News
-
"Crypto Vulnerability Allows Cloning of YubiKey Security Keys"YubiKey security keys can be cloned through a side-channel attack involving the exploitation of a vulnerability in a third-party cryptographic library. The attack called "Eucleak" was demonstrated by NinjaLab.
-
"Red Teaming Tool Abused for Malware Deployment"Threat actors are using MacroPack, a tool designed for red team exercises, to deploy malware. Cisco Talos researchers discovered several related Microsoft documents uploaded to VirusTotal between May and July 2024.
-
"White House Addresses BGP Vulnerabilities in New Internet Routing Security Roadmap"The White House has released a roadmap to address Internet routing security issues, specifically Border Gateway Protocol (BGP) vulnerabilities.
-
"Halliburton Confirms Data Stolen in Cyberattack"In a new update, US oil service giant Halliburton confirmed corporate data was stolen from its computer systems during an August ransomware cyberattack. The company noted that it is evaluating the nature and scope of the information.
-
"Zyxel Patches Critical Vulnerabilities in Networking Devices"Zyxel recently announced patches for multiple vulnerabilities in its networking devices, including a critical severity flaw affecting multiple access points (AP) and security router models.
-
"Rural Hospitals May Be More Vulnerable to Ransomware Attacks"According to a new study led by the University of Minnesota School of Public Health, although ransomware attacks are more likely in urban areas, operational disruptions may have a greater impact on financially vulnerable rural hospitals and their patie
-
"FBI Warns Crypto Firms of Aggressive Social Engineering Attacks"The Federal Bureau of Investigation (FBI) warns of North Korean hacking groups performing sophisticated social engineering attacks against cryptocurrency companies and their employees to launch malware aimed at stealing cryptocurrency assets.
-
"Rapid Growth of Password Reset Attacks Boosts Fraud and Account Takeovers"According to the annual "LexisNexis Risk Solutions Cybercrime Report," one in four password reset attempts from desktop browsers are fraud. The fraud attempts are part of the rise in password reset attacks.
-
"CISA Launches New Portal to Improve Cyber Reporting"As part of its ongoing effort to improve cyber incident reporting, the US Cybersecurity and Infrastructure Security Agency (CISA) moved its cyber incident reporting form to the new CISA Services Portal.
-
"Cicada3301 Ransomware Group Emerges From the Ashes of ALPHV"Researchers at Truesec have discovered new double extortion ransomware with links to the "ALPHV/BlackCat" variant and the "Brutus" botnet.
-
"Active Ransomware Groups Surge by 56% in 2024"A new Searchlight Cyber report reveals a 56 percent rise in ransomware gangs in the first half of 2024. In the first half of 2024, researchers observed 73 ransomware groups operating compared to 46 during the same period in 2023.
-
"UB Researchers Find Vulnerabilities in Safety of AI in Driverless Cars"Ongoing research conducted by the University of Buffalo looks into how vulnerable Artificial Intelligence (AI) systems in self-driving vehicles are to an attack. Their findings suggest that malicious actors may cause these systems to fail.