Google Cloud Resolves Privilege Escalation Flaw Impacting Kubernetes Service
By:
Dec 28, 2023NewsroomCloud Security / Data Protection
Google Cloud has addressed a medium-severity security flaw in its platform that could be abused by an attacker who already has access...
British LAPSUS$ Teen Members Sentenced for High-Profile Attacks
By:
Dec 24, 2023NewsroomCyber Crime / Data Breach
Two British teens part of the LAPSUS$ cyber crime and extortion gang have been sentenced for their roles in orchestrating a string...
Rogue WordPress Plugin Exposes E-Commerce Sites to Credit Card Theft
By:
Dec 22, 2023NewsroomSkimming / Web Security
Threat hunters have discovered a rogue WordPress plugin that's capable of creating bogus administrator users and injecting malicious JavaScript code to steal credit...
Cost of a Data Breach Report 2023: Insights, Mitigators and Best Practices
By:
John Hanley of IBM Security shares 4 key findings from the highly acclaimed annual Cost of a Data Breach Report 2023
What is the IBM Cost of a Data...
FBI Takes Down BlackCat Ransomware, Releases Free Decryption Tool
By:
Dec 19, 2023NewsroomRansomware / Cybercrime
The U.S. Justice Department (DoJ) has officially announced the disruption of the BlackCat ransomware operation and released a decryption tool that more than 500...
Remote Encryption Attacks Surge: How One Vulnerable Device Can Spell Disaster
By:
Dec 20, 2023NewsroomNetwork Security / Data Breach
Ransomware groups are increasingly switching to remote encryption in their attacks, marking a new escalation in tactics adopted by financially motivated actors...
China’s MIIT Introduces Color-Coded Action Plan for Data Security Incidents
By:
Dec 16, 2023NewsroomCyber Security / Incident Response
China's Ministry of Industry and Information Technology (MIIT) on Friday unveiled draft proposals detailing its plans to tackle data security events in...
New Hacker Group ‘GambleForce’ Tageting APAC Firms Using SQL Injection Attacks
By:
Dec 14, 2023NewsroomVulnerability / Data Breach
A previously unknown hacker outfit called GambleForce has been attributed to a series of SQL injection attacks against companies primarily in the Asia-Pacific...
New KV-Botnet Targeting Cisco, DrayTek, and Fortinet Devices for Stealthy Attacks
By:
Dec 15, 2023NewsroomBotnet / Advanced Persistent Threat
A new botnet consisting of firewalls and routers from Cisco, DrayTek, Fortinet, and NETGEAR is being used as a covert data transfer...
Generative AI Security: Preventing Microsoft Copilot Data Exposure
By:
Microsoft Copilot has been called one of the most powerful productivity tools on the planet.
Copilot is an AI assistant that lives inside each of your Microsoft 365 apps...