YARA 4.5.3 was released with 5 bugfixes. I want to take this as an opportunity to remind you that YARA is to be replaced with YARA-X, a rewrite in Rust. YARA-X is already powering VirusTotal. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Category: North America
Global Security News, North America
YARA 4.5.3 Release, (Sun, Jun 1st)
YARA 4.5.3 was released with 5 bugfixes. I want to take this as an opportunity to remind you that YARA is to be replaced with YARA-X, a rewrite in Rust. YARA-X is already powering VirusTotal. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Global Security News, North America
YARA 4.5.3 Release, (Sun, Jun 1st)
YARA 4.5.3 was released with 5 bugfixes. I want to take this as an opportunity to remind you that YARA is to be replaced with YARA-X, a rewrite in Rust. YARA-X is already powering VirusTotal. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Global Security News, North America
YARA 4.5.3 Release, (Sun, Jun 1st)
YARA 4.5.3 was released with 5 bugfixes. I want to take this as an opportunity to remind you that YARA is to be replaced with YARA-X, a rewrite in Rust. YARA-X is already powering VirusTotal. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Global Security News, North America
YARA 4.5.3 Release, (Sun, Jun 1st)
YARA 4.5.3 was released with 5 bugfixes. I want to take this as an opportunity to remind you that YARA is to be replaced with YARA-X, a rewrite in Rust. YARA-X is already powering VirusTotal. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Global Security News, North America
Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore
An Iranian national has pleaded guilty in the U.S. over his involvement in an international ransomware and extortion scheme involving the Robbinhood ransomware. Sina Gholinejad (aka Sina Ghaaf), 37, and his co-conspirators are said to have breached the computer networks of various organizations in the United States and encrypted files with Robbinhood ransomware to demand…
FedRAMP, Global Security News, North America, Security Bloggers Network
How FedRAMP Reciprocity Works with Other Frameworks
FedRAMP is the Federal Risk and Authorization Management Program, and it’s one of the most widely used governmental cybersecurity frameworks across the United States. It’s meant to serve as the gatekeeper for any contractor looking to work with the federal government to ensure that everyone across the board has a minimum level of cybersecurity in…
Cybercrime, Europol, Federal Bureau of Investigation (FBI), Global Security News, Government, Hijackloader, initial access brokers, Lactrodectus, North America, operation endgame, QakBot, Ransomware, TrickBot, Uncategorized, Warmcookie
Large-scale sting tied to Operation Endgame disrupts ransomware infrastructure
Law enforcement agencies from Europe and North America have dismantled key infrastructure behind several leading malware strains used in ransomware attacks, the latest action in a yearslong effort to combat cybercriminals. The operation, conducted as part of Operation Endgame, targeted the early stages of the cybercrime chain, focusing on initial access malware. The coordinated effort…
Apple, Global Security News, Government & Policy, North America, Trump
Trump threatens 25% tariffs on iPhones made outside the US
President Trump lashed out at Apple on Friday, threatening the company with a 25% tariff on iPhones unless it moves production to the U.S. “I have long ago informed Tim Cook of Apple that I expect their iPhone’s [sic] that will be sold in the United States of America will be manufactured and built in…
A Little Sunshine, eset, fbi, Flashpoint, Global Security News, Google, Intel 471, JimmBee, lumen, Lumma Stealer, Maffiozi, Microsoft, Ne'er-Do-Well News, North America, Onix, proofpoint, Russia's War on Ukraine, team cyrmu, U.S. Department of Justice, Zscaler
Oops: DanaBot Malware Devs Infected Their Own PCs
The U.S. government today unsealed criminal charges against 16 individuals accused of operating and selling DanaBot, a prolific strain of information-stealing malware that has been sold on Russian cybercrime forums since 2018. The FBI says a newer version of DanaBot was used for espionage, and that many of the defendants exposed their real-life identities after…
