06 Mar 2020

Zoho zero-day published on Twitter

Yesterday, security researchers reported a zero-day vulnerability in a Zoho enterprise product. The zero-day impacts the Zoho ManageEngine Desktop Central, an endpoint management solution. Android smartphones, Linux servers, and Mac/Windows workstations are often all controlled by Zoho ManageEngine Desktop Central. This means that the zero-day could have a large impact

Read More
04 Mar 2020

Let’s Encrypt to revoke 3 million certificates on March 4 due to software bug

On Wednesday, March 4, the Let’s Encrypt project plans to revoke more than 3 million TLS certificates after it discovered a bug hidden within its backend’s code. The bug impacted Let’s Encrypt server software, called Boulder, that the company uses to verify users and their domains before they issue a

Read More
04 Mar 2020

U.S. Is Only The 17th ‘Most Cyber-Secure’ Country, Study Shows

Cybersecurity research organization Comparitech has published a document that lists the US as 17th in terms of the most secure countries when it comes to cyber readiness. Of the 60 countries that were included in last year’s rankings, only 6 have a worse score, and one of them is the

Read More
03 Mar 2020

Lockheed Martin, SpaceX And Tesla Caught In Cyber Attack Crossfire

In late February, the research firm Emsisoft alerted Forbes journalists that they believed that SpaceX and Tesla had been hacked due to the discovery of published non-disclosure agreement documents related to the companies by a cybercrime group. Cybercriminals targeted a precision parts manufacturer that supplies automotive and aeronautics parts to

Read More
03 Mar 2020

iPhone, Pixel And Galaxy Smartphones Silently Compromised By $5 Hack

Samsung has reportedly joined iPhone and Pixel by introducing a new secure element chip to the Galaxy S20, bringing new hardware to the sensitive smartphone data storage party. However, Samsung, Apple, and Google are all being targeted by advanced hacking technology according to security researchers. A paper and supporting videos

Read More
03 Mar 2020

Nemty Ransomware Punishes Victims by Posting Their Stolen Data

The latest cybercrime operation involving Nemty Ransomware has been stealing victim’s files before encrypting computers and publicly posting the files if the victim does not agree to pay ransom demands. The newest campaign uses a data leak site to punish victims who refuse to pay, and the information released has

Read More
02 Mar 2020

US Railroad Contractor Reports Data Breach After Ransomware Attack

RailWorks Corporation disclosed a ransomware attack that resulted in employees’ personally identifiable information being exposed. RailWorks Corporation is one of North America’s leading railroad track and transit system providers. The breach affected current and former employees, their beneficiaries and dependents, as well as those of independent contractors. The company currently

Read More
02 Mar 2020

Walgreens says mobile app leaked users’ personal data

Walgreen, a US pharmacy chain stated on Friday that it had been the victim of a data breach that exposed the personal detail of some of its mobile app users. The mobile app contained a bug that allowed users to view other users’ personal data and drug prescription details. This

Read More
27 Feb 2020

Billions of Devices Open to Wi-Fi Eavesdropping Attacks

A serious vulnerability in Wi-Fi chips manufactured by Broadcom and Cypress has been discovered. The flaw reveals communications from devices from Amazon, Google, Samsung, and others, allowing attackers to eavesdrop on Wi-Fi communications. The bug breaks the WPA2-Personal and WPA-2 Enterprise security protocols as it stems from the use of

Read More
26 Feb 2020

Ransomware Attack at US Power Station

The Reading Municipal Light Department, a Massachusetts power station, was hit by ransomware over the weekend, causing its website to be down, however, the attack did not interrupt electricity services and RMLD’s grid remains secure. The company is refusing to meet the attackers’ demands of a ransom payment. The cybercriminals

Read More