Cybersecurity

MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries

Several public and popular libraries abandoned but still used in Java and Android applications have been found susceptible to a new software supply chain attack method called MavenGate. “Access to projects can be hijacked through domain name purchases and since most default build configurations are vulnerable, it would be difficult or even impossible to know […]

Cybersecurity

Vans, Supreme owner VF Corp says hackers stole 35 million customers’ personal data | TechCrunch

VF Corp., the parent company of the popular apparel brands Vans, Supreme, and The North Face, said Thursday that hackers stole the personal data of 35.5 million customers in a December cyberattack. The Denver, Colorado-based company reported the data breach to regulators in a filing on Thursday. The filing did not say specifically what kinds […]

Cybersecurity

Vulnerability affecting smart thermostats patched by Bosch

German technology manufacturer Bosch fixed a vulnerability affecting a popular line of smart thermostats in October, the company disclosed this week. Researchers from Bitdefender discovered an issue with Bosch BCC100 thermostats last August which lets an attacker on the same network replace the device firmware with a rogue version. Bogdan Botezatu, director of threat research […]

Cybersecurity

Vulnerabilities found in high-power Bosch wrenches popular with carmakers

Several vulnerabilities have been found in a popular line of pneumatic torque wrenches made by a subsidiary of Bosch, a German engineering and technology corporation. The mechanical wrenches are typically found in manufacturing facilities that perform safety-critical tightening tasks, especially automotive production lines, according to researchers at industrial cybersecurity firm Nozomi Networks. The vulnerabilities in […]

Cybersecurity

Orrick, Herrington & Sutcliffe Data Breach Exposes Information of Over 600000 Individuals

Orrick, Herrington & Sutcliffe, a popular San Francisco-based international law firm, recently fell victim to a data leak operation that resulted in the Orrick data breach incident. The Orrick, Herrington & Sutcliffe data breach, discovered in March 2023, exposed sensitive health information belonging to more than 637,000 data breach victims. The intrusion into Orrick’s network […]