The Biden administration has introduced a new visa restriction policy aimed at curbing the misuse of commercial spyware. Secretary of State Antony Blinken emphasized the policy's broad target, stating it would affect those involved in the misuse of commercial spyware to target journalists,
Mastodon, an open source and decentralized social media platform, is currently in the midst of a security alert. Cybersecurity experts have disclosed a critical vulnerability, dubbed CVE-2024-23832, that leaves millions of accounts at risk of being hijacked by malicious actors. The flaw scored a
Johnson Controls International, a leading multinational conglomerate, has reported a staggering $27 million in expenses tied to the remediation of a ransomware attack that occurred in September 2023. The attack, which was first reported by BleepingComputer, was orchestrated by the Dark Angels
In a recent development, Ivanti has warned of new zero-day vulnerabilities in its Connect Secure VPN appliance, first exploited by Chinese state-backed hackers in early December 2023. Identified as CVE-2023-46805, CVE-2024-21887, CVE-2024-21888, and CVE-2024-21893, these flaws put customer networks
In a significant cybersecurity incident, Keenan & Associates, a subsidiary of AssuredPartners Inc., has reported a data breach impacting approximately 1.5 million individuals. The breach, which was discovered on August 27, 2023, involved unauthorized access to the company's internal systems
The US National Security Agency (NSA) has been buying Americans’ internet browsing data from commercial data brokers without obtaining warrants. This practice, which involves collecting web browsing information, such as the websites visited and apps used by Americans, came to light through
On January 22, 2024, Bob Dyachenko, owner of SecurityDiscovery.com, along with researchers from Cybernews, announced they had discovered a massive leak containing 26 billion records. The data consists of sensitive user information from popular sites like Twitter, Weibo, Tencent, LinkedIn, Dropbox,
The first-ever Pwn2Own Automotive competition has concluded with hackers collectively earning a staggering $1,323,750 by exposing 49 zero-day vulnerabilities, primarily in Tesla vehicles. Organized by Trend Micro's Zero Day Initiative (ZDI) during the Automotive World conference, the event in
The BianLian ransomware group, notorious for its evolving strategies, has now intensified its focus on the healthcare and manufacturing sectors in the United States and Europe. This move signals a significant threat to data security and operational stability in these critical
Microsoft has disclosed that a Russian hacking group, identified under the aliases Midnight Blizzard, APT29, Cozy Bear, and Nobelium, infiltrated the email accounts of several of the company’s senior leaders. The attack was first detected on January 12, 2024. It marks another significant breach by