Amnesty International Uncovers Use of Spyware Technology in Indonesia
Amnesty International reveals Indonesian government bodies using spyware technology from Israeli-linked firms, raising concerns about human rights violations.
View full story…
Dazz Enhances Unified Remediation Platform with AI-Powered Automated Code-Fix Suggestions
Dazz has upgraded its Unified Remediation Platform with new capabilities, including automated code-fix suggestions for container vulnerabilities and AI-driven remediation guidance, streamlining the remediation process for security and development teams.
View full story…
Critical GitLab Vulnerability CVE-2023-7028 Actively Exploited by Attackers
A critical security vulnerability in GitLab, known as CVE-2023-7028, is actively exploited by attackers to hijack user accounts by redirecting password reset notifications to unauthorized email addresses.
View full story…
Latest Cybernews
Ukrainian National Sentenced to 13 Years for REvil Ransomware Attacks
Yaroslav Vasinskyi, also known as Rabotnik, sentenced to 13 years in prison for involvement in over 2,500 ransomware attacks generating $700 million in profits.
View full story…
Microsoft Discovers Vulnerability Pattern in Popular Android Apps
A vulnerability pattern in popular Android applications discovered by Microsoft allows malicious apps to manipulate files in the app’s home directory through path traversal, potentially leading to arbitrary code execution and token theft.
View full story…
Sweden Faces Surge in DDoS Attacks Amid NATO Bid
Politically motivated hacker groups target Sweden with over 2000 simultaneous attacks, highlighting cybersecurity vulnerabilities.
View full story…
Dropbox Sign Data Breach Exposes Customer Information
Dropbox Sign, formerly known as HelloSign, experienced a security breach that compromised customer data, including email addresses, usernames, phone numbers, hashed passwords, and API keys.
View full story…
Latest Cybernews
Significant Increase in Breaches Driven by Vulnerabilities in MOVEit Software, Social Engineering, and Patch Failures
Ransomware actors exploit zero-day vulnerabilities in MOVEit software, leading to a surge in breaches across various sectors.
View full story…
Cobalt’s 2024 State of Pentesting Report Reveals Cybersecurity Industry Challenges
Cobalt’s report highlights a 21% increase in findings per pentest engagement year-over-year, emphasizing the critical need for talent acquisition, caution in AI integration, and the proactive use of pentesting.
View full story…
Ransomware Groups LockBit, Black Basta, and Play Dominate Q1 2024 Activity
LockBit, Black Basta, and Play were the most active ransomware groups in Q1 2024, with Black Basta experiencing a significant 41% increase in activity.
View full story…
Report Reveals Growing Financial and Reputational Costs of Cyber-Attacks
Survey of IT and security professionals shows increasing financial losses and reputational damage due to cyber incidents, with cloud account compromise and phishing attacks on the rise.
View full story…
Ransomware Incidents in US Lead to 355 Lawsuits in 2023
Ransomware incidents in the US in 2023 resulted in 355 lawsuits, with data breaches being the primary reason for legal action.
View full story…
Ransomware Attack on Change Healthcare Leads to $22 Million Payment and $872 Million in Costs for UnitedHealth Group
Hackers gain access to Citrix portal using compromised credentials, leading to ransomware attack and significant financial consequences for UnitedHealth Group.
View full story…