FBI Tells Telecom Firms to Boost Security Following Wide-Ranging Chinese Hacking Campaign
Federal authorities on Tuesday urged telecommunication companies to boost network security following a sprawling Chinese hacking campaign that gave officials in Beijing access to private texts and phone conversations of an unknown number of Americans. The guidance issued by the FBI and the Cybersecurity and Infrastructure Security Agency is intended to help root out the […]
Read More
New EU Regulation Establishes European ‘Cybersecurity Shield’
The Council of the European Union on Monday announced the adoption of two new laws meant to improve the overall cybersecurity across the EU. The two new laws in the cybersecurity package establish a cybersecurity shield that calls for member states to cooperate in detecting and responding to cyberattacks, and amend the EU’s Cybersecurity Act […]
Read More
Vendors Unveil New Cloud Security Products, Features at AWS re:Invent 2024
Amazon Web Services (AWS) and other vendors announced new cloud security products and features at the re:Invent 2024 conference hosted by AWS. AWS made several announcements. It launched an incident response service designed to provide organizations with quick and effective security incident management capabilities. The cloud giant also announced extended threat detection capabilities for Amazon […]
Read More
US Expands List of Chinese Technology Companies Under Export Controls
The U.S. Commerce Department has expanded the list of Chinese technology companies subject to export controls to include many that make equipment used to make computer chips, chipmaking tools and software. The 140 companies newly included in the so-called “entity list” are nearly all based in China. But some are Chinese-owned businesses in Japan, South […]
Read More
Hacker Conversations: Dan McInerney and Puzzle-Driven Hacking
Dan McInerney, currently lead AI threat researcher at Protect AI, came late to tech hacking. He was a 22-years old psychology grad when he started. His journey, however, provides new insights into the creation and motivation of a hacker. Most hackers define themselves as someone driven by curiosity to understand how an object – it […]
Read More
760,000 Employee Records From Several Major Firms Leaked Online
The information of more than 760,000 employees of several major organizations emerged online on Monday morning after a threat actor dumped it on a popular hacking forum. The data apparently originates from last year’s massive MOVEit hack, in which a zero-day vulnerability in Progress Software’s file transfer software was used to steal sensitive information from […]
Read More
Hackers Stole $1.49 Billion in Cryptocurrency to Date in 2024
Nearly $1.49 billion in cryptocurrency losses have been registered to date in 2024, mainly due to hacking incidents, a new report from web3 bug bounty platform Immunefi shows. The total year-to-date losses have dropped compared to last year, when they surpassed $1.75 billion during the period, and were mainly driven by losses of over $359 […]
Read More
Energy Sector Contractor ENGlobal Targeted in Ransomware Attack
Energy sector contractor ENGlobal Corporation on Monday announced that some of its operations have been affected by a ransomware attack. In a regulatory filing with the US Securities and Exchange Commission, the company revealed that it discovered the attack on November 25 and took certain systems offline to contain the incident. “The preliminary investigation has […]
Read More
Cisco Warns of Attacks Exploiting Decade-Old ASA Vulnerability
Cisco on Monday updated an advisory covering a decade-old vulnerability to warn customers about in-the-wild exploitation. The vulnerability is tracked as CVE-2014-2120 and it has been described as a medium-severity cross-site scripting (XSS) vulnerability affecting the WebVPN login page of Cisco Adaptive Security Appliance (ASA) products. According to the networking giant, an unauthenticated, remote attacker […]
Read More
AWS Launches Incident Response Service
AWS on Sunday announced a new service that provides organizations with quick and effective security incident management capabilities. The new Security Incident Response, AWS says, relies on automation to triage and analyze security signals from Amazon GuardDuty and integrated third-party detection solutions through the AWS Security Hub cloud security posture management service. With Security Incident […]
Read More