Beware of Phish: American Airlines, Revolut Data Breaches Expose Customer Info
Call it breach week: Hard on the heels of the Uber bombshell, American Airlines said that it suffered a data breach after a successful phishing attempt hooked a few...
Most common SAP vulnerabilities attackers try to exploit
Unpatched vulnerabilities, common misconfigurations and hidden flaws in custom code continue to make enterprise SAP applications a target rich environment for attackers at a time when threats like ransomware...
Palo Alto adds software composition analysis to Prisma Cloud to boost open-source security
Palo Alto Networks has added a new software composition analysis (SCA) solution to Prisma Cloud to help developers safely use open-source software components. The vendor has also introduced a...
Hackers take over CoinDCX Twitter account, promote fake XRP ads
The official Twitter account of India-based crypto exchange CoinDCX has been hacked and used by the exploiters to post fake Ripple (XRP) promos partnered with phishing links in an...
$160M stolen from crypto market maker Wintermute
Wintermute, a cryptocurrency market maker based in the United Kingdom, became the latest victim of decentralized finance (DeFi) hacks, losing approximately $160 million, according to Evgeny Gaevoy, the company’s founder...
Uber: Lapsus$ Targeted External Contractor With MFA Bombing Attack
Uber has attributed last week's massive breach at Uber to the notorious Lapsus$ hacking group and released additional details on the attack. Researchers say the incident has highlighted the risks...
ETHW confirms contract vulnerability exploit, dismisses replay attack claims
Post-Ethereum Merge proof-of-work (PoW) chain ETHW has moved to quell claims that it had suffered an on-chain replay attack over the weekend.Smart contract auditing firm BlockSec flagged what it...
Profanity tool vulnerability drains $3.3M despite 1Inch warning
Decentralized exchange aggregator 1inch Network issued a warning to crypto investors after identifying a vulnerability in Profanity, an Ethereum (ETH) vanity address generating tool. Despite the proactive warning, apparently,...
Attacker Apparently Didn’t Have to Breach a Single System to Pwn Uber
Questions are swirling around Uber's internal security practices after an 18-year-old hacker gained what appears to have been complete administrative access to critical parts of the company's IT infrastructure...
DDoS Attack Against Eastern Europe Target Sets New Record
Researchers at Akamai are reporting a distributed denial-of-service (DDoS) attack in Eastern Europe, which set records by peaking at 704.8 Mpps as the cyberattackers tried to cripple the organization's business operations.
The attackers...
