hacking
Cloudflare scuppers Twilio-like cyber attack with hardware keys
Cloudflare scuppers Twilio-like cyber attack with hardware keys
Phishing attempt was unable to gather information required to access the company’s systems thanks to secure hardware MFA
11 Aug 2022
VMware warns of tumultuous threats amid Russia-Ukraine cyber war
VMware warns of tumultuous threats amid Russia-Ukraine cyber war
New report underscores burned-out security teams' response to geopolitically motivated cyber attacks
8 Aug 2022
What is Dark Utilities C2 as a service (C2aaS)?
What is Dark Utilities C2 as a service (C2aaS)?
Hackers can use the service to launch cyber attacks with ease for as little as £8.50
8 Aug 2022
Nomad happy to forgive hackers if they return 90% of $190 million that was stolen
Nomad happy to forgive hackers if they return 90% of $190 million that was stolen
The crypto bridge is offering 'white hat hackers' a 10% bounty following the attack earlier this week
5 Aug 2022
Auditors blame massive $4 million cryptocurrency heist on leaky logging technology
Auditors blame massive $4 million cryptocurrency heist on leaky logging technology
Investigators raised concern over the thousands of vulnerable wallets containing Solana, USDC and other tokens
4 Aug 2022
Tory party delays leadership selection over hacking fears
Tory party delays leadership selection over hacking fears
The Conservatives have also been forced to abandon plans to allow members to change their vote later in the contest
3 Aug 2022
Nomad crypto bridge drained of $190 million through “chaotic” exploit
Nomad crypto bridge drained of $190 million through “chaotic” exploit
The Nomad team has notified law enforcement and retained leading firms for blockchain intelligence and forensics, it said in a statement on Twitter
2 Aug 2022
Twitter API keys found leaked in over 3,200 apps, raising concerns for linked accounts
Twitter API keys found leaked in over 3,200 apps, raising concerns for linked accounts
Business and verified Twitter accounts linked to affected apps are at risk of takeover, use in malicious campaigns
2 Aug 2022
Cyber attack on US court system being investigated, DoJ confirms
Cyber attack on US court system being investigated, DoJ confirms
The early 2020 attack, publicly disclosed for the first time this week, is thought to have had a "staggering effect" on the department and other agenc…
29 Jul 2022
Data on 69 million Neopets users stolen and listed for sale on hacker forum
Data on 69 million Neopets users stolen and listed for sale on hacker forum
Email addresses, passwords, and zip codes are all thought to have been stolen by the hacker
21 Jul 2022
GPS tracker exploit puts the world's most high-value individuals in real-world danger
GPS tracker exploit puts the world's most high-value individuals in real-world danger
Vulnerabilities in a GPS tracker used by governments, militaries, and Fortune 50 companies could be used to track the locations of high-value targets …
20 Jul 2022
Roblox hacker posts stolen documents online
Roblox hacker posts stolen documents online
The company said that it has been investigating a phishing incident in which an employee was targeted through social engineering
18 Jul 2022
Will FIDO passwordless authentication save cyber security?
Will FIDO passwordless authentication save cyber security?
Plans to eradicate passwords from the business landscape are underway, but there are significant hurdles to overcome
14 Jul 2022
Australian university suffers data breach of 47,000 students
Australian university suffers data breach of 47,000 students
The attacker also launched a smishing attempt while inside the university’s systems
13 Jul 2022
SHI malware attack causes major disruption and forces staff offline
SHI malware attack causes major disruption and forces staff offline
IT supplier says there's no evidence to suggest customer data was exfiltrated during the "security incident" attack
8 Jul 2022
HackerOne employee fired for using position to steal bug bounties
HackerOne employee fired for using position to steal bug bounties
The threat actor was identified by their duplicate data, which they were trying to pass off as their own for financial gain
4 Jul 2022
Businesses urged to abandon Microsoft Exchange legacy authentication earlier than planned
Businesses urged to abandon Microsoft Exchange legacy authentication earlier than planned
Basic Auth will be turned off by Microsoft in October, but CISA wants all organisations to migrate from the vulnerable method as soon as possible
30 Jun 2022
How does a SQL injection attack work?
How does a SQL injection attack work?
Understanding one of the simplest, yet most effective, methods of cyber attack
10 Jun 2022
Palermo ransomware attack: Vice Society claims responsibility as city details recovery strategy
Palermo ransomware attack: Vice Society claims responsibility as city details recovery strategy
The Italian municipality is attempting to defy attackers by restoring its systems from backups
10 Jun 2022
WithSecure CTO: Industry needs to do a better job of targeting ransomware supply chains
WithSecure CTO: Industry needs to do a better job of targeting ransomware supply chains
The centralisation of services and tools for hackers should represent a point of vulnerability for those fighting cyber crime
1 Jun 2022
Fresh Microsoft Office zero-day executes code on fully patched applications
Fresh Microsoft Office zero-day executes code on fully patched applications
Malicious documents saved in Rich Text Format are especially concerning since they can execute code without even being opened
30 May 2022
What is hacktivism?
What is hacktivism?
From Anonymous to Omega, here’s everything you need to know about hackers with a conscience
27 May 2022
Linux-based Cheerscrypt ransomware found targeting VMware ESXi servers
Linux-based Cheerscrypt ransomware found targeting VMware ESXi servers
Cheerscrypt malware could cause severe disruption to companies using the virtualisation software
26 May 2022