Security
DDoS now a strategic threat
DDoS attacks within the financial sector aren’t letting up, and finance is a threat actor’s top target.
Read more about DDoS now a strategic threat
Food delivery platform exposes customer names, addresses
GonnaOrder, a Europe-based food delivery platform, left an unprotected instance, exposing food lovers’ data to anyone willing to look.
Read more about Food delivery platform exposes customer names, addresses
Most cybersecurity certificates are just “nice to have,” but these three will help you land a job
When evaluating candidates for cybersecurity roles, managers prioritize those with experience, according to a new report.
Read more about Most cybersecurity certificates are just “nice to have,” but these three will help you land a job
Hackers pose as job seekers: opening a resume leads to ransomware
Cybercriminals are increasingly applying for jobs, posing as potential candidates. Their sole goal is to convince recruiters to open their malicious resumes.
Read more about Hackers pose as job seekers: opening a resume leads to ransomware
Hackers hit mental health clinic, names and addresses allegedly exposed
Mount Rogers Community Services has appeared on a ransomware gang’s dark web leak site, with attackers suggesting they stole multiple private details from the organization’s systems.
Read more about Hackers hit mental health clinic, names and addresses allegedly exposed
Macron proposes social media ban for under-15s after school stabbing
French President Emmanuel Macron said he would push for European Union regulation to ban social media for children under the age of 15 after a fatal stabbing at a school in eastern France, the latest such violent attack that left the country reeling.
Read more about Macron proposes social media ban for under-15s after school stabbing
40,000 security cameras found streaming without passwords or other protections
Security cameras that are supposed to protect users from dangers are actually putting users at risk, security experts warn. Forty thousand exposed internet-connected cameras have been discovered, 14,000 in the US alone.
Read more about 40,000 security cameras found streaming without passwords or other protections
Hack on Philly‘s largest school network exposes credit card data
Mastery Schools, a Philadelphia-based school network, has fallen victim to a ransomware attack that exposed a trove of sensitive data, ranging from names and Social Security numbers (SSNs) to credit card info.
Read more about Hack on Philly‘s largest school network exposes credit card data
“Oral pleasure” app potentially leaks millions of messages and GPS locations
An intimate dating app has leaked over four million private records – including exact GPS locations, sexual preferences, and explicit chats.
Read more about “Oral pleasure” app potentially leaks millions of messages and GPS locations
Network of 4,000+ fake sites found pushing phony deals on Facebook
A Milwaukee tool chest or Birkenstock sandals at half price? A massive fake marketplace scam campaign involving dozens of major brand impersonations and over 4,000 domains has been discovered. Scammers are running tons of ads on social media.
Read more about Network of 4,000+ fake sites found pushing phony deals on Facebook
Wazuh servers targeted by Mirai botnets
Potential attackers could exploit a critical flaw to remotely execute code by uploading what researchers from Akamai called an “unsanitized dictionary.”
Read more about Wazuh servers targeted by Mirai botnets
Trove of port agency’s data stolen, hackers claim
S5 Agency World, a major port agency, has allegedly been victimized by a ransomware gang. The attackers claim to have taken nearly 140 gigabytes of data.
Read more about Trove of port agency’s data stolen, hackers claim
Here’s why ignoring politics is no longer an option for cyber pros
You can’t understand cyber threats without grasping the nuances of global politics.
Read more about Here’s why ignoring politics is no longer an option for cyber pros
Texas Department of Transportation hacked, 300,000 car crash reports stolen
The Texas Department of Transportation (TxDOT) disclosed a major data breach during which nearly 300,000 crash reports containing sensitive private information were exfiltrated.
Read more about Texas Department of Transportation hacked, 300,000 car crash reports stolen
Italy cuts ties with Israeli spyware company after claims of spying on journalists and activists
Italy has terminated a contract with Israeli spyware maker Paragon, a parliamentary document showed on Monday, following allegations that the Italian government used its technology to hack critics' phones.
Read more about Italy cuts ties with Israeli spyware company after claims of spying on journalists and activists
What would break first if hackers hit US infrastructure?
A single cyberattack could knock out power, water, and emergency services across the US. Experts warn that aging tech, staff cuts, and weak defenses make it easier than ever.
Read more about What would break first if hackers hit US infrastructure?
Game cheaters getting hacked: dangerous malware controls computer, spies, and syphons crypto
Video game cheaters are under attack by Blitz, a new Windows malware distributed via backdoored game cheat packages, Unit 42, a security arm of Palo Alto Networks, has warned. Android gamers are lured into gaining an unfair advantage on computers using emulators.
Read more about Game cheaters getting hacked: dangerous malware controls computer, spies, and syphons crypto
Starlink in the White House is a security nightmare, but DOGE staff installed it anyway – media
Starlink internet services were installed in the White House despite concerns over data breaches and security risks.
Read more about Starlink in the White House is a security nightmare, but DOGE staff installed it anyway – media
Half of workers still can’t spot a phishing scam, even when they think they can
New research shows most executives and staff think they can spot a phishing scam. Most of them are wrong.
Read more about Half of workers still can’t spot a phishing scam, even when they think they can
Should you disable PowerShell and Command Prompt? Experts weigh in
Fake CAPTCHAs, malicious software update prompts or error messages, phishing emails, and other deceptive social engineering schemes increasingly rely on tricking users to run harmful commands in PowerShell and Command Prompt (CMD). Disabling them would shut down this key vulnerable point, but security experts are divided.
Read more about Should you disable PowerShell and Command Prompt? Experts weigh in
