Information

14 Sep

A Second Major British Police Force Suffers a Cyberattack in Less Than a Month

Personal details of thousands of police officers and staff from Greater Manchester Police have been hacked from a company that makes identity cards, the second such cyberattack to affect a major British police force in less than a month. Details on identity badges and warrant cards, including names, photos and identity numbers or police collar numbers, were stolen in the ransomware attack, Greater Manchester Police said Thursday. The third-party supplier was not identified. The force…

13 Sep

Tech Industry Leaders Endorse Regulating Artificial Intelligence at Rare Summit in Washington

Information, News

The nation’s biggest technology executives on Wednesday loosely endorsed the idea of government regulations for artificial intelligence at an unusual closed-door meeting in the U.S. Senate. But there is little consensus on what regulation would look like, and the political path for legislation is difficult. Senate Majority Leader Chuck Schumer, who organized the private forum on Capitol Hill as part of a push to legislate artificial intelligence, said he asked everyone in the room —…

13 Sep

FBI Hacker Dropped Stolen Airbus Data on 9/11

Data Breaches, Information, Insights

In December 2022, KrebsOnSecurity broke the news that a cybercriminal using the handle “USDoD” had infiltrated the FBI‘s vetted information sharing network InfraGard, and was selling the contact information for all 80,000 members. The FBI responded by reverifying InfraGard members and by seizing the cybercrime forum where the data was being sold. But on Sept. 11, 2023, USDoD resurfaced after a lengthy absence to leak sensitive employee data stolen from the aerospace giant Airbus, while…

12 Sep

ESET Research Podcast: Sextortion, digital usury and SQL brute-force

Information

Closing intrusion vectors force cybercriminals to revisit old attack avenues, but also to look for new ways to attack their victims

12 Sep

Adobe, Apple, Google & Microsoft Patch 0-Day Bugs

Information, Insights

Microsoft today issued software updates to fix at least five dozen security holes in Windows and supported software, including patches for two zero-day vulnerabilities that are already being exploited. Also, Adobe, Google Chrome and Apple iOS users may have their own zero-day patching to do. On Sept. 7, researchers at Citizen Lab warned they were seeing active exploitation of a “zero-click,” zero-day flaw to install spyware on iOS devices without any interaction from the victim.…

12 Sep

Zero Day Summer: Microsoft Warns of Fresh New Software Exploits

Information, News

Microsoft’s struggles with zero-day exploits rolled into a new month with a fresh warning that two new Windows vulnerabilities are being targeted by malware attacks in the wild. As part of its scheduled batch of Patch Tuesday security fixes, Redmond’s security response team flagged the two zero-days — CVE-2023-36761 and CVE-2023-36802 — in the “exploitation detected” category and urged Windows sysadmins to urgently apply available fixes. The most serious of the two bugs is described…

11 Sep

Sponsor with batch-filed whiskers: Ballistic Bobcat’s scan and strike backdoor

Information

ESET Research uncovers the Sponsoring Access campaign, which utilizes an undocumented Ballistic Bobcat backdoor we have named Sponsor

11 Sep

MGM Resorts Confirms ‘Cybersecurity Issue’, Shuts Down Systems

Data Breaches, Information, News

Hospitality and entertainment giant MGM Resorts on Monday said a “cybersecurity issue” forced the shutdown of certain computer systems, including the websites for some of the biggest Las Vegas and New York properties. A brief note posted to X (the website formerly known as Twitter) said external cybersecurity experts and law enforcement are involved in an investigation that has all the hallmarks of a ransomware extortion attack. Here’s the full MGM Resorts statement: “MGM Resorts…

10 Sep

Powerful Ethnic Militia in Myanmar Repatriates 1,200 Chinese Suspected of Involvement in Cybercrime

Information, News

One of Myanmar’s biggest and most powerful ethnic minority militias has arrested and repatriated more than 1,200 Chinese nationals allegedly involved in criminal online scam operations, an official of the group said Saturday. The arrests were carried out in territory controlled by the United Wa State Army, or UWSA, in eastern Shan state in raids on Tuesday and Wednesday, Nyi Rang, a liaison officer from the militia, told The Associated Press. He said in a…

09 Sep

Will you give X your biometric data? – Week in security with Tony Anscombe

Information

The update to X’s privacy policy has sparked some questions among privacy and security folks, including how long X will retain users’ biometric information and how the data will be stored and secured

A Second Major British Police Force Suffers a Cyberattack in Less Than a Month

Tech Industry Leaders Endorse Regulating Artificial Intelligence at Rare Summit in Washington

FBI Hacker Dropped Stolen Airbus Data on 9/11

ESET Research Podcast: Sextortion, digital usury and SQL brute-force

Adobe, Apple, Google & Microsoft Patch 0-Day Bugs

Zero Day Summer: Microsoft Warns of Fresh New Software Exploits

Sponsor with batch-filed whiskers: Ballistic Bobcat’s scan and strike backdoor

MGM Resorts Confirms ‘Cybersecurity Issue’, Shuts Down Systems

Powerful Ethnic Militia in Myanmar Repatriates 1,200 Chinese Suspected of Involvement in Cybercrime

Will you give X your biometric data? – Week in security with Tony Anscombe

Search

The 6 Stages of a Vulnerability Management Process

Get Cybersecurity Alerts

Read More

Categories

Site Navigation

Resources