Global Security News, Government, North America, Security
Chinese hackers breach US local governments using Cityworks zero-day
Chinese-speaking hackers have exploited a now-patched Trimble Cityworks zero-day to breach multiple local governing bodies across the United States. […]
Global Security News, North America
Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks
A recently patched pair of security flaws affecting Ivanti Endpoint Manager Mobile (EPMM) software has been exploited by a China-nexus threat actor to target a wide range of sectors across Europe, North America, and the Asia-Pacific region. The vulnerabilities, tracked as CVE-2025-4427 (CVSS score: 5.3) and CVE-2025-4428 (CVSS score: 7.2), could be chained to execute…
Cybersecurity, eset, Fancy Bear, Global Security News, Government, GRU, nato, North America, phishing, powershell, PsExec, Russia, Threats, Transportation, Ukraine
Multi-national warning issued over Russia’s targeting of logistics, tech firms
A joint advisory from intelligence and cybersecurity agencies in the United States, United Kingdom, Canada, Australia and multiple European countries has detailed an ongoing Russian state-sponsored campaign targeting Western logistics organizations and technology companies, especially those supporting aid to Ukraine. The campaign, orchestrated by the group known as APT28 or Fancy Bear, has relied heavily…
Cybercrime, fbi, Federal Bureau of Investigation (FBI), Global Security News, Matthew Lane, North America, powerschool, Ransomware, Shiny Hunters, ShinyHunters, Technology, U.S. courts
Massachusetts man will plead guilty in PowerSchool hack case
A Massachusetts man will plead guilty to charges related to the hack of PowerSchool, the education software vendor that says it supports more than 60 million students, and that led to ransom demands at school boards and districts across the United States. In court documents filed Tuesday, prosecutors spelled out charges against 19-year-old Assumption University…
ANYRUN, Cybersecurity, Global Security News, malware, Malware Analysis, malware behavior, North America
How Adversary Telegram Bots Help to Reveal Threats: Case Study
While analyzing malware samples uploaded to ANY.RUN’s Interactive Sandbox, one particular case marked as “phishing” and “Telegram” drew the attention of our security analysts. Although this analysis session wasn’t attributed to any known malware family or threat actor group, the analysis revealed that Telegram bots were being used for data exfiltration. This led us to…
ANYRUN, Cybersecurity, Global Security News, malware, Malware Analysis, malware behavior, North America
How Adversary Telegram Bots Help to Reveal Threats: Case Study
While analyzing malware samples uploaded to ANY.RUN’s Interactive Sandbox, one particular case marked as “phishing” and “Telegram” drew the attention of our security analysts. Although this analysis session wasn’t attributed to any known malware family or threat actor group, the analysis revealed that Telegram bots were being used for data exfiltration. This led us to…
ANYRUN, Cybersecurity, Global Security News, malware, Malware Analysis, malware behavior, North America
How Adversary Telegram Bots Help to Reveal Threats: Case Study
While analyzing malware samples uploaded to ANY.RUN’s Interactive Sandbox, one particular case marked as “phishing” and “Telegram” drew the attention of our security analysts. Although this analysis session wasn’t attributed to any known malware family or threat actor group, the analysis revealed that Telegram bots were being used for data exfiltration. This led us to…
ANYRUN, Cybersecurity, Global Security News, malware, Malware Analysis, malware behavior, North America
How Adversary Telegram Bots Help to Reveal Threats: Case Study
While analyzing malware samples uploaded to ANY.RUN’s Interactive Sandbox, one particular case marked as “phishing” and “Telegram” drew the attention of our security analysts. Although this analysis session wasn’t attributed to any known malware family or threat actor group, the analysis revealed that Telegram bots were being used for data exfiltration. This led us to…
Global Security News, immersive content, Media & Entertainment, North America, riyadh, VUZ
VUZ gets $12M for its immersive video experiences across emerging markets and the U.S.
