Marriott Ordered to Pay $52 Million for Data Breach Settlement
Marriott International has been mandated to pay a $52 million penalty due to significant data breaches affecting over 131 million customers, as part of a multistate settlement involving 50 states and the District of Columbia.
View full story…
Surge in US Supply Chain Attacks in Q3 2024 Highlights Cybersecurity Vulnerabilities
In Q3 2024, the United States saw a 203% increase in supply chain attacks, affecting nearly one million victims and prompting concerns over third-party vendor security amid a total of 672 data compromises.
View full story…
Mongolian Skimmer Campaign Utilizes Unicode Obfuscation Techniques
Cybersecurity researchers have identified the Mongolian Skimmer campaign, which employs advanced Unicode obfuscation to capture sensitive financial information from e-commerce platforms while evading detection.
View full story…
Critical Vulnerability Discovered in Fortinet Products
A critical security vulnerability, CVE-2024-23113, affecting multiple Fortinet products has been actively exploited, allowing remote code execution and posing significant risks to organizations.
View full story…
Major Data Breach Exposes 10 Million Conversations in AI-Powered Call Center
A significant data breach involving an AI-powered cloud call center in the Middle East compromised over 10 million conversations and sensitive personal information, raising serious cybersecurity concerns.
View full story…
UK and US Join Forces to Enhance Child Online Safety
The United Kingdom and the United States have established a joint working group to improve child online safety by sharing expertise and addressing digital risks, particularly those posed by emerging technologies.
View full story…
Critical Vulnerability Discovered in Nortek Linear eMerge E3 Access Controller Systems
Cybersecurity researchers have identified a critical unpatched vulnerability, CVE-2024-9441, in Nortek Linear eMerge E3 access controller systems that allows remote attackers to execute arbitrary commands, posing a significant risk to organizations using these devices.
View full story…
Internet Archive Faces Major Data Breach Exposing 31 Million User Records Amid DDoS Attacks
The Internet Archive confirmed a data breach that compromised over 31 million user records, including email addresses and hashed passwords, while also dealing with ongoing DDoS attacks claimed by the pro-Palestinian hacktivist group BlackMeta.
View full story…
Latest Cybernews
Social Media Security: Protecting Brand Identity and Reputation
Organizations often neglect the security of their social media accounts, exposing themselves to threats like phishing attacks and data breaches, which can lead to reputational damage and financial losses.
View full story…
Foreign Cyber Actors Threaten Integrity of 2024 US Presidential Election
Nation-state cyber actors, particularly those linked to Iran, Russia, and China, are expected to undermine the electoral process through disinformation campaigns and hacking activities aimed at disrupting the election and influencing voter behavior.
View full story…
Surge In Cyber Attacks Targeting File Hosting Services
Microsoft reports a significant increase in cyber attack campaigns exploiting popular file hosting services like SharePoint, OneDrive, and Dropbox to execute Business Email Compromise attacks, leading to identity theft and financial fraud.
View full story…
Apple’s iPhone Mirroring Feature Exposes Employee Privacy Risks
A critical vulnerability in Apple’s iPhone mirroring feature allows personal information of employees to be inadvertently exposed to their employers, raising significant privacy concerns and potential legal liabilities.
View full story…
Microsoft Patches 117 Vulnerabilities, Including Two Critical Zero-Days
In October 2024, Microsoft released patches for 117 security vulnerabilities, addressing two critical zero-day vulnerabilities, CVE-2024-43572 and CVE-2024-43573, which are actively exploited and pose significant risks to users.
View full story…
Major Security Vulnerabilities Discovered in MMS Protocol Implementations
Multiple significant security vulnerabilities in the Manufacturing Message Specification (MMS) protocol, affecting MZ Automation’s and Triangle MicroWorks’ libraries, pose serious risks to industrial environments, including potential device crashes and remote code execution.
View full story…