News

Resolves allegations it improperly stored screenshots containing PII that were later snaffled

A US government contractor will settle claims it violated cyber security rules prior to a breach that compromised Medicare beneficiaries' personal data.…

It's called leaving the door wide open – especially in Proxmox

A critical bug in Kubernetes Image Builder could allow unauthorized SSH access to virtual machines (VMs) thanks to default credentials being enabled during the image build process.…

The German car giant appears to be unconcerned

The 8Base ransomware crew claims to have stolen a huge data dump of Volkswagen files and is threatening to publish them, but the German car giant appears to be unconcerned.…

Another blow for IT software house and its customers

A critical, hardcoded login credential in SolarWinds' Web Help Desk line has been exploited in the wild by criminals, according to the US Cybersecurity and Infrastructure Security Agency, which has added the security blunder to its Known Exploited Vulnerabilities (KEV) Catalog.…

Uncle Sam having a secret way into US tech? Say it ain't so

A Chinese industry group has accused Intel of backdooring its CPUs, in addition to other questionable security practices while calling for an investigation into the chipmaker, claiming its products pose "serious risks to national security."…

Find out how to enhance efficiency using Google Security Operations

Webinar  In an era of ever-evolving cyber threats, staying ahead of potential security risks is essential.…

DDoS detectives deduce Mirai used to do the deed, using home entertainment boxes in Korea, China, and Brazil

The Internet Archive has come back online, in slightly degraded mode, after repelling an October 9 DDoS attack and then succumbing to a raid on users' data.…

Also: Crypto-hub Binance helps Delhi police shut down solar power scam

IBM announced on Tuesday it has acquired Prescinto – a Bangalore-based provider of asset performance management software for renewable energy.…

Messaging service creates persistent user IDs that have different qualities on each device

An analysis of Meta's WhatsApp messaging software reveals that it may expose which operating system a user is running, and their device setup information – including the number of linked devices.…

IntelBroker claims the breach impacts Microsoft, SAP, AT&T, Verizon, T-Mobile US, and more

Cisco has confirmed it is investigating claims of stealing — and now selling — data belonging to the networking giant.…

Volume of attacks still surging though, according to Digital Defense Report

Microsoft says ransomware attacks are up 2.75 times compared to last year, but claims defenses are actually working better than ever.…

Who also worries misinformation on social media could threaten liquidity

The governor of India's Reserve Bank, Shri Shaktikanta Das, yesterday warned that AI – and the platforms that provide it – could worsen systemic risk to the nation's financial system.…

Enough with the racist-sounding 'dragons' and 'pandas', Beijing complains – then points the finger at koalas

Chinese authorities have published another set of allegations that assert the Volt Typhoon threat actor is an invention of the US and its allies, and not a crew run by Beijing.…

It waited till just before Columbus Day weekend to make mandated filing, but don't worry, we saw it

A Houston-based services provider to healthcare organizations says a crook may have grabbed up to 400,000 people's information after the miscreant accessed the systems of one of its customers.…

Technologies that help SOCs detect, analyze, and respond to emerging threats faster and more accurately

Sponsored Post  This article discusses some of the challenges traditional SOCs face and how integrating artificial intelligence/machine learning (AI/ML) modules could help solve the challenges faced by security professionals and organizations.…

Florida man gets his hands on 'the best ever'

With less than a month to go before American voters head to the polls to choose their next president, the Trump campaign has been investing in secure tech to make sure it doesn't get hacked again.…

No excuses for not patching this nine-month-old issue

More than 86,000 Fortinet instances remain vulnerable to the critical flaw that attackers started exploiting last week, according to Shadowserver's data.…

Let Okta lift the lid on customer identity in this series of webinars

Sponsored Post  Recent reports suggest that stolen identity and privileged access credentials now account for 61 percent of all data breaches.…

With an off-the-shelf D-Wave machine

Chinese researchers claim they have found a way to use D-Wave's quantum annealing systems to develop a promising attack on classical encryption.…

Reading, writing, and cyber mayhem, amirite?

If we were to draw an infosec Venn diagram, with one circle representing "sensitive info that attackers would want to steal" and the other "limited resources plus difficult-to-secure IT environments," education would sit in the overlap. …