Tokyo police are investigating a series of cyberattacks on roughly 200 Japanese companies and research organizations. Initial investigations point towards a hacking group believed to be linked to the Chinese military, according to a statement made by the Japanese government on Tuesday. Among the list of hacked organizations is the

According to cybersecurity researchers, at least two threat groups have spent months taking advantage of a previously undisclosed vulnerability in US virtual private networking (VPN) devices, exploiting the flaw to spy on the US defense industry. Cybersecurity researchers at Ivanti stated that hackers took advantage of the flaw in its

Codecov, a DevOps tool provider, suffered from a security breach that has impacted hundreds of clients, according to new information provided by US investigators working on the case. According to the investigators, the attackers responsible for the attack managed to both exploit Codecov software and use the organization as a

SonicWall released a security alert on Tuesday stating that they had published fixes to address three critical issues being actively exploited in the wild. The company urged its customers to apply the patches as soon as possible. The vulnerabilities lie in its email security solution, impacting hosted and on-premises email

The University of Portsmouth continues to struggle to recover from a suspected ransomware attack, with key IT systems still down. The attack occurred roughly a week ago, delaying the start of the new term. The university stated that an ongoing technical disruption caused the outage in a notice displayed on

The NitroRansomware malware strain launched a new campaign demanding Discord Nitro gift codes from victims instead of actual money. Although this seems like a less viable threat, research into the campaign showed that the NitroRansomware can then inflict serious damage in follow-up attacks on the same victims. The platform, Discord

Facebook has recently resolved an issue that allowed attackers to delete content posted on Facebook Live without the consent of the video’s owner. Just two days ago, cybersecurity researcher Ahmad Talahmeh posted an advisory explaining how the vulnerability worked and providing a Proof-of-Concept code that was able to trigger an

Ukrainian national Fedir Hladyr has received 10 years behind bars for his part in financial crimes that cost firms and consumers billions. Hladyr was the manager and sysadmin for FIN7, also known as Carbanak, which is believed to have made millions of dollars by targeted banks, restaurants, gambling, and hospitality

The National Security Agency (NSA) has released an alert warning that five vulnerabilities are being actively targeted by nation-state actors. The bugs affect VPN solutions, collaboration-suite software, and virtualization technologies in widely deployed platforms from Citrix, Fortinet, Pulse Secure, Synacor, and VMware. According to the NSA, the goal of the

Google has announced that they will not publish vulnerabilities details for 30 days after the initial public disclosure, allowing customers more time to fix the bugs and implement patches before technical details are released that could potentially be used by an attacker to exploit the flaw. Google’s Project Zero team