Barings Law Leads Class Action Against Google and Microsoft Over Data Misuse
Barings Law is representing 15,000 claimants in a class action lawsuit against Google and Microsoft, accusing them of unauthorized use of personal data to train AI models without user consent.
View full story…
CISA Reports Significant Improvements in Cybersecurity for Critical Infrastructure
Critical national infrastructure providers have achieved notable reductions in remediation times for known exploited vulnerabilities, with a 50% decrease for critical-severity issues and a 25% decrease for high-severity issues since 2022, despite a rising threat landscape marked by increased ransomware attacks.
View full story…
Latest Cybernews
Growing Cyber Inequity Intensified by Complex Landscape
The World Economic Forum report highlights that the increasing complexity of the cyber landscape exacerbates disparities between developed and emerging economies, with significant impacts on organizational resilience and a growing cyber skills gap.
View full story…
Microsoft Sues Foreign Threat Group Over AI Exploitation
Microsoft has initiated legal action against an unidentified foreign threat group for exploiting its AI technologies to create harmful content and offering “hacking-as-a-service” to other criminals.
View full story…
Russian Cyber-Espionage Campaign Targets Kazakhstan’s Diplomatic Entities
A cyber-espionage campaign linked to the Russia-aligned group UAC-0063 has been using weaponized Microsoft Word documents to deploy advanced malware, including HatVibe and CherrySpy, against diplomatic targets in Kazakhstan and Central Asia.
View full story…
FunkSec Emerges as a Notorious AI-Driven Ransomware Group
FunkSec, a newly formed ransomware-as-a-service group, has quickly gained notoriety for its aggressive tactics and AI-assisted operations, claiming over 85 victims in December 2024 alone.
View full story…
Latest Cybernews
Medusind Inc Data Breach Exposes Personal Information of Over 360,000 Individuals
Medusind Inc, a Miami-based medical billing company, has reported a significant data breach affecting over 360,934 individuals, compromising their personal, financial, and medical information amid growing cybersecurity challenges in the healthcare sector.
View full story…
LDAPNightmare Exploit Targets Microsoft Vulnerabilities
A deceptive proof-of-concept exploit named LDAPNightmare has emerged, targeting critical Microsoft vulnerabilities CVE-2024-49112 and CVE-2024-49113, and is being weaponized by threat actors to distribute information-stealing malware through fraudulent repositories.
View full story…
Ransomware Attack Disrupts Slovak Republic’s Cadastral Systems
A significant ransomware attack attributed to the group “Kapor” has severely impacted the information systems of the Office of Geodesy, Cartography, and Cadastre of the Slovak Republic, leading to service disruptions and raising concerns about data security.
View full story…
CrowdStrike Uncovers Phishing Campaign Targeting Job Seekers
CrowdStrike has identified a sophisticated phishing campaign where cybercriminals impersonate recruiters to deceive job seekers, particularly developers, into downloading malware disguised as a recruitment application.
View full story…
Latest Cybernews
PowerSchool Data Breach Exposes Millions of Students’ Personal Information
PowerSchool, a leading provider of cloud-based K-12 software, suffered a significant cybersecurity breach that compromised the personal data of millions of students and teachers across North America, prompting concerns about data security in educational institutions.
View full story…
Chinese Cyber Espionage Group MirrorFace Targets Japan’s National Security
A series of sophisticated spear-phishing attacks orchestrated by the Chinese threat actor MirrorFace has targeted government bodies, think tanks, and media outlets in Japan from December 2019 to July 2023, employing advanced malware and tactics to steal sensitive information.
View full story…