-
Co-op confirms data of 6.5 million members stolen in cyberattack
In April, the Co-operative Group (Co-op), one of the largest consumer cooperatives in the United Kingdom, confirmed a significant cybersecurity breach that compromised the personal data of approximately 6.5 million members. This cyber incident not only led to disrupted operations…
-
U.S. Army soldier pleads guilty to extorting 10 tech, telecom firms
A recent case involving 21-year-old Cameron John Wagenius, a former U.S. Army soldier, underscores the escalating threat of cybercrime, particularly targeting telecommunications and technology firms. Wagenius has pled guilty to charges of hacking and extortion affecting at least ten companies,…
-
Exploits for pre-auth Fortinet FortiWeb RCE flaw released, patch now
Recently, proof-of-concept exploits have emerged for a critical SQL Injection (SQLi) vulnerability in Fortinet’s FortiWeb, which enables pre-authenticated remote code execution on affected servers. This serious security flaw highlights the pressing need for robust cybersecurity measures in web application firewalls.…
-
Microsoft investigates OneDrive bug that breaks file search
Microsoft is currently investigating a significant issue affecting its OneDrive platform, which has led to some users experiencing blank search results. This malfunction prevents users from locating files they know to be present within their accounts, impacting accessibility across various…
-
No, the 16 billion credentials leak is not a new data breach
Recent reports have circulated regarding what has been dubbed the “mother of all breaches.” However, a closer examination reveals that this incident is not a novel data breach but rather a compilation of previously leaked credentials, primarily acquired through infostealers,…
-
Hackers switch to targeting U.S. insurance companies
Threat intelligence analysts are issuing critical warnings regarding a series of breaches impacting multiple companies within the U.S. insurance sector, linked to the notorious threat group known for their Scattered Spider activities. This threat actor has exhibited a systematic approach,…
-
Google links massive cloud outage to API management issue
On Thursday, a significant incident affected Google Cloud services, identified as an API management issue. This outage not only disrupted Google’s offerings but also had cascading effects on numerous third-party platforms reliant on Google Cloud infrastructure. The outage commenced at…
-
DanaBot malware operators exposed via C2 bug added in 2022
A recent law enforcement action has highlighted a significant vulnerability within the DanaBot malware operation, attributed to updates introduced in June 2022. This vulnerability has led to the identification, indictment, and dismantling of key aspects of its operation. DanaBot operates…
-
Supply chain attack hits Gluestack NPM packages with 960K weekly downloads
A significant supply chain attack recently targeted NPM, compromising 16 popular Gluestack ‘react-native-aria’ packages. With over 950,000 weekly downloads, these packages were infiltrated to include malicious code functioning as a Remote Access Trojan (RAT). The compromise was identified on June…
Must-Read Posts
- Adidas warns of data breach after customer service provider hack
- AI Cuts vCISO Workload by 68% as Demand Skyrockets, New Report Finds
- AI in Cybersecurity: Revolutionizing Defense Against Emerging Threats
- Apiiro unveils free scanner to detect malicious code merges
- Apple fined €150 million over App Tracking Transparency issues
