Cyber Threat News Feed (Global)
View the latest threats and global cybersecurity news.
Current Critical U.S. Warnings:
-
CISOs rücken näher an den Vorstandon January 24, 2025 at 2:02 pm
Ein gutes Verhältnis zwischen CISO und Vorstand hat viele Vorteile. Golden Dayz – Shutterstock.com In den vergangenen Jahren haben sich CISOs […]
-
SonicWall’s Secure Mobile Access appliance...on January 24, 2025 at 12:17 pm
A critical bug in SonicWall’s remote access gateway, Secure Mobile Access (SMA1000), is likely being used in zero-day attacks, allowing remote code […]
-
Grohe AG von Ransomware-Attacke betroffenon January 24, 2025 at 7:10 am
Die Ransomware-Bande Ransomhub will 100 Gigabyte Daten von der Grohe AG erbeutet haben.CeltStudio – Shutterstock.com Die Grohe AG zählt zu den […]
-
Tricking the bad guys: realism and robustness are...on January 24, 2025 at 6:00 am
Longtime cybersecurity practitioners might recall the early guidance manuals published by the National Security Agency (NSA) in the 1980s and 1990s […]
-
GDPR fines hit €1.2 billion in 2024 on 8.3%...on January 24, 2025 at 5:30 am
Corporation violations of GDPR rules resulted in total fines of €1.2 billion in 2024, according to a report from international law firm DLA Piper. […]
-
Prävention gegen Black Bastaon January 24, 2025 at 4:00 am
Ein lückenloser Grundschutz ist im Kampf gegen Ransomware die halbe Miete.ImageFlow – Shutterstock.com Seit ihrem ersten Auftreten im Jahr 2022 […]
-
AMD’s unpatched chip microcode glitch may...on January 24, 2025 at 1:16 am
AMD has had to confirm the existence of a major cybersecurity problem in its chip microcode before it can post a fix. Microcode often loads […]
-
Warning to FortiGate admins: You need to run a...on January 23, 2025 at 11:51 pm
Network administrators with Fortinet’s FortiGate next generation firewall in their IT environments are being warned to thoroughly scrutinize […]
-
Palo Alto Networks firewalls have UEFI flaws,...on January 23, 2025 at 10:45 pm
Researchers have discovered that next-generation firewalls from Palo Alto Networks contain years-old known vulnerabilities in their UEFI firmware — […]
-
Automating endpoint management doesn’t mean...on January 23, 2025 at 3:19 pm
Beset with cybersecurity risks, compliance regimes, and digital experience challenges, enterprises need to move toward autonomous endpoint management […]
-
Cisco patches antivirus decommissioning bug as...on January 23, 2025 at 11:39 am
Cisco has patched a denial-of-service (DoS) vulnerability affecting its open-source antivirus software toolkit, ClamAV, which already has a […]
-
10 top XDR tools and how to evaluate themon January 23, 2025 at 7:00 am
Little in the modern IT world lends itself to manual or siloed management, and this is doubly true in the security realm. The scale of modern […]
-
Python administrator moves to improve software...on January 23, 2025 at 6:15 am
The administrators of the Python Package Index (PyPI) have begun an effort to improve the hundreds of thousands of software packages that are listed. […]
-
Geben Sie LLM-Alarmismus keine Chance!on January 23, 2025 at 4:00 am
Die Mär von der Cybercrime-KI-Revolution?Overearth | shutterstock.com Cybersicherheitsexperten haben in den letzten Jahren immer wieder darauf […]
-
Auswirkungen auf IT-Fachkräfte: 10 Anzeichen...on January 23, 2025 at 4:00 am
Sind IT-Mitarbeiter unzufrieden, kann das an schlechten Führungskräften oder an einer unzureichenden IT-Strategie liegen. Foto: fizkes – […]
-
Mastercard’s multi-year DNS cut-and-paste...on January 23, 2025 at 2:41 am
Due to a Domain Name System (DNS) setting error, which the security researcher who discovered it said was almost certainly a cut-and-paste problem, […]
-
Trump disbands Cyber Safety Review Board, Salt...on January 22, 2025 at 6:14 pm
The administration of US President Donald Trump has dismissed all members of its Cyber Safety Review Board (CSRB), including those investigating the […]
-
25 on 2025: APAC security thought leaders share...on January 22, 2025 at 5:30 pm
As threat actors and security teams harness the growing potential of artificial intelligence (AI), who will prevail? From generative AI (GenAI) to […]
-
MasterCard DNS Error Went Unnoticed for Yearsby BrianKrebs on January 22, 2025 at 3:24 pm
The payment card giant MasterCard just fixed a glaring error in its domain name server settings that could have allowed anyone to intercept or divert […]
