone through malware. Findings from the study reveal that nearly 60 percent of Americans own smart TVs, but many…
-
"Millions of HP OMEN Gaming PCs Impacted by Driver Vulnerability"Researchers at the cybersecurity firm SentinelOne have released details about a flaw in the HP OMEN driver software, which leaves millions of HP OMEN gaming laptops and desktop computers exposed to attacks. The security vulnerability,…
-
"Ransomware Operators Ramp Up Pressure on Victims via Multiple Extortion Attacks"Ransomware operators are amplifying their campaigns with double, triple, and quadruple extortion models. Researchers at Trend Micro analyzed threat data from the first six months of 2021, finding that ransomware remained one of the most significant…
-
"Critical Azure Security Vulnerabilities Affect Large Organizations"
Researchers at the cloud security vendor Wiz have discovered four critical vulnerabilities in Open Management Infrastructure (OMI), a little-known service deployed on a large number of Linux virtual machines (VMs) in Azure. According to the Wiz…
-
"Apple Patches an NSO Zero-Day Flaw Affecting All Devices"Apple has released security updates that address a critical zero-day vulnerability affecting iPhones, iPads, Apple Watches, and Mac computers. The security flaw, called FORCEDENTRY, was reportedly exploited to push Pegasus spyware from Israel's NSO Group…
-
"Quantum Cryptography: This Air-Filled Fiber Optic Cable Can Transport Un-Hackable Keys, Say Researchers"Quantum Key Distribution (QKD) is a secure communication method that uses particles of light known as photons to encode data in quantum bits, which are transmitted to a sender and receiver in the form of an encryption key. Although QKD is…
-
"University of Minnesota Unveils Center for Medical Device Cybersecurity"The University of Minnesota has announced the new Center for Medical Device Cybersecurity (CMDC), funded by leading medical device manufacturers, including Smiths Medical, Optum, Boston Scientific, Medtronic, and Abbott Laboratories. The purpose of this…
-
"Financial Services Firms Spend Over $2m on Ransomware Recovery"
According to new data from Sophos, global financial services firms spent more than $2m on average recovering from a ransomware attack last year. The UK security vendor polled 550 IT decision-makers in mid-sized financial sector firms around the globe to…
News