Researchers from Aim Labs have discovered a zero-click vulnerability in Microsoft 365 Copilot, known as ‘EchoLeak,’ which allows attackers to exfiltrate sensitive corporate data through a single malicious email without user interaction.
A cybersecurity incident revealed that at least four European journalists, including Italian bureau chief Ciro Pellegrino, were infected with Graphite spyware through a sophisticated zero-click iMessage attack exploiting a critical iOS vulnerability.
Ransomware groups, including Play and DragonForce, are exploiting critical vulnerabilities in the SimpleHelp Remote Monitoring and Management tool, particularly CVE-2024-57727, to gain unauthorized access to sensitive systems, impacting US utility billing providers and managed service providers.
Former leaders of key cybersecurity agencies in the US and UK advocate for a standardized naming system for cyber threat actors to improve clarity and response in the field.
On-device AI technology processes data locally on devices, significantly reducing the risk of data breaches and unauthorized access while empowering users with greater control over their personal information.
US legislators have introduced the bipartisan Healthcare Cybersecurity Bill, spearheaded by Congressman Jason Crow and Congressman Brian Fitzpatrick, to enhance federal protections against the rising threat of healthcare data breaches.