VUZ, a startup known for offering immersive video experiences from red carpets and football stadiums, has raised $12 million as it doubles down on its presence in Saudi Arabia and the United Arab Emirates, as well as accelerates expansion into Africa, Asia, and the United States. The pre-Series C funding round, led by the International…
Crypto, Cybercrime, Cybersecurity, extortion, Financial, Global Security News, North America, Ransomware
Coinbase flips $20M extortion demand into bounty for info on attackers
Coinbase responded to a security incident with combative measures Thursday after the company said cybercriminals bribed some of the cryptocurrency exchange’s international support staff to steal data on customers. The unnamed threat group stole personally identifiable information and other sensitive data on less than 1% of Coinbase’s monthly users, the company said in a blog…
data breach, Data loss, Global Security News, Guest blog, Healthcare, North America, vulnerability
Prescription for disaster: Sensitive patient data leaked in Ascension breach
Ascension, one of the largest private healthcare companies in the United States, has confirmed that the personal data of some 437,329 patients has been exposed following an attack by cybercriminals. Read more in my article on the Fortra blog.
AI, Congress, Cybercrime, Cybersecurity, deepfakes, FTC, Global Security News, Government, North America, Take It Down Act
FTC wants a new, segregated software system to police deepfake porn
The head of the Federal Trade Commission described to lawmakers Thursday new technology, personnel and infrastructure the agency needs as it prepares to implement and enforce the Take It Down Act, placing the FTC’s enforcement wing at the forefront of the fight against nonconsensual deepfake pornography. The FTC’s proposed budget holds funding at $425.7 million,…
electric vehicles, EVs, Global Security News, Lucid Motors, North America, Transportation
Lucid’s record quarter got a lift from rental sales and company leases
Lucid Motors set a company record for deliveries in the first quarter of 2025, shipping 3,109 EVs to customers in North America, Europe, and Saudi Arabia. It appears that a new company car program and sales to rental fleets helped it get there. According to a footnote in Lucid Motors’ latest regulatory filing, it sold…
Global Security News, North America, Security
Hackers behind UK retail attacks now targeting US companies
Google warned today that hackers using Scattered Spider tactics against retail chains in the United Kingdom have also started targeting retailers in the United States. […]
Global Security News, North America, Security
Kosovo extradites BlackDB admin to face US cybercrime charges
A Kosovo national has been extradited to the United States to face charges of running an online cybercrime marketplace active since 2018. […]
Cybercrime, Cybersecurity, Department of Justice (DOJ), extradition, Federal Bureau of Investigation (FBI), Global Security News, North America
Federal prosecutors extradite alleged leader of BlackBD.cc cybercrime marketplace
Liridon Masurica, the alleged lead administrator of cybercrime marketplace BlackDB.cc, was extradited to the United States on Friday and faces charges that carry a maximum penalty of 55 years in federal prison, the Justice Department said Tuesday. Masurica, 33, who is also known as “@blackdb,” was arrested by authorities in Kosovo on Dec. 12. He…
Cybercrime, Cybersecurity, Department of Justice, Department of Justice (DOJ), fbi, Federal Bureau of Investigation (FBI), Global Security News, indictment, malware, North America, routers, Threats
US seizes Anyproxy, 5socks botnets and indicts alleged administrators
Federal authorities seized two domains and indicted four foreign individuals for alleged involvement in a long-running botnet service that infected older wireless internet routers, the Justice Department said Friday. The malware created for the botnet allowed infected routers to be reconfigured, which granted unauthorized access to third parties and made the routers available for sale…
Global Security News, North America, Technology, World
Google Worried It Couldn’t Control How Israel Uses Project Nimbus, Files Reveal
Before signing its lucrative and controversial Project Nimbus deal with Israel, Google knew it couldn’t control what the nation and its military would do with the powerful cloud-computing technology, a confidential internal report obtained by The Intercept reveals. The report makes explicit the extent to which the tech giant understood the risk of providing state-of-the-art…
Global Security News, Healthcare, North America, Security
Ascension says recent data breach affects over 430,000 patients
Ascension, one of the largest private healthcare systems in the United States, has revealed that a data breach disclosed last month affects the personal and healthcare information of over 430,000 patients. […]
Global Security News, North America
Operation PowerOFF Takes Down 9 DDoS-for-Hire Domains
Four different countries, including the United States and Germany, were included in the latest international operation alongside Europol’s support.
