LATEST POST
WestJet Security Advisory
On June 13, WestJet posted a notice about a cybersecurity incident. They updated it on Saturday: WestJet is aware of a cybersecurity incident involving internal systems and the WestJet app, which has restricted access for several users. We have activated specialized internal teams in cooperation with law enforcement and Transport Canada to investigate the matter […]
CISA warns of SimpleHelp ransomware compromises after string of retail attacks
The Record reports: Ransomware gangs have been exploiting a vulnerability in remote device control software SimpleHelp during a recent string of attacks, according to federal cybersecurity officials. The Cybersecurity and Infrastructure Security Agency (CISA) warned on Thursday that CVE-2024-57727 — a vulnerability affecting SimpleHelp’s widely-used remote access tools — was exploited to “compromise customers of […]
Hackers are using Google.com to deliver malware by bypassing antivirus software. Here’s how to stay safe
TechRadar reports: A new browser-based malware campaign has surfaced, demonstrating how attackers are now exploiting trusted domains like Google.com to bypass traditional antivirus defenses. A report from security researchers at c/side, this method is subtle, conditionally triggered, and difficult for both users and conventional security software to detect. It appears to originate from a legitimate OAuth-related URL, but covertly […]
Ransomware Group Threatens to Dump Paraguayan Citizens’ Data
BankInfoSecurity reports: A data-leak extortion group is shaking down the government of Paraguay for a ransom payment worth $7.4 million, or $1 for every one of the country’s citizens. The group, calling itself Brigada Cyber PMC, claimed in a Sunday post to its dark web leak site that it stole personally identifiable information on citizens […]
Unpatched IT Tool Opens Door – Hackers Breach Billing Software Firm via SimpleHelp RMM
GBHackers reports: Cybersecurity professionals and business leaders are on high alert following a confirmed breach of a utility billing software provider, traced to unpatched vulnerabilities in the widely used SimpleHelp Remote Monitoring and Management (RMM) platform. The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical advisory warning that ransomware actors have leveraged these security gaps […]
School Districts Unaware BoardDocs Software Published Their Private Files
Company said it notified customers nationwide after a tech glitch exposed confidential data, but multiple districts said they knew nothing about it. The 74 reports that although Diligent Corporation claims they notified all BoardDocs clients of a recently discovered data leak, many school districts had no awareness of any incident until The 74 contacted them. […]
Victoria’s Secret expects $10M hit to Q2 operating income from cybersecurity breach
Over Memorial Day weekend, Victoria’s Secret suffered a cyberattack that resulted in it taking its website offline for several days and issuing a notice that some customer data had been stolen. The breach costs are taking a bite out of its Q2 operating income. RetailDive reports:
Former CIA Analyst Sentenced to Over Three Years in Prison for Unlawfully Transmitting Top Secret National Defense Information
From the U.S. Department of Justice, Office of Public Affairs: A former CIA analyst was sentenced today to 37 months in prison for unlawfully retaining and transmitting Top Secret National Defense Information to people who were not entitled to receive it, information which was publicly posted on social media platforms in October 2024. According to […]