Plus: The FAA blocks drones over DHS operations, Microsoft admits it hands over Bitlocker encryption keys to the cops, and more.
Winona County was the victim of a ransomware attack this week, affecting computer networks and phone systems. Many of the county’s phone lines and at least some internal networks are down, county...
Die Geschäftsstelle der Verkehrsgesellschaft Main-Tauber (VGMT) sowie die Mobilitätszentrale in Lauda sind Ziel eines Cyberangriffs mit einer Schadsoftware geworden. Dies ist am Mittwochmorgen...
Drone, satellite, and other data combined to monitor unwanted vessels The UK Home Office is spending up to £100 million on intelligence tech in part to tackle the so-called "small boats" issue of...
But ex-CISA boss and new RSAC CEO Jen Easterly will be there exclusive The US Cybersecurity and Infrastructure Security Agency won't attend the annual RSA Conference in March, an agency...
Unit 42 celebrates 9 years of the Cyber Threat Alliance, tracing its journey from a bold idea to a global leader in collaborative cyber defense. The post Happy 9th Anniversary, CTA: A Celebration...
The activity centers on CVE-2024-36401, a remote code execution vulnerability disclosed in 2024 that allows unauthenticated attackers to execute arbitrary commands on vulnerable GeoServer...
Overview GreyNoise sensors captured extensive scanning activity targeting web application vulnerabilities with Out-of-band Application Security Testing (OAST) callback domains embedded in exploit...
The ruling in federal court in Minnesota lands as Immigration and Customs Enforcement faces scrutiny over an internal memo claiming judge-signed warrants aren’t needed to enter homes without consent.
If you skipped it back then, now’s a very good time You've got to keep your software updated. Some unknown miscreants are exploiting a critical VMware vCenter Server bug more than a year after...
Spock befriends a giant space squid in the comic Star Trek: Strange New Worlds: The Seeds of Salvation #5. As usual, you can also use this squid post to talk about the security stories in the news...
In an op-ed for the Toronto Star, Jason Stanley and Ron Deibert write that Mark Carney must emphasize the importance of democratic values on the world stage. “Canada is a healthy, pluralistic, and...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation...
If you're serious about encryption, keep control of your encryption keys If you think using Microsoft's BitLocker encryption will keep your data 100 percent safe, think again. Last year, Redmond...
In 2009, LevelBlue Vice President of Security Research Ziv Mador and Cristian Craioveanu worked at the Microsoft Malware Team and documented a notable code injection vulnerability on certain...
In 2009, LevelBlue Vice President of Security Research Ziv Mador and Cristian Craioveanu worked at the Microsoft Malware Team and documented a notable code injection vulnerability on certain...
Citizen Lab director Ron Deibert spoke with the Walrus about Minister of Artificial Intelligence and Digital Innovation Evan Solomon’s 30-day “national sprint” to inform Canada’s approach to AI...
'A lot more' victims to come, we're told ShinyHunters has claimed responsibility for an Okta voice-phishing campaign during which the extortionist crew allegedly gained access to Crunchbase and...
Fortinet has officially confirmed that it's working to completely plug a FortiCloud SSO authentication bypass vulnerability following reports of fresh exploitation activity on fully-patched...
Police arrest Black Basta RaaS affiliates, DPRK actors leverage VS Code to deploy backdoors, and attackers exploit misconfigured cloud apps.
Security chief says criminals are already automating workflows, with full end-to-end tools likely within years CISOs must prepare for "a really different world" where cybercriminals can reliably...
US Customs and Border Protection is paying General Dynamics to create prototype “quantum sensors,” to be used with an AI database to detect fentanyl and other narcotics.
TikTok on Friday officially announced that it formed a joint venture that will allow the hugely popular video-sharing application to continue operating in the U.S. The new venture, named TikTok...
The attack involved data-wiping malware that ESET researchers have now analyzed and named DynoWiper
Cybersecurity researchers have disclosed details of a new dual-vector campaign that leverages stolen credentials to deploy legitimate Remote Monitoring and Management (RMM) software for persistent...
“The new [U.S.] National Security Strategy does not list Russia as an enemy or a target. Nevertheless, the NATO Secretary General is preparing for war with us. How does that make sense?” Russian...
Europe depends on Chinese and American tech — and worries about the safety of its critical telecom and IT systems. A new cybersecurity proposal focuses on protecting against not only cyberattacks,...
Microsoft has warned of a multi‑stage adversary‑in‑the‑middle (AitM) phishing and business email compromise (BEC) campaign targeting multiple organizations in the energy sector. "The campaign...
New legislation introduced in the House would block the use of China-controlled apps on federal government devices. That ban, and hoped-for resulting improvements in federal government...
Clothing retailer Under Armour is investigating a recent data breach that purloined customers’ email addresses and other personal information, but so far there are no signs the hackers stole any...