News
-
"Tesla Hacked, 24 Zero-Days Demoed at Pwn2Own Automotive 2024"Security researchers hacked a Tesla Modem and collected awards of $722,500 on the first day of Pwn2Own Automotive 2024 for three bug collisions and 24 unique zero-day exploits.
-
"Chrome 121 Patches 17 Vulnerabilities"Google recently announced the promotion of Chrome 121 to the stable channel with patches for 17 vulnerabilities, including 11 reported by external researchers.
-
"340,000 Jason’s Deli Customers Potentially Impacted by Credential Stuffing Attack"Restaurant chain Jason’s Deli just recently started informing customers that their user accounts and personal information might have been compromised in credential stuffing attacks.
-
"New Research Combats Burgeoning Threat of Deepfake Audio"A new study by three UC Berkeley School of Information students and alums aims to make it easier to determine the authenticity of an audio clip as deepfakes and doctored audio have become more common.
-
"Researchers From Around the World to Improve Security of Smart Devices — Remotely"A National Science Foundation (NSF) grant has been awarded in support of Northeastern University professor David Choffnes and other computer scientists exploring the vulnerabilities of Internet of Things (IoT) devices as part of the "Security and Priva
-
"BianLian Ransomware Group Shifts Focus to US, European Healthcare and Manufacturing Industries"A new report released by Palo Alto Networks' Unit 42 delves into how the BianLian ransomware group operates as it evolves to focus primarily on the healthcare and manufacturing sectors, as well as the US and Europe.
-
"Thirty Percent More Cyberattacks in 2023"According to Check Point Research's annual review, organizations faced a significant increase in cyberattacks in 2023. Specifically, one out of every ten companies suffered a cyberattack last year, which was 33 percent higher than in 2022.
-
"Malicious NPM Packages Exfiltrate Hundreds of Developer SSH Keys via GitHub"Two malicious packages on the NPM package registry use GitHub to store Base64-encrypted SSH keys stolen from developer systems. One module was downloaded 412 times, and the other was downloaded 1,281 times before being removed by the NPM maintainers.
-
"Black Basta Gang Claims the Hack of the UK Water Utility Southern Water"The Black Basta ransomware gang says it hacked Southern Water, a major player in the UK's water industry.
-
"Why Cyberattacks Must Not Be Kept Secret"Laurie Mercer, a security architect at HackerOne, emphasizes that no company is invulnerable to cyberattacks. However, when an attack occurs, many companies continue to stay silent.
-
"Australia Sanctions Russian Hacker Behind Medibank Breach"The Australian government has publicly named Aleksandr Ermakov, 33, a Russian cybercriminal, as responsible for the Medibank data breach, which affected 9.7 million people.
-
"NPM Registry Users Download 2.1B Deprecated Packages Weekly, Researchers Say"Researchers from Aqua Security's Team Nautilus conducted a statistical analysis of the top 50,000 most downloaded packages in the NPM registry, revealing that users download deprecated packages an estimated 2.1 billion times per week.