-
45 Schulen von Cyberangriff betroffenon January 22, 2025 at 2:34 pm
Bei einer Cyberattacke auf einen IT-Dienstleister wurden mehrere Schulserver verschlüsselt.Elena Uve – Shutterstock.com Die Kreisverwaltung […]
-
Spooks of the internet came alive this Halloweenon January 22, 2025 at 11:48 am
Halloween 2024 made history with a massive spike in distributed denial of service (DDoS) attacks, with one particular assault reaching over 5 […]
-
Chinese Innovations Spawn Wave of Toll Phishing...by BrianKrebs on January 16, 2025 at 9:18 pm
Residents across the United States are being inundated with text messages purporting to come from toll road operators like E-ZPass, warning that […]
-
Microsoft: Happy 2025. Here’s 161 Security...by BrianKrebs on January 14, 2025 at 10:50 pm
Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three "zero-day" […]
-
A Day in the Life of a Prolific Voice Phishing...by BrianKrebs on January 7, 2025 at 11:41 pm
Besieged by scammers seeking to phish user accounts over the telephone, Apple and Google frequently caution that they will never reach out unbidden […]
-
U.S. Army Soldier Arrested in AT&T, Verizon...by BrianKrebs on December 31, 2024 at 4:05 am
Federal authorities have arrested and indicted a 20-year-old U.S. Army soldier on suspicion of being Kiberphant0m, a cybercriminal who has been […]
-
Happy 15th Anniversary, KrebsOnSecurity!by BrianKrebs on December 29, 2024 at 11:48 pm
KrebsOnSecurity.com turns 15 years old today! Maybe it's indelicate to celebrate the birthday of a cybercrime blog that mostly publishes bad news, […]
-
Web Hacking Service ‘Araneida’ Tied to...by BrianKrebs on December 19, 2024 at 5:07 pm
Cybercriminals are selling hundreds of thousands of credential sets stolen with the help of a cracked version of Acunetix, a powerful commercial web […]
-
How to Lose a Fortune with Just One Bad Clickby BrianKrebs on December 18, 2024 at 1:17 pm
Adam Griffin is still in disbelief over how quickly he was robbed of nearly $500,000 in cryptocurrencies. A scammer called using a real Google phone […]
-
How Cryptocurrency Turns to Cash in Russian Banksby BrianKrebs on December 11, 2024 at 9:38 pm
A financial firm registered in Canada has emerged as the payment processor for dozens of Russian cryptocurrency exchanges and websites hawking […]
-
Patch Tuesday, December 2024 Editionby BrianKrebs on December 11, 2024 at 1:53 am
Microsoft today released updates to plug at least 70 security holes in Windows and Windows software, including one vulnerability that is already […]
-
Student Loan Breach Exposes 2.5M Recordsby Nate Nelson on August 31, 2022 at 12:57 pm
2.5 million people were affected, in a breach that could spell more trouble down the line.
-
Watering Hole Attacks Push ScanBox Keyloggerby Nate Nelson on August 30, 2022 at 4:00 pm
Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool.
-
Tentacles of ‘0ktapus’ Threat Group Victimize...by Nate Nelson on August 29, 2022 at 2:56 pm
Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system.
-
Ransomware Attacks are on the Riseby Nate Nelson on August 26, 2022 at 4:44 pm
Lockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group.
-
Cybercriminals Are Selling Access to Chinese...by Nate Nelson on August 25, 2022 at 6:47 pm
Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed.
-
Twitter Whistleblower Complaint: The TL;DR Versionby Threatpost on August 24, 2022 at 2:17 pm
Twitter is blasted for security and privacy lapses by the company’s former head of security who alleges the social media giant’s actions amount […]
-
Firewall Bug Under Active Attack Triggers CISA...by Threatpost on August 23, 2022 at 1:19 pm
CISA is warning that Palo Alto Networks’ PAN-OS is under active attack and needs to be patched ASAP.
-
Fake Reservation Links Prey on Weary Travelersby Nate Nelson on August 22, 2022 at 1:59 pm
Fake travel reservations are exacting more pain from the travel weary, already dealing with the misery of canceled flights and overbooked hotels.
-
iPhone Users Urged to Update to Patch 2 Zero-Daysby Elizabeth Montalbano on August 19, 2022 at 3:25 pm
Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under […]
-
Google Patches Chrome’s Fifth Zero-Day of the...by Elizabeth Montalbano on August 18, 2022 at 2:31 pm
An insufficient validation input flaw, one of 11 patched in an update this week, could allow for arbitrary code execution and is under active attack.
Redbot Social