News

  • London Police Arrested 17-Year-Old Hacker Suspected of Uber and GTA 6 Breaches
    on September 24, 2022

    The City of London Police on Friday revealed that it has arrested a 17-year-old teenager from Oxfordshire on suspicion of hacking. "On the evening of Thursday 22 September 2022, the City of London Police arrested a 17-year-old in Oxfordshire on suspicion of hacking," the agency said, adding "he remains in police custody." The department said the arrest was made as part of an investigation in

  • Hackers Exploited Zero-Day RCE Vulnerability in Sophos Firewall — Patch Released
    on September 24, 2022

    Security software company Sophos has released a patch update for its firewall product after it was discovered that attackers were exploiting a new critical zero-day vulnerability to attack its customers' network. The issue, tracked as CVE-2022-3236 (CVSS score: 9.8), impacts Sophos Firewall v19.0 MR1 (19.0.1) and older and concerns a code injection vulnerability in the User Portal and Webadmin

  • The future of cybersecurity spotlighted at SECURITY 500 Conference
    on September 23, 2022

    In a panel titled "The Future of Cybersecurity" at the SECURITY 500 Conference, security executives will discuss enterprise cybersecurity and evolving cyber threats.

  • New security vulnerability in Oracle Cloud Infrastructure discovered
    on September 23, 2022

    A security vulnerability in Oracle Cloud Infrastructure (OCI) could have allowed unauthorized access to cloud storage volumes of all users, according to Wiz cybersecurity researchers.

  • British teen arrested in hacking case
    on September 23, 2022 in Cybercrime, Threats, Federal Bureau of Investigation (FBI), hackers, Lapsus$

    The arrest comes just more than a week after the Uber and Rockstar Games hacks, which Uber blamed on a group linked to British teens. The post British teen arrested in hacking case appeared first on CyberScoop.

  • Camden Yards tests AI weapons detection security technology
    on September 23, 2022

    The Maryland Stadium Authority (MSA) is testing weapon detection security technology at the Camden Yards Sports Complex in the City of Baltimore. 

  • The hidden environmental costs of VPN gateways
    on September 23, 2022

    A move from VPN to the cloud is beneficial not only from an operational, security, and digital experience perspective, but from an environmental impact perspective.

  • Damiano Tulipani named CISO at Provident Bank
    on September 23, 2022

    Damiano Tulipani has been named the new Senior Vice President, Chief Information Security Officer (CISO) at New Jersey-based Provident Bank.

  • The value of an adversary-focused approach to cybersecurity
    on September 23, 2022

    Adversary attribution enables security professionals to understand the “who, how and why” behind the cyberattacks targeting potentially their business. 

  • $59 million in DOT grants to improve U.S. commuter rail safety
    on September 23, 2022

    $59 million in safety grants to help secure railway crossings in California, Florida, New York and Pennsylvania with protective devices, gate systems and pedestrian warnings.

  • Hackers Using Fake CircleCI Notifications to Hack GitHub Accounts
    on September 23, 2022

    GitHub has put out an advisory detailing what may be an ongoing phishing campaign targeting its users to steal credentials and two-factor authentication (2FA) codes by impersonating the CircleCI DevOps platform. The Microsoft-owned code hosting service said it learned of the attack on September 16, 2022, adding the campaign impacted "many victim organizations." The fraudulent messages claim to

  • 3 ways to mitigate insider threats in a distributed workforce
    on September 23, 2022

    Remote work environments can lead to higher levels of insider risk to an enterprise without cybersecurity measures in place to protect data privacy.

  • Researchers Uncover New Metador APT Targeting Telcos, ISPs, and Universities
    on September 23, 2022

    A previously undocumented threat actor of unknown origin has been linked to attacks targeting telecom, internet service providers, and universities across multiple countries in the Middle East and Africa. "The operators are highly aware of operations security, managing carefully segmented infrastructure per victim, and quickly deploying intricate countermeasures in the presence of security

  • CISA Warns of Hackers Exploiting Recent Zoho ManageEngine Vulnerability
    on September 23, 2022

    The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a recently disclosed security flaw in Zoho ManageEngine to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of active exploitation. "Zoho ManageEngine PAM360, Password Manager Pro, and Access Manager Plus contain an unspecified vulnerability which allows for remote code execution," the agency

