Recently the operator of an infamous service that allowed users to launch distributed denial-of-service (DDoS) attacks was sentenced to 24 months in prison. Matthew Gatrel, 33, of St. Charles, Illinois, was convicted in September 2021 on three counts of…

A leading US healthcare provider, Kaiser Permanente, has warned that as many as 70,000 individuals may have had personally identifiable information (PII) stolen by a malicious third party.  A data breach notice sent to customers earlier this month…

Researchers with Palo Alto Networks Unit 42 report a rise in the activity of the Hello XD ransomware, whose operators are now using an updated sample with stronger encryption. The Hello XD ransomware family, which was first observed in November 2021, was…

The Drupal security team has recently released an advisory to call attention to serious vulnerabilities in a third-party library and warned that hackers can exploit the bugs to hijack Drupal-powered websites remotely.  The security team stated that…

Lyceum, an Iranian Advanced Persistent Threat (APT) group, has switched to deploying a new custom .NET-based backdoor in recent attacks targeting the Middle East. According to Avinash Kumar and Niraj Shivtarkar of Zscaler ThreatLabz, the .NET-based DNS…

Security researchers at Microsoft discovered a recently patched Confluence Server vulnerability is being exploited by multiple cybercrime and state-sponsored threat groups. The security hole, tracked as CVE-2022-26134, can be exploited by an…

Researchers uncovered a Denial-of-Service (DoS) vulnerability in Envoy Proxy that allows attackers to crash the proxy server. According to JFrog Security Research, which revealed the vulnerability, this could result in performance degradation or the…

Gallium, a Chinese Advanced Persistent Threat (APT) group, has been spotted deploying a previously unknown Remote Access Trojan (RAT) in its espionage attacks targeting companies in Southeast Asia, Europe, and Africa. According to new research published…

A group of academic researchers from the University of Hamburg in Germany has recently discovered that mobile devices leak identifying information about their owners via Wi-Fi probe requests.  The researchers noted that mobile devices use these…

Tesla released an upgrade last year that made it easier to start its vehicles after unlocking them with their NFC key cards. A researcher has now demonstrated how the function may be used to steal cars. For years, drivers who used their Tesla NFC key…

Security researchers at Confiant have discovered that cybercriminals likely operating out of China are distributing backdoored versions of iOS and Android Web3 wallets in an effort to steal users’ seed phrase.  According to the researchers, the…

Netacea has published new research on how businesses are dealing with bot attacks, revealing one critical area where companies are failing to combat such attacks. According to Netacea's report, bots have been going undetected for an average of 16 weeks,…