Latest Cybernews
Ransomware Attack Disrupts Blue Yonder’s Supply Chain Services
Blue Yonder, a supply chain software provider, is dealing with a ransomware attack that has affected its services for major clients in the UK and US, including grocery chains and Starbucks, while the company works with cybersecurity experts to restore operations.
View full story…
UK Establishes AI Security Lab Amid Escalating Russian Cyber Attacks
The UK government is launching the Laboratory for AI Security Research to enhance cybersecurity measures in response to intensified Russian cyber attacks aimed at undermining support for Ukraine.
View full story…
New York Settles $11.3 Million With GEICO and Travelers Over Cybersecurity Breaches
New York has reached an $11.3 million settlement with GEICO and Travelers after cybersecurity failures compromised the personal information of over 120,000 residents, leading to fraudulent unemployment claims during the pandemic.
View full story…
Meta Dismantles Over 2 Million Accounts Linked to Online Fraud
Meta has removed more than two million accounts associated with “pig butchering” scams on Facebook and Instagram as part of its efforts to combat online financial fraud.
View full story…
Supply Chain Attack Targets npm Package Lottie-Player
A recent supply chain attack on the npm package @lottiefiles/lottie-player exploited compromised developer access tokens to publish malicious versions, leading to unauthorized withdrawals from users’ crypto wallets.
View full story…
Latest Cybernews
Surge in Ransomware Attacks in Q3 2024 Driven by New Cybercriminal Groups
The ransomware landscape in Q3 2024 saw a significant increase in successful attacks, with RansomHub emerging as the most active group and a notable rise in incidents linked to vulnerabilities in VPNs and weak passwords.
View full story…
Securing Software Supply Chains: The Need for Independent Validation
Organizations must adopt robust frameworks for third-party risk management to mitigate the rising threats of supply chain attacks, emphasizing the importance of independently validating the security of commercial software.
View full story…
Black Friday Scams Surge as Cybercriminals Exploit Holiday Shopping Season
A staggering 77% of Black Friday-themed spam emails in 2024 were identified as scams, with cybercriminals targeting consumers through sophisticated phishing tactics and impersonation of trusted brands, leading to projected losses of $11 billion in the US alone.
View full story…
Manufacturing Sector Faces Surge in Advanced Email Attacks
The manufacturing sector has seen a significant rise in advanced email attacks, including phishing and business email compromise, with notable financial losses reported due to these sophisticated cyber threats.
View full story…
Latest Cybernews
Emergence Of New Linux Backdoors WolfsBane And FireWood Linked To Gelsemium APT Group
Recent discoveries have identified two new Linux backdoors, WolfsBane and FireWood, attributed to the Gelsemium APT group, marking a significant shift in their operational strategy towards targeting Linux systems.
View full story…
BianLian Ransomware Group Shifts to Exfiltration-Based Extortion
The BianLian ransomware group, likely based in Russia, has transitioned from traditional ransomware attacks to exfiltration-based extortion, targeting critical national infrastructure across various sectors globally.
View full story…
Cross-Site Scripting Named Most Critical Software Vulnerability of 2024
Cross-Site Scripting (XSS) has been identified as the most dangerous software vulnerability of 2024, according to the annual Common Weakness Enumeration (CWE) list compiled by MITRE and CISA, highlighting the ongoing risks associated with this exploit.
View full story…