LATEST POST
Hackers Sell Access to Medical Data for 1.5 Million People
Hackers have made public the medical data of 750,000 French citizens following a cyberattack on MediBoard, an electronic patient record system. As seen on MSN: The attackers claim to have stolen data from a total of 1.5 million individuals, including sensitive medical information. According to Bleeping Computer, a hacker or group using the aliases “nears” or […]
Auto Insurers to Pay $11M+ to N.Y. State After Cyber Attack
Two auto insurance companies will pay over $11 million to New York after data from over 120,000 New York customers was leaked in a November 2020 cyber attack that allowed hackers to exploit the state’s unemployment system. Government Technology reports: Both GEICO and Travelers, major national insurance companies, will pay penalties for their poor data […]
Ransomware attack on software supplier disrupts operations for Starbucks and other retailers
Associated Press reports that a ransomware attack that hit Blue Yonder last week has caused disruptions for a number of companies in the U.S. and the U.K., including Starbucks and grocery giant Morrisons: Blue Yonder, which provides supply chain technology to a range of brands worldwide, said that it experienced disruptions to services it manages […]
Russian Hackers Target Mozilla, Windows in New Exploit Chain
Two vulnerabilities in Mozilla products and Windows are actively exploited by RomCom, a Kremlin-linked cybercriminal group known for targeting businesses and conducting espionage, warn security researchers from Eset. GovInfoSecurity reports: Researchers identified two critical vulnerabilities in Mozilla Foundation products. One, tracked as CVE-2024-9680 is a use-after-free flaw allowing code execution in the Firefox and the Thunderbird email client. It […]
US charges five in ‘Scattered Spider’ hacking scheme
U.S. prosecutors unveiled criminal charges on Wednesday against five alleged members of Scattered Spider, a community of young hackers suspected of breaking into dozens of U.S. companies to steal confidential information and cryptocurrency. Reuters reports: Martin Estrada, the U.S. Attorney in Los Angeles, said the defendants conducted phishing attacks by sending bogus but real-looking mass […]
Update now! Apple releases software to patch critical security flaws
No joke — update promptly because these vulnerabilities are being actively exploited. Apple is urging users to promptly apply the iOS 18.1.1, macOS Sequoia 15.1.1, and the older iOS 17.7.2 updates across all devices in the Apple ecosystem. NewsBytes summarizes the issues: In a move to protect its users, Apple has pushed critical security updates for its macOS and iOS platforms, […]
One Million Websites Vulnerable To Dangerous Sitting Duck Cyber Attacks
As Forbes reports, hijacking internet domains is nothing new, but a new Infoblox report reveals how the threat has evolved into an ongoing attack methodology. Forbes explains: The sitting duck cyber attacks are, Infoblox said, “easy to execute for actors, hard to detect for security teams.” To understand why you need to look at what vulnerability […]
Majority of firms using generative AI experience related security incidents – even as it empowers security teams
How many times do we read about something new and think, “What can possibly go wrong, right?” Some new research by the Capgemini Research Institute found that 97% of organizations using generative AI were affected by data breaches or security concerns linked to generative AI, and most do not have an adequate budget to deal with […]