Cybersecurity News

In a recent cybersecurity incident, Fortinet, a prominent network security company, has confirmed a data breach affecting a small portion of its customer base. The attack, which involved unauthorized access to the company’s Azure SharePoint server, has raised concerns about cloud storage security and data protection practices. The Breach: What We Know On September 12, … Read more

In the wake of a significant cybersecurity breach, Transport for London (TfL) is taking unprecedented steps to fortify its digital defenses. Nearly 30,000 municipal employees are now required to undergo in-person identity verification and password resets, highlighting the severity of the attack and the organization’s commitment to enhancing its security protocols. The Anatomy of the … Read more

Cybersecurity experts have uncovered a new malicious campaign targeting Linux environments, leveraging the Hadooken malware to conduct illegal cryptocurrency mining operations and propagate botnet malware. This sophisticated attack primarily focuses on Oracle WebLogic servers, exploiting known vulnerabilities and misconfigurations to gain unauthorized system access. The Anatomy of Hadooken Attacks Researchers at Aqua Security identified this … Read more

In a recent cybersecurity incident, Kawasaki Motors Europe (KME), a subsidiary of the renowned Japanese manufacturer Kawasaki Heavy Industries, Ltd., has found itself at the center of a sophisticated cyber attack. The company, known for producing motorcycles, all-terrain vehicles, and various types of machinery, is now in the process of recovery while facing threats from … Read more

In a significant cybersecurity incident, Slim CD, a prominent U.S.-based payment processing provider, has disclosed a major data breach affecting approximately 1.7 million customers. The breach, which persisted for nearly a year, has potentially exposed sensitive financial and personal information, raising concerns about identity theft and financial fraud. Timeline and Scope of the Breach According … Read more

Cybersecurity experts at ReversingLabs have uncovered a sophisticated attack campaign orchestrated by the notorious North Korean hacking group Lazarus. The group is targeting Python developers with fake job offers, using a clever ruse involving a non-existent password manager project to distribute malware. The VMConnect Campaign: A Year-Long Cyber Threat This latest attack is part of … Read more

Cybersecurity experts at Kaspersky Lab have recently uncovered evidence that the notorious hacking group known as Twelve has resumed its malicious activities targeting Russian state-owned companies. This revelation comes after several months of apparent inactivity, signaling a potential escalation in cyber threats against Russian organizations. Background and Recent Activities The Twelve group first emerged in … Read more

In a significant move to bolster cybersecurity, WordPress.org has announced that starting October 1, 2024, all accounts with commit access to plugins and themes will be required to implement two-factor authentication (2FA). This decision marks a crucial step in safeguarding the WordPress ecosystem and mitigating the risk of supply chain attacks. The Imperative for Enhanced … Read more

In a significant development in the cybersecurity landscape, the UK’s National Crime Agency has apprehended a 17-year-old suspect in connection with a major cyber attack on Transport for London (TfL). This incident, which occurred on September 1, 2024, disrupted various IT systems and services, highlighting the vulnerability of critical infrastructure to digital threats. The Attack … Read more

A significant cybersecurity incident has struck Mobile Guardian, a prominent partner of Google for Education, affecting educational devices worldwide. The breach, which occurred on August 4, 2024, has impacted the company’s cross-platform device management solution used on students’ iPads and Chromebooks across North America, Europe, and Singapore. The Extent of the Breach Mobile Guardian reported … Read more