The US Cybersecurity and Infrastructure Security Agency (CISA) has added two Cisco and four Gigabyte product flaws to its Known Exploited Vulnerabilities catalog.  Only one of the Gigabyte vulnerabilities was previously mentioned as being involved…

Apple recently announced the official launch of macOS Ventura 13, the 19th major release of its desktop operating system.  In addition to several new features, macOS Ventura 13 brings patches for more than 100 vulnerabilities.  Apple noted that…

The Ukrainian authorities are warning of a new ransomware campaign against organizations in the war-torn country.  The Ukrainian CERT said it had discovered phishing emails spoofed to appear as if sent from the “Press Service of the General Staff of…

Two flaws in Atlassian Jira Align, an agile planning Software-as-a-Service (SaaS) tool, could allow service users to become application administrators and attack the Atlassian service. According to the cybersecurity services firm Bishop Fox, the…

Northwave conducted scientific research on the psychological effects of a ransomware crisis on businesses and individuals. The findings reveal the lasting effects of a ransomware crisis on all those impacted. It also demonstrates how IT and security…

The Hive ransomware gang has begun leaking data after claiming responsibility for the Tata Power data breach. Tata Power, India's largest power generation company, announced on October 14 that it had been the victim of a cyber attack. The company…

Guardio Labs researchers have discovered a new malvertising campaign that promotes Google Chrome extensions that hijack searches and insert affiliate links into webpages. The analysts named the campaign "Dormant Colors" because all of these extensions…

SideWinder, a prolific nation-state actor best known for targeting Pakistani military entities, compromised the official website of the National Electric Power Regulatory Authority (NEPRA) in order to deliver WarHawk, a tailored malware. According to…

Confidential computing focuses on potentially game-changing technology regarding data security. Data remains encrypted in confidential computing not only at rest and in transit, but also in use, thus enabling analytics and Machine Learning (ML) to be…

The UK's data protection regulator fined a British construction company around $5 million after a ransomware group accessed sensitive data on 113,000 employees. According to the Information Commissioner's Office (ICO), Interserve Group failed to…

In addition to providing high-speed internet connectivity to the most remote corners of the globe, the Starlink network's over 3,000 satellites have the potential to do more, such as replace the two dozen satellites that power the Global Positioning…

The White House called a meeting with representatives from the private sector, technology associations, and government to discuss the creation of an Internet of Things (IoT) security label. The label would be similar to the Energy Star label, a joint…