19 May 2022

Personal Information of Nearly Two Million Texans Exposed

According to a public notice released by the Texas Department of Insurance, the personal information of roughly two million Texans was left exposed on the internet for three years due to a programming issue. The department stated that the details of workers who have filed compensation claims were left unsecured

Read More
19 May 2022

Patch these vulnerable VMware products or remove them from your network, CISA warns federal agencies

The Cybersecurity and Infrastructure Security Agency (CISA) has warned companies that certain VMware products affected by newly disclosed critical flaws. The CISA recommends that these products be patched or removed from the network entirely to mitigate the risks posed by the vulnerabilities. The removal of the products if they cannot

Read More
18 May 2022

Ransomware Hits American Healthcare Company Omnicell

Omnicell, a multinational healthcare company, has recently confirmed that it suffered from a data breach following a reported ransomware incident. According to a statement released in the company’s quarterly 10-Q filing, Omnicell detected the ransomware attack and disclosed it on May 9. More details are expected to be released in

Read More
18 May 2022

Vulnerabilities found in Bluetooth Low Energy gives hackers access to numerous devices

Cybersecurity researchers at NCC Group have found a critical flaw in Bluetooth Low Energy (BLE) receivers. The flaw may grant cyber criminals access to a range of devices, including phones, laptops, cars, and houses. NCC Group details how BLE uses proximity to authenticate that the user is within a close

Read More
18 May 2022

Wizard Spider hackers hire cold callers to scare ransomware victims into paying up

Security researchers at PRODAFT published the results of its investigation into Wizard Spider, a threat actor that is believed to be associated with the Grim Spider and Lunar Spider hacking groups. The report was released on Wednesday and details the group’s illegal activities, including the practice of hiring cold callers

Read More
17 May 2022

Microsoft Identifies Botnet Variant Targeting Windows and Linux Systems

Microsoft has reportedly discovered a new variant of the Sysrv botnet, which possesses the ability to deploy coin miners on Windows and Linux systems. Microsoft Security Intelligence released a string of posts on Twitter discussing the discovery, which it has named Sysrv-K, and how it is exploiting vulnerabilities in the

Read More
17 May 2022

US Manufacturing Giant Parker Hit by Conti Ransomware Gang

Parker-Hannifin Corporation, a US manufacturing company, has confirmed that it was impacted by a data breach that has exposed employees’ personally identifiable information (PII). According to the firm, Conti ransomware actors published the stolen data last month after claiming responsibility for the attack. Parker-Hannifin is one of the largest motion

Read More
17 May 2022

FBI says hackers used malicious PHP code to grab credit card data

The Federal Bureau of Investigations (FBI) has warned that an unknown threat actor is scraping credit card data from the checkout process of US businesses. The campaign targeting the e-commerce industry is leveraging the malicious PHP Hypertext Preprocessor (PHP) code into the business’ online checkout page. Then, the inputted information

Read More
16 May 2022

Italian Police Foil Pro-Russia Attacks on Eurovision

Italian law enforcement authorities have reportedly mitigated efforts by pro-Russian hackers who sought to disrupt the Eurovision Song Contest over the weekend. The final of the annual competition took place in Turin on Saturday, without Russia, who was banned this year due to its invasion of Ukraine. The eventual winner

Read More
16 May 2022

EU Agrees New Cybersecurity Legislation for Critical Services Organizations

This month, the European Union (EU) has reached an agreement on new legislation that will enact cybersecurity standards for critical industry organizations in order to protect the infrastructure of the EU from cyberattacks. The new directive falls into the EU’s existing rules on the security of network and information systems

Read More