News
-
"Stealthy 'Sedexp' Linux Malware Evaded Detection for Two Years"Since 2022, a stealthy Linux malware called "sedexp" has evaded detection using a persistence technique not yet included in the MITRE ATT&CK framework.
-
"Iranian Hackers Targeted WhatsApp Accounts of Staffers in Biden, Trump Administrations, Meta Says"Meta Platforms has announced that the same Iranian hacking group believed to have recently targeted both the Democratic and Republican presidential campaigns tried to compromise the WhatsApp accounts of staffers in the administrations of President Joe
-
"American Radio Relay League Paid $1 Million to Ransomware Gang"The national association for amateur radio American Radio Relay League (ARRL) recently revealed that it paid out a $1 million ransom after a disruptive May 2024 ransomware attack.
-
"500k Impacted by Texas Dow Employees Credit Union Data Breach"Texas Dow Employees Credit Union (TDECU) started notifying over 500,000 individuals that their personal information was compromised in the MOVEit campaign last year.
-
"Toward a Code-Breaking Quantum Computer"MIT researchers have proposed a way to make a smaller, more noise-tolerant quantum factoring circuit for cryptography.
-
"CyLab Researchers Win Two 'Test of Time' Awards at USENIX 2024"The 33rd USENIX Security Symposium awarded CyLab researchers Matt Fredrikson and Bryan Parno prestigious "Test of Time" awards for papers that have significantly impacted their fields.
-
"Qilin Caught Red-Handed Stealing Credentials in Google Chrome"After breaching a target's network, "Qilin," the ransomware group suspected to have been behind the recent Synnovis attack, stole credentials stored in Google Chrome.
-
"New macOS Malware TodoSwift Linked to North Korean Hacking Groups"Researchers have discovered a new macOS malware strain called "TodoSwift" that resembles the known malicious software used by North Korean hacking groups.
-
"Oil Giant Halliburton Confirms Cyber Incident, Details Scarce"US oil giant Halliburton recently confirmed its computer systems were hit by a cyberattack that continues to affect operations at its Houston, Texas, offices.
-
"GenAI Models Are Easily Compromised"Lakera reports that 95 percent of cybersecurity experts have low confidence in Generative Artificial Intelligence (GenAI) security. In addition, red team data suggests that anyone can easily hack GenAI models.
-
"NSA Joins Allies in Releasing Best Practices for Event Logging"The National Security Agency (NSA), together with the Australian Signals Directorate's Australian Cyber Security Centre (ASD ACSC) and international co-authors, has released a Cybersecurity Information Sheet (CSI) titled "Best Practices for Event Loggi
-
"Microsoft Copilot Studio Exploit Leaks Sensitive Cloud Data"Researchers at Tenable have exploited a vulnerability in Microsoft's Copilot Studio tool to make external HTTP requests that could access sensitive information on internal services within a cloud environment, potentially affecting multiple tenants.