Hackers Leak Another Set of Medibank Customer Data on the Dark Web
By: Ravie Lakshmanan
Medibank on Thursday confirmed that the threat actors behind the devastating cyber attack have posted another dump of data stolen from its systems on the dark web...
CyberRatings.org Announces Results from First-of-its-Kind Comparative Test on Cloud Network Firewall
AUSTIN, Texas, Dec. 1, 2022 /PRNewswire/ — CyberRatings.org, the non-profit entity dedicated to providing transparency on cybersecurity product efficacy, has completed an independent test of eight market leading security...
IBM Cloud Supply Chain Vulnerability Showcases New Threat Class
A vulnerability in IBM Cloud databases for PostgreSQL could have allowed attackers to launch a supply chain attack on cloud customers by breaching internal IBM Cloud services and disrupting...
Google TAG Warns on Emerging Heliconia Exploit Framework for RCE
Google's Threat Analysis Group (TAG) has discovered a cyberattack framework dubbed Heliconia, built to exploit zero-day and n-day vulnerabilities in Chrome, Firefox, and Microsoft Defender. It likely has connections...
Australia Passes Bill to Fine Companies up to $50 Million for Data Breaches
By: Ravie Lakshmanan
The Australian government has passed a bill that markedly increases the penalty for companies suffering from serious or repeated data breaches.
To that end, the maximum fines have...
French Electricity Provider Fined for Storing Users’ Passwords with Weak MD5 Algorithm
By: Ravie Lakshmanan
The French data protection watchdog on Tuesday fined electricity provider Électricité de France €600,000 for violating the European Union General Data Protection Regulation (GDPR) requirements.
The Commission nationale...
CyberRatings.org Revives NSS Labs Research
AUSTIN, Texas, Nov. 29, 2022
/PRNewswire/ — CyberRatings.org, the nonprofit entity dedicated to
providing transparency on cybersecurity product efficacy, has launched
The NSS Labs archive, a library of over 800 test reports,...
Critical Quarkus Flaw Threatens Cloud Developers With Easy RCE
A critical remote code-execution (RCE) bug in an open source Java virtual machine (JVM) framework threatens enterprise environments by giving attackers an easy way to compromise development teams —...
New Exploit Broker on the Scene Pays Premium for Signal App Zero-Days
Gray-market exploit brokers are alive and kicking, with the latest sign of this flourishing market coming in the form of a bidding war for Signal messaging app zero-days from...
Serum exchange rendered ‘defunct’ following the collapse of Alameda and FTX
Solana-based decentralized exchange (DEX) Project Serum has notified its community that the collapse of its backers — Alameda and FTX — has rendered it “defunct”. The team behind the...
