Salt Typhoon Exploited Cisco Devices With Custom Tool to Spy on US Telcos
Chinese threat actor Salt Typhoon used JumbledPath, a custom-built utility, to gain access to a remote Cisco device, said the network provider
Information Security Magazine
DoD Contractor Pays $11.2M over False Cyber Certifications Claims
4 hours 33 minutes ago
Health Net Federal Services has agreed to pay over $11m over alleged false cybersecurity reporting
BlackBasta Ransomware Chatlogs Leaked Online
6 hours 48 minutes ago
BlackBasta’s internal chatlogs are “highly useful from a threat intelligence perspective,” said Prodaft, the firm that revealed the leak
Microsoft’s Quantum Chip Breakthrough Accelerates Threat to Encryption Protocols
8 hours 33 minutes ago
Microsoft has developed the first ever quantum chip, shortening the timeframe for when quantum computers will break exiting encryption
Malicious Ads Target Freelance Developers via GitHub
1 day 1 hour ago
Fake job ads target freelance developers, spreading malware via GitHub
West Coast Cybersecurity Salaries Outshine Rest of Country
1 day 2 hours ago
A survey by IANS and Artico found significant regional variation in cybersecurity salary levels across North America
Mobile Phishing Attacks Surge with 16% of Incidents in US
1 day 3 hours ago
Mobile phishing attacks surged in 2024, with 16% of all incidents occurring in the US, according to a new Zimperium report
Over 330 Million Credentials Compromised by Infostealers
1 day 4 hours ago
Kela researchers 330 million compromised credentials to infostealer activity on over four million machines in 2024
Hackers Chain Exploits of Three Palo Alto Networks Firewall Flaws
1 day 5 hours ago
Palo Alto Networks has observed exploit attempts chaining three vulnerabilities in its PAN-OS firewall appliances
CISA and FBI Warn of Global Threat from Ghost Ransomware
1 day 8 hours ago
CISA and the FBI have released a joint advisory detailing the activity of China’s Ghost ransomware
WordPress Plugin Vulnerability Exposes 90,000 Sites to Attack
2 days ago
A flaw in the Jupiter X Core plugin has been identified, allowing upload of malicious SVG files and remote code execution on vulnerable servers
Finastra Notifies Customers of Data Breach
2 days 1 hour ago
Finastra notifies customers of data breach that took place more than three months ago, impacting sensitive financial information
Australian IVF Clinic Suffers Data Breach Following Cyber Incident
2 days 3 hours ago
Australia-based Genea said it is investigating the cyber incident to determine whether any personal data was accessed by an unauthorized third party
Spies Eye AUKUS Nuclear Submarine Secrets, Australia’s Intelligence Chief Warns
2 days 4 hours ago
The head of the Australian Security Intelligence Organisation gave his Annual Threat Assessment for the year ahead
Cyber Investor Insight Partners Suffers Security Breach
2 days 6 hours ago
Venture capital firm Insight Partners, which counts Recorded Future, SentinelOne and Wiz in its portfolio, confirmed an intrusion into its systems via a social engineering attack
Russian State Hackers Target Signal to Spy on Ukrainians
2 days 7 hours ago
Google has warned that Russian state-backed hackers are targeting Signal to eavesdrop on persons of interest in Ukraine
Hundreds of US Military and Defense Credentials Compromised
2 days 8 hours ago
Hudson Rock has found evidence that infostealers have compromised hundreds of US military and defense contractor credentials
OpenSSH Flaws Expose Systems to Critical Attacks
3 days 1 hour ago
Significant OpenSSH flaws are exposing systems to man-in-the-middle and denial-of service attacks
Mustang Panda Leverages Microsoft Tools to Bypass Anti-Virus Solutions
3 days 3 hours ago
Trend Micro found that Chinese espionage group Mustang Panda is deploying malware via legitimate Microsoft tools, enabling it to bypass ESET antivirus applications
Evolving Snake Keylogger Variant Targets Windows Users
3 days 4 hours ago
A new Snake Keylogger variant, responsible for over 280 million blocked infection attempts worldwide, has been identified targeting Windows users
Checked
1 hour 3 minutes ago