Global Security News, North America, Politics, Technology
Democrats Woke Up to Trump’s Crypto Grift. Will They Stop Other Scammers?
Cryptocurrency legislation once seemed to be the rare issue that could draw bipartisan support in Donald Trump’s Washington, thanks to the industry’s prolific donations on both sides of the aisle. Then Trump and his family attempted to monetize the presidency through a meme coin and a $2 billion crypto deal involving an Abu Dhabi-backed venture…
AI, energy, Global Security News, North America, Transportation, Venture
Bosch Ventures’ new $270M fund is turning its attention to North America
The venture arm of Bosch has a new $270 million fund that will continue in its tradition of investing in deep-tech startups. And this time, Bosch Ventures plans to put more of its money into North American startups. Bosch Ventures, which launched in 2007, is on its sixth fund. And while the corporate VC is…
Cybercrime, Cybersecurity, Data Breaches, education, extortion, Global Security News, North America, Ransomware, stolen credentials, Threats
PowerSchool customers hit by downstream extortion threats
Five months after education software vendor PowerSchool paid an unnamed threat actor a ransom in exchange for the deletion of sensitive stolen data, some of the company’s customers are now receiving extortion demands. A threat actor, who may or not be the same criminal group behind the attack, has contacted four school district customers of…
A Little Sunshine, Breadcrumbs, eWorldTrade, Federal Investigation Agency, Global Security News, Intersys Limited, Junaid Mansoor, Majestic Ghostwriting, Muhammad Burhan Mirza, NatInfoSec, Ne'er-Do-Well News, North America, Octa Group Technologies AU, Qasim Mansoor, Retrocube LLC, The New York Times, U.S. Department of Justice, U.S. Patent and Trademark Office, Vertical Minds LLC, Web Fraud 2.0
Pakistani Firm Shipped Fentanyl Analogs, Scams to US
A Texas firm recently charged with conspiring to distribute synthetic opioids in the United States is at the center of a vast network of companies in the U.S. and Pakistan whose employees are accused of using online ads to scam westerners seeking help with trademarks, book writing, mobile app development and logo designs, a new…
Global Security News, North America
Europol Shuts Down Six DDoS-for-Hire Services Used in Global Attacks
Europol has announced the takedown of distributed denial of service (DDoS)-for-hire services that were used to launch thousands of cyber-attacks across the world. In connection with the operation, Polish authorities have arrested four individuals aged between 19 and 22 and the United States has seized nine domains that are associated with the now-defunct platforms. “The…
Global Security News, North America
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization
Threat actors with links to the Play ransomware family exploited a recently patched security flaw in Microsoft Windows as a zero-day as part of an attack targeting an unnamed organization in the United States. The attack, per the Symantec Threat Hunter Team, part of Broadcom, leveraged CVE-2025-29824, a privilege escalation flaw in the Common Log…
Global Security News, Microsoft, North America
New Microsoft 365 outage impacts Teams and other services
Microsoft is investigating a new Microsoft 365 outage affecting multiple services across North America, including the company’s Teams collaboration platform. […]
Global Security News, North America, Security
Luna Moth extortion hackers pose as IT help desks to breach US firms
The data-theft extortion group known as Luna Moth, aka Silent Ransom Group, has ramped up callback phishing campaigns in attacks on legal and financial institutions in the United States. […]
Cloud Security, Cyberlaw, Cybersecurity, Data Security, environmental groups, Featured, Global Security News, hacking, Identity & Access, Industry Spotlight, malware, Nefilim, Network Security, News, North America, Ransomware, Security Awareness, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Spotlight
U.S. Wins One, Maybe Two, Extradition Petitions in Unrelated Cases
