Federal agency has suffered a successful espionage-related cyberattack
By: Tara Seals
The attack featured a unique, multistage malware and a likely PulseSecure VPN exploit.
A federal agency has suffered a successful espionage-related cyberattack that led to a backdoor and...
Lovers’ Spat? North Korea Backdoors Russian Foreign Affairs Ministry
North Korean state hackers appear to be spying on Russia, by planting a backdoor inside of bespoke, internal government software.In mid-January 2024, a sample of the Konni backdoor was...
Malware Attack on CircleCI Engineer’s Laptop Leads to Recent Security Incident
By:
Jan 14, 2023Ravie LakshmananDevOps / Data Security
DevOps platform CircleCI on Friday disclosed that unidentified threat actors compromised an employee's laptop and leveraged malware to steal their two-factor authentication-backed...
Why PCI DSS 4.0 Should Be on Your Radar in 2023
By:
Dec 14, 2022The Hacker NewsData Security / Compliance
Protecting customer data is critical for any business accepting online payment information. The Payment Card Industry Data Security Standard (PCI DSS),...
MTTR: The Most Important Security Metric
COMMENTARYReducing risk has long been the guiding principle for security teams. However, even though security teams today are larger with more sophisticated security stacks, risk remains at an all-time...
Pompompurin Unmasked: Infamous BreachForums Mastermind Arrested in New York
By:
Mar 18, 2023Ravie LakshmananCyber Crime / Data Breach
U.S. law enforcement authorities have arrested a New York man in connection with running the infamous BreachForums hacking forum under the...
Russia-Sponsored Cyberattackers Infiltrate Microsoft’s Code Base
The Russian state-sponsored advanced persistent threat (APT) group known as Midnight Blizzard has nabbed Microsoft source code after accessing internal repositories and systems, as part of an ongoing series...
EasyJet Brittish Airline Suffers Hack – 9 Million Customers Data Leaked
British low-cost airline EasyJet today admitted that the company has fallen victim to a cyber-attack, which it labeled "highly sophisticated," exposing email addresses and travel details of around 9 million of...
Reddit Suffers Security Breach Exposing Internal Documents and Source Code
By:
Feb 10, 2023Ravie LakshmananData Breach / Source Code
Popular social news aggregation platform Reddit has disclosed that it was the victim of a security incident that enabled unidentified threat...
Mitigate the LastPass Attack Surface in Your Environment with this Free Tool
By:
Jan 05, 2023The Hacker NewsPassword Management / IT Breach
The latest breach announced by LastPass is a major cause for concern to security stakeholders. As often occurs, we are...