More than one terabyte of data containing 5.5 million files has been left exposed, leaking personal information of over 100,000 customers of a Colombian real estate firm, according to WizCase.
Apple has deprecated the insecure Transport Layer Security (TLS) 1.0 and 1.1 protocols in recently launched iOS and macOS versions and plans to remove support in future releases altogether.
The company released a statement on its website Tuesday afternoon, but the website is currently down as of Wednesday. The firm confirmed that it had been hit with a ransomware attack on September 19.
The research by Positive Technologies also reveals that the volume of attacks on governmental institutions, in particular, soared from 12% in the first quarter of 2021 to 20% in the second quarter.
US real estate investment firm Marcus & Millichap suffered a recent cyberattack that may have been the work of the BlackMatter ransomware gang, according to a malware sample found on Hatching Triage.
The Biden administration is issuing new security guidance to critical infrastructure firms in an attempt to blunt the impact of ransomware and other hacks, following a series of attacks on US companies.
CISA sent out an advisory on Wednesday centered around the Conti ransomware, providing detailed information for the cybersecurity community about the ransomware group and its affiliates.
LG signed a deal with the startup to acquire 63.9% of its shares. LG will also acquire additional shares of Cybellum by the year’s end, with the amount to be finalized then.
In H1 2021, Google holds the top slot with over 547 vulnerabilities, Microsoft was second with 432 unwanted exposure instances and Oracle is on number three with 316 vulnerabilities.
Malware specialists have found evidence of how REvil ransomware’s leadership may have hijacked chats with victims of their own affiliates to cut them out of their ransomware payouts.
A survey found that 77% of respondents have already abandoned or stopped creating an online account due to demands for too much personal information (40%) and too many security steps (29%).
Malwarebytes has reason to believe that the MSHTML vulnerability listed under CVE-2021-40444 is being used to target Russian entities through malicious email attachments.
As ransomware continues to be delivered based on decisions and actions taken by human attackers, it becomes increasingly important to look upstream at the chain of events that lead to that decision.
On RaidForums, the “Staff General” section is typically restricted to internal staff members only, but in an ironic twist of fate, the private section was accidentally left open for viewing by anyone.
A data breach at Texas behavioral health provider Texoma Community Center affected more than 24,000 people and highlights how timelines for breach notification may lag behind security events.
McAfee Labs have observed a new phishing campaign that utilizes macro capabilities available in Microsoft PowerPoint. In this campaign, the spam email comes with a PowerPoint file as an attachment.
The Deputy Minister of National Defense said that the phones were selected because they had been previously identified “by the international community as posing certain cyber security risks.”
Cisco Talos uncovered a three-year-long espionage campaign, dubbed Operation Layover, aimed at the airline industry. Cybercriminals are spreading AsyncRAT and njRAT via malicious documents. In the ongoing campaign, attackers can change their crypter/attack vector and continue stealing from victims … Read More
New Jersey-based USV Optical Inc. – a subsidiary of U.S.Vision on Sept. 3 reported to HHS’ Office for Civil Rights a hacking IT incident involving a network server and affecting 180,000 individuals.
In an attack recently investigated by Sophos, an unknown threat actor exploited an ancient-in-internet-years vulnerability in an 11-year-old installation of Adobe ColdFusion 9 to infect the server.
Osano, a data privacy platform that helps websites become compliant with international regulations, today announced that it closed an $11 million funding round led by Jump Capital.
As many as 11 security vulnerabilities have been disclosed in Nagios network management systems, some of which could be chained to achieve pre-authenticated remote code execution.
Barlow Respiratory Hospital said while the attack affected several IT systems, the hospital was able to continue to operate under its emergency procedures and patient care was not interrupted.