News
New string of phishing attacks targets Python developers
The Python Software Foundation warned users of a new string of phishing attacks using a phony Python Package Index (PyPI) website and asking victims to verify their account or face suspension, and advised anyone who did provide their credentials to change their password "immediately."…
Google warns China-linked spies lurking in 'numerous' enterprises since March
Unknown intruders – likely China-linked spies – have broken into "numerous" enterprise networks since March and deployed backdoors, providing access for their long-term IP and other sensitive data stealing missions, all the while remaining undetected on average for 393 days, according to Google Threat Intelligence.…
UK agency makes arrest in airport cyberattack investigation
Breaking The UK's National Crime Agency has arrested a man as part of an investigation into a ransomware attack that disrupted airports around the world last weekend.…
Cybercriminals cash out with casino giant's employee data
Hotel and casino operator Boyd Gaming has disclosed a cyberattack to US regulators, warning that hackers may have stolen personal information belonging to employees and other individuals.…
Campaigners urge UK PM Starmer to dump digital ID wheeze before it's announced
Seven campaign groups have written to UK prime minister Keir Starmer urging him to scrap plans for a mandatory digital identity system – a project that is expected to be announced imminently, as part an effort to tackle unauthorized migration.…
Politicos: ‘There is a good strong case for government intervention’ on JLR cyberattack
The chair of the UK's business and trade committee says the situation at Jaguar Land Rover is likely to get "harder and harder over the next week or two," but stopped short of confirming that the government might intervene with financial support.…
Nearly half of businesses suffered deepfaked phone calls against staff
A survey of cybersecurity bosses has shown that 62 percent reported attacks on their staff using AI over the last year, either by the use of prompt injection attacks or faking out their systems using phony audio or video generated by AI.…
SonicWall releases rootkit-busting firmware update following wave of attacks
SonicWall on Monday released a firmware update that the security vendor says will remove rootkit malware deployed in recent attacks targeting Secure Mobile Access (SMA) 100 appliances.…
Third time's the charm? SolarWinds (again) patches critical Web Help Desk RCE
SolarWinds on Tuesday released a hotfix - again - for a critical, 9.8-severity flaw in its Web Help Desk IT ticketing software that could allow a remote, unauthenticated attacker to run commands on a host machine. …
OnePlus leaves researchers on read over Android bug that exposes texts
Security researchers report that OnePlus smartphone users remain vulnerable to a critical bug that allows any application to read SMS and MMS data — a flaw that has persisted since late 2021.…
SIM city: Feds say 100,000-card farms could have killed cell towers in NYC
The US Secret Service has dismantled a network of SIM farms in and around New York City it claims was behind multiple incidents targeting senior government officials and had enough power to disrupt entire cellular networks.…
Kaspersky: RevengeHotels checks back in with AI-coded malware
Kaspersky has raised the alarm over the resurgence of hotel-hacking outfit "RevengeHotels," which it claims is now using artificial intelligence to supercharge its scams.…
OpenSSF warns that open source infrastructure doesn't run on thoughts and prayers
The Open Source Security Foundation (OpenSSF) has had enough of being the unpaid janitor of the world's software supply chain.…
GitHub moves to tighten npm security amid phishing, malware plague
GitHub, which owns the npm registry for JavaScript packages, says it is tightening security in response to recent attacks.…
Oracle gets to store US users' TikTok data, says Trump
The White House has promised that all US user data on TikTok will be stored on Oracle servers in the United States, according to a deal to be announced later this week.…
Workers fear for their jobs as JLR's latest shutdown extended
Jaguar Land Rover is extending the shutdown of its production plants another week in a move that experts say could cost the business in the multiple billions.…
Suspected Iran-backed attackers targeting European aerospace sector with novel malware
Suspected Iranian government-backed online attackers have expanded their European cyber ops with fake job portals and new malware targeting organizations in the defense, manufacturing, telecommunications, and aviation sectors.…
UK chancellor Putin the blame on Russia for cyber chaos, but evidence says otherwise
UK chancellor Rachel Reeves is blaming Moscow for Britain's latest cyber woes, an attribution that seems about as solid as wet cardboard given the trail of evidence pointing to attackers much closer to home.…
EV charging biz zaps customers with data leak scare
An electric vehicle charging point provider is telling users that their data may be compromised, following a recent security "incident" at a service provider.…
Cops cuff another teen over alleged Scattered Spider attack that broke Vegas casinos
A teen surrendered to Las Vegas police and was booked on suspicion of breaking into multiple Las Vegas casino networks in 2023, as part of a series of hacks attributed to Scattered Spider.…
Pages
