LATEST POST
Hacker behind $234 million India crypto theft starts washing funds
Bloomberg reports an update on the cyberattack of the WazirX cryptocurrency exchange. The attack, suspected to be linked to the Lazarus Group in North Korea, resulted in the theft of $234 million from the Indian exchange and left WazirX announcing that they were unlikely to recover 43% of the stolen funds. The attacker behind India’s […]
Federal Trade Commission Fines Verkada
Risky Biz News reports: The FTC has fined security camera firm Verkada $2.95 million for failing to implement cybersecurity measures to protect its systems. The fine is related to a March 2021 security breach when a hacker accessed customer data and video footage from over 150,000 Verkada cameras. The hacker used the cameras to access and leak footage from psychiatric hospitals, […]
New Password Hacking Warning For Gmail, Facebook And Amazon Users
Forbes explains: New threat analysis from researchers at Kaspersky has revealed a dramatic rise in the number of password-stealing attacks targeting Amazon, Facebook and, most of all, Google users. Here’s what you need to know. Amazon, Facebook And Gmail Are A Magnet For Password Hackers It should come as no surprise that the likes of […]
Microsoft security tools questioned for treating employees as threats
Can you effectively monitor employee activity to prevent and root out insider threats, or are you turning your workplace into a hostile surveillance environment? The Register reports that a report by Cracked Labs examines how workplace surveillance turns workers into suspects: Software designed to address legitimate business concerns about cyber security and compliance treats employees […]
Microsoft to host Windows Endpoint Security Ecosystem Summit in September
After the disastrous CrowdStrike update glitch in July, Microsoft continues to explore ways to prevent another such fiasco. Aidan Marcuss, Corporate Vice President of Microsoft Windows and Devices, announces a summit to address the issues raised and possible solutions: On Sept. 10, 2024, Microsoft will host a Windows Endpoint Security Ecosystem Summit at our Redmond, Washington, headquarters. […]
More than one year later, Texas Dow Employees Credit Union notifies 500,000 of MOVEit data breach
There are those who may say, “Better late than never.” There are probably also those who say, “How should egregiously late notification be punished?” SC Media reports that some people are first being notified of the 2023 MOVEit data breach: The Texas Dow Employees Credit Union (TDECU) on Aug. 23 sent letters to more than […]
American Radio Relay League confirms $1 million ransom payment
Why would an organization whose breach affected 150 people pay $1 million ransom to get a decryptor key? How critical are the organization’s activities to justify such a large payment? Large payments are more likely to be associated with the healthcare sector or critical infrastructure than with a non-profit organization like the American Radio Relay […]
Microsoft says North Korean hackers stole crypto through Chromium
A vulnerability on multiple web browsers was exploited by the Citrine Sleet threat actor to steal crypto from its victims, according to Microsoft. A Microsoft report claims a North Korean threat actor has been exploiting a flaw on Chromium to steal cryptocurrency. The company’s security blog attributed the exploitation of this bug “with medium confidence” […]