News
-
"IoT Vulnerability Disclosures Up 57% in Six Months, Claroty Reveals"Security researchers at Claroty have discovered that the number of vulnerability disclosures impacting extended internet of things (XIoT) devices increased by 57% in the first half of 2022 compared to the previous six months. The researchers also…
-
"IBM Patches Severe Vulnerabilities in MQ Messaging Middleware"IBM recently announced patches for high-severity vulnerabilities in IBM MQ, warning that attackers could exploit them to bypass security restrictions or access sensitive information. Messaging and queuing middleware, IBM MQ provides enterprise-…
-
"Plex Confirms Database Breach, Data Theft"Popular streaming media platform Plex is currently scrambling to reset user passwords after a database hack that included the theft of emails, usernames, and encrypted passwords. Plex is a California company that runs a streaming media service and…
-
"US Healthcare Sector Breaches 342m+ Records Since 2009"Security researchers at Comparitech discovered that healthcare organizations (HCOs) in the US have suffered nearly 5000 publicly recorded data breaches since 2009, spilling hundreds of millions of records in the process. The researchers analyzed…
-
"Facebook Bug Causes Users’ Feeds to Be Spammed"Facebook recently suffered a bug, and Meta blamed the problem on a "configuration change." Meta noted that they resolved the issue as quickly as possible for everyone impacted and apologized for any inconvenience. The technical glitch meant that…
-
"This Company Paid a Ransom Demand. Hackers Leaked Its Data Anyway"A ransomware victim paid to regain access to their network, but the cybercriminals did not keep their end of the bargain. According to cybersecurity researchers at Barracuda Networks, the real-life incident occurred in August 2021, when hackers from the…
-
"One-Third of Popular PyPI Packages Mistakenly Flagged as Malicious"Researchers discovered that the scanners tasked with filtering out malicious contributions to packages distributed via the popular open-source code repository Python Package Index (PyPI) generate many false alerts. According to Chainguard's analysis of…
-
"French Hospital Hit by $10M Ransomware Attack, Sends Patients Elsewhere"The Center Hospitalier Sud Francilien (CHSF), a 1,000-bed hospital located 28 kilometers from the center of Paris, recently faced a cyberattack forcing the medical center to refer patients to other facilities and postpone surgery appointments. Since CHSF…
-
"Researchers Warn of AiTM Attack Targeting Google G-Suite Enterprise Users"A large-scale adversary-in-the-middle (AiTM) phishing campaign targeting enterprise users of Microsoft email services has also targeted Google Workspace users. According to Zscaler researchers Sudeep Singh and Jagadeeswar Ramanukolanu, this campaign…
-
SoS Musings #64 - Steganography: An Attack Hiding in Plain SightSoS Musings #64 - Steganography: An Attack Hiding in Plain Sight
-
Spotlight on Lablet Research #33 - Side-Channel Attack ResilienceSpotlight on Lablet Research #33 - Side-Channel Attack Resilience
-
Cyber Scene #71 - Sizing up the Cloudburst, Above and BelowCyber Scene #71 - Sizing up the Cloudburst, Above and Below