A data breach in Maine, believed to be the work of the ransomware group Clop, has exposed the personal information of up to 1.3 million individuals, including names, dates of birth, Social Security numbers, driver’s licenses, and other identification numbers, increasing the risk of identity theft and fraud.
A group of CPU buyers is suing Intel for allegedly selling processors with a side-channel vulnerability called Downfall, claiming that Intel knew about the flaw since 2018 but failed to address it, potentially putting sensitive data at risk.
SysAid, an IT automation and asset management software provider, warns customers of a critical vulnerability that enables unauthorized access and control over affected systems, exploited by the hacker group Lace Tempest to deploy malware and inject the GraceWire trojan.
ReliaQuest’s Threat Spotlight Report reveals a significant increase in QR code phishing incidents, as cyber-criminals exploit personal devices without enterprise protection, posing risks to individuals and organizations.
Kaspersky’s report provides valuable intelligence data on Asian APT groups, highlighting their techniques and tactics and emphasizing the need for preparedness in countering their activities.
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a high-severity vulnerability in the Service Location Protocol (SLP) that allows unauthenticated, remote attackers to conduct a denial-of-service (DoS) attack with a significant amplification factor.
