OpenAI Reveals Redis Bug Behind ChatGPT User Data Exposure Incident
By:
Mar 25, 2023Ravie LakshmananArtificial Intelligence / Data Security
OpenAI on Friday disclosed that a bug in the Redis open source library was responsible for the exposure of other users'...
German and South Korean Agencies Warn of Kimsuky’s Expanding Cyber Attack Tactics
By:
Mar 23, 2023Ravie LakshmananCyber Attack / Browser Security
German and South Korean government agencies have warned about cyber attacks mounted by a threat actor tracked as Kimsuky using rogue...
Operation Soft Cell: Chinese Hackers Breach Middle East Telecom Providers
By:
Mar 23, 2023Ravie LakshmananCritical Infrastructure Security
Telecommunication providers in the Middle East are the subject of new cyber attacks that commenced in the first quarter of 2023.
The intrusion set...
New Cyber Platform Lab 1 Decodes Dark Web Data to Uncover Hidden Supply Chain...
By:
Mar 20, 2023The Hacker NewsData Breach / Dark Web
2022 was the year when inflation hit world economies, except in one corner of the global marketplace – stolen data....
Pompompurin Unmasked: Infamous BreachForums Mastermind Arrested in New York
By:
Mar 18, 2023Ravie LakshmananCyber Crime / Data Breach
U.S. law enforcement authorities have arrested a New York man in connection with running the infamous BreachForums hacking forum under the...
Winter Vivern APT Group Targeting Indian, Lithuanian, Slovakian, and Vatican Officials
By:
The advanced persistent threat known as Winter Vivern has been linked to campaigns targeting government officials in India, Lithuania, Slovakia, and the Vatican since 2021.
The activity targeted Polish...
Multiple Hacker Groups Exploit 3-Year-Old Vulnerability to Breach U.S. Federal Agency
By:
Mar 16, 2023Ravie LakshmananCyber Attack / Vulnerability
Multiple threat actors, including a nation-state group, exploited a critical three-year-old security flaw in Progress Telerik to break into an unnamed federal...
Does Your Help Desk Know Who’s Calling?
By:
Mar 09, 2023The Hacker NewsPassword Security / Enterprise Security
Phishing, the theft of users' credentials or sensitive data using social engineering, has been a significant threat since the early...
Sharp Panda Using New Soul Framework Version to Target Southeast Asian Governments
By:
Mar 08, 2023Ravie LakshmananAdvanced Persistent Threat
High-profile government entities in Southeast Asia are the target of a cyber espionage campaign undertaken by a Chinese threat actor known as Sharp...
LastPass Hack: Engineer’s Failure to Update Plex Software Led to Massive Data Breach
By:
Mar 07, 2023Ravie LakshmananPassword Security / Software Update
The massive breach at LastPass was the result of one of its engineers failing to update Plex on their home computer,...