Cybersecurity
Category Added in a WPeMatico Campaign
Colleges and K-12 schools in several states are dealing with ransomware incidents causing outages and leaking sensitive data — a continuation of a trend that has affected campuses nationwide throughout the year. Henry County Schools — a district an hour from Atlanta with dozens of elementary, middle and high schools with more than 44,000 students […]
Microsoft will not abandon Windows 10 users to an insecure fate once it reaches end of support (EOS) on October 14, 2025: both enterprises and individual consumers will be able receive Extended Security Updates (ESU), but will have to pay for them. Details about the Windows 10 ESU program “The ESU program enables PCs to […]
Japanese carmaker Nissan has reported a cybersecurity incident involving its systems in Australia and New Zealand. In a statement on Wednesday, the company said that it is working with security researchers “to investigate the extent of the incident and whether any personal information has been accessed.” Nissan has also notified the relevant security authorities in […]
Dive Brief: The Cybersecurity and Infrastructure Security Agency said it is making progress toward reducing security risk since the October 2022 release of its cybersecurity performance goals program, the agency said Tuesday. Since the release of the CPG program, organizations enrolled in the agency’s vulnerability scanning service have reduced their average number of known exploited […]
Dec 06, 2023NewsroomAccess Management / Cloud Security Threat actors can take advantage of Amazon Web Services Security Token Service (AWS STS) as a way to infiltrate cloud accounts and conduct follow-on attacks. The service enables threat actors to impersonate user identities and roles in cloud environments, Red Canary researchers Thomas Gardner and Cody Betsworth said […]
Law firms increasingly targeted by cyber criminal groups that specialize in business email compromise
Legal experts have warned that a “landmark” ruling by the European Court of Justice (ECJ) could have major financial ramifications for organizations that breach the GDPR. The judgement handed down yesterday involved German property company Deutsche Wohnen. The firm was originally hit with a €14.5m ($15.7m) fine by the Berlin Data Protection Commissioner back in […]
Dec 07, 2023The Hacker NewsMobile Security / Vulnerability A critical Bluetooth security flaw could be exploited by threat actors to take control of Android, Linux, macOS and iOS devices. Tracked as CVE-2023-45866, the issue relates to a case of authentication bypass that enables attackers to connect to susceptible devices and inject keystrokes to achieve code […]
Dec 07, 2023The Hacker NewsMalware / Security Breach A previously unknown Linux remote access trojan called Krasue has been observed targeting telecom companies in Thailand by threat actors to main covert access to victim networks at lease since 2021. Named after a nocturnal female spirit of Southeast Asian folklore, the malware is “able to conceal […]