Showing only posts by Lawrence Abrams. Show all posts.

Apr 18 2024 Google ad impersonates Whales Market to push wallet drainer malware

A legitimate-looking Google Search advertisement for the crypto trading platform 'Whales Market' redirects visitors to a wallet-draining phishing site that steals all of your assets. [...]

Apr 15 2024 Ransomware gang starts leaking alleged stolen Change Healthcare data

Source

The RansomHub extortion gang has begun leaking what they claim is corporate and patient data stolen from United Health subsidiary Change Healthcare in what has been a long and convoluted extortion process for the company. [...]

Apr 14 2024 OpenTable won't add first names, photos to old reviews after backlash

Source

OpenTable has reversed its decision to show members' first names and profile pictures in past anonymous reviews after receiving backlash from members who felt it was a breach of privacy. [...]

Apr 13 2024 Palo Alto Networks zero-day exploited since March to backdoor firewalls

Source

Suspected state-sponsored hackers have been exploiting a zero-day vulnerability in Palo Alto Networks firewalls tracked as CVE-2024-3400 since March 26, using the compromised devices to breach internal networks, steal data and credentials. [...]

Apr 12 2024 Telegram fixes Windows app zero-day used to launch Python scripts

Source

Telegram fixed a zero-day vulnerability in its Windows desktop application that could be used to bypass security warnings and automatically launch Python scripts. [...]

Apr 11 2024 OpenTable is adding your first name to previously anonymous reviews

Source

Restaurant reservation platform OpenTable says that all reviews on the platform will no longer be fully anonymous starting May 22nd and will now show members' profile pictures and first names. [...]

Apr 09 2024 Microsoft April 2024 Patch Tuesday fixes 150 security flaws, 67 RCEs

Source

Today is Microsoft's April 2024 Patch Tuesday, which includes security updates for 150 flaws and sixty-seven remote code execution bugs. [...]

Apr 08 2024 Targus discloses cyberattack after hackers detected on file servers

Source

Laptop and tablet accessories maker Targus disclosed that it suffered a cyberattack disrupting operations after a threat actor gained access to the company's file servers. [...]

Apr 07 2024 Home Depot confirms third-party data breach exposed employee info

Source

Home Depot has confirmed that it suffered a data breach after one of its SaaS vendors mistakenly exposed a small sample of limited employee data, which could potentially be used in targeted phishing attacks. [...]

Apr 05 2024 The Week in Ransomware - April 5th 2024 - Virtual Machines under Attack

Source

Ransomware attacks targeting VMware ESXi and other virtual machine platforms are wreaking havoc among the enterprise, causing widespread disruption and loss of services. [...]

Apr 05 2024 Panera Bread week-long IT outage caused by ransomware attack

Source

Panera Bread's recent week-long outage was caused by a ransomware attack, according to people familiar with the matter and emails seen by BleepingComputer. [...]

Apr 03 2024 Hosting firm's VMware ESXi servers hit by new SEXi ransomware

Source

Chilean data center and hosting provider IxMetro Powerhost has suffered a cyberattack at the hands of a new ransomware gang known as SEXi, which encrypted the company's VMware ESXi servers and backups. [...]

Mar 30 2024 AT&T confirms data for 73 million customers leaked on hacker forum

Source

AT&T has finally confirmed it is impacted by a data breach affecting 73 million current and former customers after initially denying the leaked data originated from them. [...]

Mar 17 2024 AT&T says leaked data of 70 million people is not from its systems

Source

AT&T says a massive trove of data impacting 71 million people did not originate from its systems after a hacker leaked it on a cybercrime forum and claimed it was stolen in a 2021 breach of the company. [...]

Mar 15 2024 PornHub now also blocks Texas over age verification laws

Source

PornHub has now added Texas to its blocklist, preventing users in the state from accessing its site in protest of age verification laws. [...]

Mar 12 2024 Microsoft March 2024 Patch Tuesday fixes 60 flaws, 18 RCE bugs

Source

Today is Microsoft's March 2024 Patch Tuesday, and security updates have been released for 60 vulnerabilities, including eighteen remote code execution flaws. [...]

Mar 08 2024 The Week in Ransomware - March 8th 2024 - Waiting for the BlackCat rebrand

Source

We saw another ransomware operation shut down this week after first getting breached by law enforcement and then targeting critical infrastructure, putting them further in the spotlight of the US government. [...]

Mar 08 2024 Microsoft says Russian hackers breached its systems, accessed source code

Source

Microsoft says the Russian 'Midnight Blizzard' hacking group recently accessed some of its internal systems and source code repositories using authentication secrets stolen during a January cyberattack. [...]

Mar 07 2024 CISA, NSA share best practices for securing cloud services

Source

The NSA and the Cybersecurity and Infrastructure Security Agency (CISA) have released five joint cybersecurity bulletins containing on best practices for securing a cloud environment. [...]

Mar 07 2024 AnyCubic fixes exploited 3D printer zero day flaw with new firmware

Source

AnyCubic has released new Kobra 2 firmware to fix a zero-day vulnerability exploited last month to print security warnings on 3D printers worldwide. [...]

Mar 06 2024 PetSmart warns of credential stuffing attacks trying to hack accounts

Source

Pet retail giant PetSmart is warning some customers their passwords were reset due to an ongoing credential stuffing attack attempting to breach accounts. [...]

Mar 06 2024 Hacked WordPress sites use visitors' browsers to hack other sites

Source

Hackers are conducting widescale attacks on WordPress sites to inject scripts that force visitors' browsers to bruteforce passwords for other sites. [...]

Mar 05 2024 Apple fixes two new iOS zero-days exploited in attacks on iPhones

Source

Apple released emergency security updates to fix two iOS zero-day vulnerabilities that were exploited in attacks on iPhones. [...]

Mar 05 2024 Passwords are Costing Your Organization Money - How to Minimize Those Costs

Source

Getting rid of passwords completely isn't a realistic option for most orgs, but there are things you can do to make them more secure. Learn more from Specops Software on maximizing security while mitigating costs. [...]

Mar 04 2024 American Express credit cards exposed in third-party data breach

Source

American Express is warning customers that credit cards were exposed in a third-party data breach after a merchant processor was hacked. [...]

« newer articles | page 2 | older articles »