  • Firing Your Entire Cybersecurity Team? Are You Sure?
    on September 23, 2022

    What on earth were they thinking? That's what we – and other security experts – were wondering when content giant Patreon recently dismissed its entire internal cybersecurity team in exchange for outsourced services. Of course, we don't know the true motivations for this move. But, as outsiders looking in, we can guess the cybersecurity implications of the decision would be inescapable for any

  • Void Balaur Hackers-for-Hire Targeting Russian Businesses and Politics Entities
    on September 23, 2022

    A hack-for-hire group that was first exposed in 2019 has expanded its focus to set its sights on entities with business or political ties to Russia. Dubbed Void Balaur, the cyber mercenary collective has a history of launching cyberattacks against biotechnology and telecom companies since 2015. As many as 3,500 victims have been reported as of November 2021. "Void Balaur [...] primarily dabbles

  • Fake Indian Banking Rewards Apps Targeting Android Users with Info-stealing Malware
    on September 23, 2022

    An SMS-based phishing campaign is targeting customers of Indian banks with information-stealing malware that masquerades as a rewards application. The Microsoft 365 Defender Research Team said that the messages contain links that redirect users to a sketchy website that triggers the download of the fake banking rewards app for ICICI Bank. "The malware's RAT capabilities allow the attacker to

  • Hackers Using Malicious OAuth Apps to Take Over Email Servers
    on September 23, 2022

    Microsoft on Thursday warned of a consumer-facing attack that made use of rogue OAuth applications deployed on compromised cloud tenants to ultimately seize control of Exchange servers and spread spam. "The threat actor launched credential stuffing attacks against high-risk accounts that didn't have multi-factor authentication (MFA) enabled and leveraged the unsecured administrator accounts to

  • Researchers unearth hacking group that's been active, yet undetected for years
    on September 22, 2022 in Threats, espionage, hack-for-hire, Metador, SentinelOne

    The group has targeted telecommunications, internet service providers and universities in the Middle East and Africa, researchers said. The post Researchers unearth hacking group that's been active, yet undetected for years appeared first on CyberScoop.

  • Researchers Uncover Years-Long Mobile Spyware Campaign Targeting Uyghurs
    on September 22, 2022

    A new wave of a mobile surveillance campaign has been observed targeting the Uyghur community as part of a long-standing spyware operation active since at least 2015, cybersecurity researchers disclosed Thursday. The intrusions, originally attributed to a threat actor named Scarlet Mimic back in January 2016, is said to have encompassed 20 different variants of the Android malware, which were

  • Agencies don't know what sensitive data new IT systems collect on Americans, GAO report finds
    on September 22, 2022 in Policy, Privacy, data breaches, Department of Justice (DOJ), GAO, Office of Personnel Management (OPM), OPM breach, privacy, Senate Homeland Security and Governmental Affairs Committee

    A rise in breaches of federal agencies involving personally identifiable information in recent years highlights the ongoing challenge the federal government faces in protecting privacy The post Agencies don't know what sensitive data new IT systems collect on Americans, GAO report finds appeared first on CyberScoop.

  • Fisk University bolsters campus safety after bomb threats
    on September 22, 2022

    Fisk University in Nashville, Tennessee was targeted by a wave of bomb threats to HBCUs in early 2022. A security grant will help them bolster campus safety and guarding services.

  • DHS adds new members to Faith-Based Security Advisory Council
    on September 22, 2022

    The Department of Homeland Security has welcomed 25 members to the Faith-Based Security Advisory Council, who will help advise DHS on house of worships' security needs.

  • Emergency management agencies aid Puerto Rico after Hurricane Fiona
    on September 22, 2022

    Emergency management groups are aiding Hurricane Fiona victims in Puerto Rico by clearing debris, monitoring weather and hosting emergency shelters.

  • Malicious NPM Package Caught Mimicking Material Tailwind CSS Package
    on September 22, 2022

    A malicious NPM package has been found masquerading as the legitimate software library for Material Tailwind, once again indicating attempts on the part of threat actors to distribute malicious code in open source software repositories. Material Tailwind is a CSS-based framework advertised by its maintainers as an "easy to use components library for Tailwind CSS and Material Design." "The

  • CYBER.ORG expands CISA-funded HBCU feeder program
    on September 22, 2022

    With the support of the Cybersecurity and Infrastructure Security Agency (CISA), CYBER.ORG is expanding Project REACH to train a diverse body of K-12 students for future cybersecurity careers. 