In short order, U.S. prosecutors won an extradition case to bring a suspect in multiple ransomware cases to the United States and had another in England move in their favor when the British judge paved the way for an alleged hacker hired by a lobbyist firm to target climate change activists involved in lawsuits against…
Global Security News, Legal, North America, Security
US indicts Black Kingdom ransomware admin for Microsoft Exchange attacks
A 36-year-old Yemeni national, who is believed to be the developer and primary operator of ‘Black Kingdom’ ransomware, has been indicted by the United States for conducting 1,500 attacks on Microsoft Exchange servers. […]
Cybercrime, Cybersecurity, Department of Justice (DOJ), encryption, extortion, Federal Bureau of Investigation (FBI), Global Security News, North America, Ransomware, Ukraine
Ukrainian extradited to US for alleged Nefilim ransomware attack spree
Federal authorities extradited a Ukrainian citizen to the United States on Wednesday to face charges for participating in a series of ransomware cyberattacks on organizations based in the U.S. and multiple European countries. Artem Stryzhak, 35, was arrested in Spain in June 2024 and was scheduled to appear for arraignment Thursday in the U.S. District…
Global Security News, Government, National Security Council (NSC), North America, offensive cybersecurity, RSAC 2025 Conference, White House
National Security Council cyber lead wants to ‘normalize’ offensive operations
SAN FRANCISCO — The senior director for cyber at the White House’s National Security Council told an audience Thursday that he wants to “destigmatize” offensive cyber operations, seeing them as a vital tool in the government’s playbook in its battle with foreign adversaries. Alexei Bulazel told an audience at the RSAC 2025 conference that he…
Global Security News, North America, Security
Ukrainian extradited to US for Nefilim ransomware attacks
A Ukrainian national has been extradited from Spain to the United States to face charges over allegedly conducting Nefilim ransomware attacks against companies. […]
A Little Sunshine, Evans Osiebo, Global Security News, Group-IB, Joel Evans, lastpass, Mailchimp, MGM, Ne'er-Do-Well News, Noah Urban, North America, Ransomware, Scattered Spider, SIM Swapping, Twilio, Tyler Robert Buchanan, Tylerb
Alleged ‘Scattered Spider’ Member Extradited to U.S.
A 23-year-old Scottish man thought to be a member of the prolific Scattered Spider cybercrime group was extradited last week from Spain to the United States, where he is facing charges of wire fraud, conspiracy and identity theft. U.S. prosecutors allege Tyler Robert Buchanan and co-conspirators hacked into dozens of companies in the United States…
china, Global Security News, Government, House Energy and Commerce Committee, microchips, Nanette Barragan, North America, Policy, Richard Hudson, Salt Typhoon, Tariffs, telecommunications, Telecommunications Industry Association, undersea cables
Tariffs could slow replacement of telecom networks, according to industry official
Tariff hikes will drive up prices and make it harder for telecommunications providers to replace networks more vulnerable to Chinese hacker intrusion, an industry official told lawmakers Wednesday. “Tariffs will only raise prices,” David Stehlin, CEO of the Telecommunications Industry Association, told Rep. Darren Soto, D-Fla. While it makes sense to find ways to bring…
Global Security News, Healthcare, North America, Security
Ascension discloses new data breach after third-party hacking incident
Ascension, one of the largest private healthcare systems in the United States, is notifying patients that their personal and health information was stolen in a December 2024 data theft attack, which affected a former business partner. […]
Global Security News, North America, Uncategorized
SecAI Debuts at RSA 2025, Redefining Threat Investigation with AI
San Francisco, United States, 29th April 2025, CyberNewsWire The post SecAI Debuts at RSA 2025, Redefining Threat Investigation with AI appeared first on Security Boulevard.
