Security
Half of workers still can’t spot a phishing scam, even when they think they can
New research shows most executives and staff think they can spot a phishing scam. Most of them are wrong.
Read more about Half of workers still can’t spot a phishing scam, even when they think they can
Should you disable PowerShell and Command Prompt? Experts weigh in
Fake CAPTCHAs, malicious software update prompts or error messages, phishing emails, and other deceptive social engineering schemes increasingly rely on tricking users to run harmful commands in PowerShell and Command Prompt (CMD). Disabling them would shut down this key vulnerable point, but security experts are divided.
Read more about Should you disable PowerShell and Command Prompt? Experts weigh in
Akamai says it's time to ditch corporate VPN: plug holes in firewalls
As breaches related to corporate VPN flaws skyrocket, security vendors are increasingly urging to drop VPNs altogether. Instead of drilling a hole in firewalls, they suggest adopting outbound-only tunnels offered by Zero Trust Network Access (ZTNA) solutions.
Read more about Akamai says it's time to ditch corporate VPN: plug holes in firewalls
35,000 solar power systems found exposed online, targeted by hackers
A massive fleet of vulnerable solar inverters has been discovered online. Almost 35,000 solar power devices have internet-exposed management interfaces and can be targeted using a range of known vulnerabilities.
Read more about 35,000 solar power systems found exposed online, targeted by hackers
Handling digital evidence: a guide for civilian analysts
When I'm not writing articles, I do a lot of freelance OSINT work. While the majority of that work involves de-anonymizing predators or tracking missing persons, this realm of OSINT contains a vital, inalienable component: handling digital evidence.
Read more about Handling digital evidence: a guide for civilian analysts
IT pros weigh in on AI’s role in coding: doing more of what they hate the most
Instead of writing code, programmers complain they now have to proof one written by artificial intelligence (AI). As the New York Times aptly put it, many feel like bystanders to their own job. I decided to run a quick vox populi to see what coders actually think about the so-called vibe coding.
Read more about IT pros weigh in on AI’s role in coding: doing more of what they hate the most
White House releases new cybersecurity directives to defend nation's digital infrastructure
The Trump administration on Friday released an upgraded cybersecurity executive with nearly a dozen directives aiming to beef up national security, from the adoption of AI and post-quantum cryptology to IoT labeling and defending against nation-state threats.
Read more about White House releases new cybersecurity directives to defend nation's digital infrastructure
Notorious hackers return as BreachForums reboots under new domain
After a mysterious takedown in April, one of the deep web’s most notorious hacking forums appears to be making a comeback with help from some familiar names.
Read more about Notorious hackers return as BreachForums reboots under new domain
France estimates GDPR’s cyber benefits to be worth 1 billion euros, or one Meta fine
The French cyber watchdog has analyzed GDPR’s cybersecurity benefits and found them to be between 585 million and 1.4 billion euros at the EU level, in five years. The sum is comparable to a single 1.2 billion euro fine issued to Meta for GDPR violations.
Read more about France estimates GDPR’s cyber benefits to be worth 1 billion euros, or one Meta fine
Bad actors targeting addicts in latest search scams, FTC warns
Those struggling with substance abuse issues may be in for a nasty surprise when searching for clinics.
Read more about Bad actors targeting addicts in latest search scams, FTC warns
FBI urges users to check their cheap Android devices from China: millions infected with BadBox
Despite multiple take-down attempts, millions of consumer Android devices are running BadBox 2.0 malware, which comes preinstalled on cheap off-brand devices produced in China. The FBI wants you to check your gadgets for any suspicious activity.
Read more about FBI urges users to check their cheap Android devices from China: millions infected with BadBox
Who is the gang behind Marks & Spencer and Harrods hacks?
Scattered Spider, the cybercrime gang behind the recent Marks & Spencer hack, has been sharpening its phishing campaigns to attack big businesses.
Read more about Who is the gang behind Marks & Spencer and Harrods hacks?
Largest ever data leak exposes over 4 billion user records
In what’s likely the biggest data leak to ever hit China, billions of documents with financial data, WeChat and Alipay details, as well as other sensitive personal data, were exposed to the public.
Read more about Largest ever data leak exposes over 4 billion user records
Ukraine claims it stole 4GB of secret data from Russian aviation giant Tupolev
Ukraine’s Main Intelligence Directorate (HUR) claims it carried out a successful cyberattack on Tupolev, a leading Russian company developing strategic bombers for the military.
Read more about Ukraine claims it stole 4GB of secret data from Russian aviation giant Tupolev
Hackers abuse modified Salesforce app to steal data, extort companies, Google says
Hackers are gaining access to Salesforce cloud services and extorting data from US and EU companies by vishing employees to install a modified Salesforce-related app, according to new research by Googl'e Mandiant. .
Read more about Hackers abuse modified Salesforce app to steal data, extort companies, Google says
CEOs now learning self-defence to protect against cyber threats
It’s unsurprising that executives are increasingly targeted by cybercriminals. What is rather unusual is that they’re now learning martial arts to protect themselves.
Read more about CEOs now learning self-defence to protect against cyber threats
Hacker claims millions affected in Claro, Movistar breach — Claro calls it fake
A hacker has claimed to be sitting on tens of millions of stolen telecom records from Claro and Movistar. Claro rejects breach claims.
Read more about Hacker claims millions affected in Claro, Movistar breach — Claro calls it fake
Hackers can turn Chrome into spyware using a few simple commands
Hackers can abuse Google Chrome and other Chromium browsers to continuously take screenshots, spy through the camera, and record microphone audio.
Read more about Hackers can turn Chrome into spyware using a few simple commands
Hackers claim massive data breach at American Hospital Dubai
A ransomware gang has claimed that it stole 450 million records from patients of one of Dubai’s most prestigious hospitals, and they’re threatening to leak them.
Read more about Hackers claim massive data breach at American Hospital Dubai
Cyprus Airways’ customer data, systems breached, hackers claim
Cyprus’s flag carrier’s systems have allegedly been breached, with attackers getting extensive information on the airline's passengers, including their names, emails, and travel histories.
Read more about Cyprus Airways’ customer data, systems breached, hackers claim
