Recent data breaches have prompted changes to Australia's cybersecurity and data protection policies, with the most recent development appearing to be the formation of a cyber task force set with hacking back and actively pursuing cybercriminals. As…

The European Parliament website was hit with a sophisticated cyberattack that disrupted its services moments after members voted to designate Russia as a state sponsor of terrorism. According to Dita Charanzová, Czech MEP and Parliament vice president in…

According to new research from ESET, the Advanced Persistent Threat (APT) group Bahamut has been using Virtual Private Network (VPN) apps as a new carrier for dangerous malware targeting Android phones. Threat actors could hire the Bahamut APT group to…

An international police operation has taken down an online spoofing service that helped cybercriminals impersonate trusted corporations and steal over $120 million from victims. iSpoof, which now displays a message stating that the FBI and US Secret…

The Idaho secretary of state's office has become the fourth in the country to implement a vulnerability disclosure policy that allows white-hat hackers to legally probe the office's election-related websites for flaws. Under the new policy, security…

Many Android smartphones have been found to be vulnerable to a number of high-severity security flaws that have yet to be addressed, despite Arm releasing fixes. The unpatched flaws identified by Google Project Zero (GPZ) affect Android phones equipped…

On November 16, an actor advertised a 2022 database of 487 million WhatsApp user mobile numbers on a well-known hacking community forum. The data set is said to contain WhatsApp user data from 84 different countries. According to the threat actor, there…

An Interpol operation resulted in the seizure of more than $129 million in "virtual assets" and the arrest of nearly 1,000 suspects. The operation comes at a critical juncture in international cooperation to combat online financial crime, particularly…

According to a Daon survey report, 92 percent of consumers believe that cybersecurity threats will continue to outpace cybersecurity technology, and 91 percent are willing to take additional security measures to prove their identity on an ongoing basis…

Cybercriminal organizations are increasingly using Aurora, an information stealer built on the Go open-source programming language, to target data from browsers, cryptocurrency wallets, and local systems. Sekoia's research team discovered at least seven…

More than 1,600 publicly available Docker Hub images conceal malicious behavior, such as cryptocurrency miners, embedded secrets that can be used as backdoors, Domain Name System (DNS) hijackers, and website redirectors. Docker Hub is a cloud-based…

An examination of firmware images from Dell, HP, and Lenovo devices revealed the presence of outdated versions of the OpenSSL cryptographic library, highlighting a supply chain risk. The EFI Development Kit (EDK) is an open-source implementation of the…