Global Security News, North America
Ransomware-Attacke bei Hitachi Vantara
Die Ransomware-Gruppe Akira soll bei Hitachis IT-Services- und Infrastruktur-Tochter zugeschlagen haben. TY Lim | shutterstock.com Vertreter von Hitachi Vantara haben gegenüber dem Security-Portal Bleeping Computer (BC) eingeräumt, dass das Unternehmen am 26. April mit Ransomware angegriffen wurde und in der Folge einige seiner Systeme offline nehmen musste. Als Tochterunternehmen des japanischen Hitachi-Konzerns ist Hitachi Vantara…
Cybersecurity, Global Security News, North America, Security Bloggers Network
New geolocus-cli For ONYPHE’s Geolocus Database
ONYPHE has made available a free API and free MMDB download of their new Geolocus database. It provided IP address metadata in the form of: { “abuse”: [ “amzn-noc-contact@amazon.com”, “aws-routing-poc@amazon.com”, “aws-rpki-routing-poc@amazon.com”, “trustandsafety@support.aws.com” ], “asn”: “AS14618”, “continent”: “NA”, “continentname”: “North America”, “country”: “US”, “countryname”: “United States”, “domain”: [ “amazon.com”, “amazonaws.com”, “aws.com” ], “ip”: “3.215.138.152”, “isineu”: 0,…
Global Security News, North America, Security
FBI seeks help to unmask Salt Typhoon hackers behind telecom breaches
The FBI has asked the public for information on Chinese Salt Typhoon hackers behind widespread breaches of telecommunications providers in the United States and worldwide. […]
Election Assistance Commission, Election Security, Global Security News, North America, voting systems
Judge tosses citizenship provisions in Trump elections order
A federal court partially blocked a Trump administration executive order Thursday that seeks to impose requirements on states to use the White House’s definition of “documentary proof” of citizenship, inhibit mail voting and other election-related elements by threatening to withhold federal funding. The order was subject to multiple lawsuits from Democratic Party organizations as well…
Global Security News, North America, Transportation, Uber
Uber customers can now earn Delta SkyMiles from rides or deliveries
Delta SkyMiles members in the United States can now start earning points when they ride with Uber or order delivery through Uber Eats as part of a recently announced exclusive partnership between the two companies. The tie-up with Delta is designed to further align the ride-hail giant with airport travel, which has historically been a…
Global Security News, North America
Microsoft Secures MSA Signing with Azure Confidential VMs Following Storm-0558 Breach
Microsoft on Monday announced that it has moved the Microsoft Account (MSA) signing service to Azure confidential virtual machines (VMs) and that it’s also in the process of migrating the Entra ID signing service as well. The disclosure comes about seven months after the tech giant said it completed updates to Microsoft Entra ID and…
Global Security News, North America
Chinese Smishing Kit Powers Widespread Toll Fraud Campaign Targeting U.S. Users in 8 States
Cybersecurity researchers are warning of a “widespread and ongoing” SMS phishing campaign that’s been targeting toll road users in the United States for financial theft since mid-October 2024. “The toll road smishing attacks are being carried out by multiple financially motivated threat actors using the smishing kit developed by ‘Wang Duo Yu,’” Cisco Talos researchers…
Global Security News, North America
Experts Uncover New XorDDoS Controller, Infrastructure as Malware Expands to Docker, Linux, IoT
Cybersecurity researchers are warning of continued risks posed by a distributed denial-of-service (DDoS) malware known as XorDDoS, with 71.3 percent of the attacks between November 2023 and February 2025 targeting the United States. “From 2020 to 2023, the XorDDoS trojan has increased significantly in prevalence,” Cisco Talos researcher Joey Chen said in a Thursday analysis.
