REvil member allegedly behind Kaseya attack extradited to US
In October last year, it was reported that REvil accounted for a significant portion of Q2 2021 ransomware attacks, with government entities the biggest targets. Its best-known victim was Kaseya's VSA cloud-based system management platform—used for.....»»
Fla. dealership employee indicted on first-degree murder charge in death of co-worker
Steve Tilbury is accused of fatally striking his co-worker with a metal baseball bat in a premeditated attack......»»
Fla. dealership employee indicted for first-degree murder in death of co-worker
Steve Tilbury is accused of fatally striking his co-worker with a metal baseball bat in a premeditated attack......»»
City of Columbus sues man after he discloses severity of ransomware attack
Mayor said data was unusable to criminals; researcher proved otherwise. Enlarge (credit: Getty Images) A judge in Ohio has issued a temporary restraining order against a security researcher who presented evidence that a.....»»
Dealership catches onto scammer, but plays along until cops arrest him
A video showing a customer taking delivery of two Kia Tellurides, then being arrested for allegedly using a fake driver's license, went viral on TikTok......»»
RISCPoint RADAR provides real-time vulnerability detection across multiple attack surfaces
RISCPoint Advisory Group launched RADAR, an all-in-one cybersecurity platform. Combining continuous threat discovery with expert-led Penetration Testing as a Service (PTaaS), RADAR represents a significant leap forward in proactive security and risk.....»»
Rezonate’s mid-market solution reduces the cloud identity attack surface
Rezonate announced a new identity security solution for mid-market companies. The offering proactively reduces the identity attack surface and improves compliance efforts in a fraction of the time of legacy IAM tools or manual methods. This approach.....»»
“Exploitative” IT firm has been delaying 2,000 recruits’ onboarding for years
India's Infosys recruits reportedly subjected to repeated, unpaid "pre-training." Enlarge (credit: Getty) Indian IT firm Infosys has been accused of being “exploitative” after allegedly sending job offers to thousand.....»»
PSA: Watch out for phishing attacks with fake banking app updates
A security researcher has discovered a phishing attack intended to fool iPhone users into installing what is claimed to be an update to their banking app. The attack works despite iOS protections because what is actually being ‘installed’ is a.....»»
Lateral movement: Clearest sign of unfolding ransomware attack
44% of unfolding ransomware attacks were spotted during lateral movement, according to Barracuda Networks. 25% of incidents were detected when the attackers started writing or editing files, and 14% were unmasked by behavior that didn’t fit with kn.....»»
Uber was just hit with a massive $320 million fine. Here’s why
Uber allegedly violated GDPR guidelines and now faces a stiff fine from the Dutch Data Protection Agency......»»
Week in review: PostgreSQL databases under attack, new Chrome zero-day actively exploited
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: PostgreSQL databases under attack Poorly protected PostgreSQL databases running on Linux machines are being compromised by cryptojacking attackers......»»
After cybersecurity lab wouldn’t use AV software, US accuses Georgia Tech of fraud
Researchers allegedly found security protocols "burdensome." Enlarge (credit: Georgia Tech) Dr. Emmanouil "Manos" Antonakakis runs a Georgia Tech cybersecurity lab and has attracted millions of dollars in the last few ye.....»»
Langbeinites show talents as 3D quantum spin liquids
A 3D quantum spin liquid has been discovered in the vicinity of a member of the langbeinite family. The material's specific crystalline structure and the resulting magnetic interactions induce an unusual behavior that can be traced back to an island.....»»
This new Android malware can steal your card details via the NFC chip
Security researchers spot a sophisticated attack that steals people's NFC data and can be used to steal money, and more......»»
Wallarm API Attack Surface Management mitigates API leaks
Wallarm announced its latest innovation: API Attack Surface Management (AASM). This agentless technology transforms how organizations identify, analyze, and secure their entire API attack surface. Designed for effortless deployment, Wallarm AASM empo.....»»
Android malware uses NFC to steal money at ATMs
ESET researchers uncovered NGate malware, which can relay data from victims’ payment cards via a malicious app installed on their Android devices to the attacker’s rooted Android phone. Attack overview (Source: ESET) Unauthorized ATM withdrawals.....»»
GenAI models are easily compromised
95% of cybersecurity experts express low confidence in GenAI security measures while red team data shows anyone can easily hack GenAI models, according to Lakera. Attack methods specific to GenAI, or prompt attacks, are easily used by anyone to manip.....»»
Top architectural firm reveals it was hit by major ransomware attack
CannonDesign starts notifying people a year and a half after the incident......»»
PostgreSQL databases under attack
Poorly protected PostgreSQL databases running on Linux machines are being compromised by cryptojacking attackers. The attack – observed by Aqua Security researchers on a honeypot system – starts with the threat actors brute-forcing access.....»»
Average DDoS attack costs $6,000 per minute
2023 saw a surge in the frequency and duration of DDoS attacks, and in the first half of 2024, it’s clear that surge has become the new normal, according to Zayo. DDoS attack duration increases DDoS attacks surged 106% from H2 2023 to H1 2024. The.....»»