  • Target healthcare drug diversion to fight the opioid epidemic
    on September 22, 2022

    Healthcare organizations need to up resources to tackle the issue of drug diversion and support a secure medication supply chain.

  • Why enterprise security must apply zero trust to data management challenges
    on September 22, 2022

    Discover four key data management capabilities that enterprise security and risk management leaders should consider to bring a zero trust mindset to data protection. 

  • Miami Marlins up parking lot security with mobile payment system
    on September 22, 2022

    The MLB's Miami Marlins use a parking management system from Genetec to increase payment compliance and event security at loanDepot park.

  • Senate reports details inefficiencies, confusion at key U.S. counterintelligence center
    on September 22, 2022 in Geopolitics, Government, Threats, influence operations, information operations, National Counterintelligence and Security Center (NCSC), Office of the Director of National Intelligence (ODNI), Senate Intelligence Committee

    Sen. Mark Warner said "new threats and new technology mean that we have to make substantial adjustments to our counterintelligence posture." The post Senate reports details inefficiencies, confusion at key U.S. counterintelligence center appeared first on CyberScoop.

  • IT Security Takeaways from the Wiseasy Hack
    on September 22, 2022

    Last month Tech Crunch reported that payment terminal manufacturer Wiseasy had been hacked. Although Wiseasy might not be well known in North America, their Android-based payment terminals are widely used in the Asia Pacific region and hackers managed to steal passwords for 140,000 payment terminals. How Did the Wiseasy Hack Happen? Wiseasy employees use a cloud-based dashboard for remotely

  • Researchers Disclose Critical Vulnerability in Oracle Cloud Infrastructure
    on September 22, 2022

    Researchers have disclosed a new severe Oracle Cloud Infrastructure (OCI) vulnerability that could be exploited by users to access the virtual disks of other Oracle customers. "Each virtual disk in Oracle's cloud has a unique identifier called OCID," Shir Tamari, head of research at Wiz, said in a series of tweets. "This identifier is not considered secret, and organizations do not treat it as

  • 15-Year-Old Unpatched Python Vulnerability Potentially Affects Over 350,000 Projects
    on September 22, 2022

    As many as 350,000 open source projects are believed to be potentially vulnerable to exploitation as a result of a security flaw in a Python module that has remained unpatched for 15 years. The open source repositories span a number of industry verticals, such as software development, artificial intelligence/machine learning, web development, media, security, and IT management. The shortcoming,

  • Hackers Targeting Unpatched Atlassian Confluence Servers to Deploy Crypto Miners
    on September 22, 2022

    A now-patched critical security flaw affecting Atlassian Confluence Server that came to light a few months ago is being actively exploited for illicit cryptocurrency mining on unpatched installations. "If left unremedied and successfully exploited, this vulnerability could be used for multiple and more malicious attacks, such as a complete domain takeover of the infrastructure and the deployment

  • Senator slams U.S. courts agency for 'stonewalling' inquiry into cyberattack
    on September 21, 2022 in Government, cyberattacks, Department of Justice (DOJ), Ron Wyden, U.S. courts

    Sen. Ron Wyden said the courts administrators' lack of answers about the breach "is a major red flag about the state of the courts’ systems." The post Senator slams U.S. courts agency for 'stonewalling' inquiry into cyberattack appeared first on CyberScoop.

  • Social media account takeovers increased over 1000% in 2021
    on September 21, 2022

    The 2022 Consumer Impact Report from the Identity Theft Resource Center (ITRC) identified an over 1,000% increase in social media account takeovers in 2021.

  • Video surveillance helps secure World Poker Tour tournament
    on September 21, 2022

    The Merit Royal Hotel and Casino expanded security and gaming surveillance ahead of the World Poker Tour's Texas Hold'em poker tournament at the casino.

  • American Airlines suffers data breach
    on September 21, 2022

    American Airlines has confirmed that a data breach has affected a "very small number" of customers and employees. 

  • Best practices to bolster software supply chain security
    on September 21, 2022

    The latest edition of the annual Building Security In Maturity Model (BSIMM) report highlights four evolving trends among organizations’ software security initiatives. 

  • Security lessons to learn after the Uber data breach
    on September 21, 2022

    As the dust settles around Uber’s recent data breach, the internet will likely begin to point fingers at those who they deem responsible for the attack.