Global Security News, Government, Security, Threat and Vulnerability Management, North America
MITRE funding still in up in the air, say experts
Infosec pros are relieved that the Trump administration at the last minute extended support for MITRE’s Common Vulnerabilities and Exposures (CVE) database, but at least one wonders if funding will continue. The program was set to expire today, but last night the US Cybersecurity and Infrastructure Security Agency (CISA) said the contract with MITRE has…
Apps, Global Security News, North America, Social, TikTok
TikTok begins testing Footnotes, a new Community Notes-like feature
TikTok is testing a new “Footnotes” feature that works similarly to Community Notes on X. The social network announced on Wednesday that Footnotes will allow users to add additional context and relevant information to videos to help others better understand certain content, starting in the United States. The company says Footnotes will complement its current…
Global Security News, North America
The ultimate guide to publishing a best selling cybersecurity book
Last week, my book Cyber for Builders: The Essential Guide to Building a Cybersecurity Startup crossed a new milestone – over 4,000 copies of the book have been delivered by Amazon. That is not all. In the short 1.5 years since the book was released, It became an Amazon Bestseller in several categories. It was…
data breach, Data loss, Global Security News, Guest blog, malware, Medusa, NASCAR, North America, Ransomware
Medusa ransomware gang claims to have hacked NASCAR
The Medusa ransomware-as-a-service (RaaS) claims to have compromised the computer systems of NASCAR, the United States’ National Association for Stock Car Auto Racing, and made off with more than 1TB of data. Read more in my article on the Hot for Security blog.
Fundraising, Global Security News, Hardware, North America, SpaceX, Startups, supply chain, Transportation
Parallel Systems is building autonomous electric rail for short-distance freight
The business of moving goods in the United States is dominated by trucks, which handles about two-thirds of the 20.2 billion tons of freight that’s transported annually. Parallel Systems founder and CEO Matt Soule wants to change that by putting a modern autonomous and electric twist on the centuries-old railroad system. The Los Angeles-based company…
Artificial Intelligence, Global Security News, Google, North America
Google’s AI video generator Veo 2 is rolling out on AI Studio
Google’s AI video generator tool Veo 2, which is the company’s take on OpenAI’s Sora, is now rolling out to some users in the United States. […]
AI, Events, Global Security News, North America, Security Bloggers Network, Uncategorized
Reimagining Democracy
Imagine that all of us—all of society—have landed on some alien planet and need to form a government: clean slate. We do not have any legacy systems from the United States or any other country. We do not have any special or unique interests to perturb our thinking. How would we govern ourselves? It is…
Cybersecurity, El Salvador, Global Security News, North America, NSO Group, privacy, Spyware, Technology, U.S. courts
Judges strike skeptical note of NSO Group’s argument to dismiss case from El Salvadoran journos
A panel of U.S. judges considering an appeal of a ruling that went against El Salvadoran journalists suing NSO Group over alleged infections of their phone by the company’s Pegasus spyware appeared more skeptical Thursday of the vendor’s arguments than those of the reporters. Judge James Donato of the District Court for the Northern District…
Global Security News, North America
What Should the US Do About Salt Typhoon?
Security experts weigh in on the problem Salt Typhoon and its hacking of telecoms poses against the United States, including what the US should do and how defenders can protect themselves.
Amnesty International, Cellebrite, Geopolitics, Global Security News, JD Work, Jen Ellis, National Security Council, National Security Council (NSC), NCC Group, North America, NSO Group, Pall Mall Process, privacy, Romania, Spyware
Cyber experts offer lukewarm praise for voluntary code governing use of commercial hacking tools
Cybersecurity professionals who participated in discussions over a code of conduct for nations to use commercial hacking tools said the final voluntary guidelines offer modest promise, even if they fall short of what some wanted. The next step for the joint France/U.K.-led Pall Mall Process, which last week got 21 signatories to the code, is…
Exclusive, Fintech, Global Security News, North America, Solid
Solid, which claimed to be the ‘AWS of fintech,’ files for bankruptcy after raising nearly $81M in funding
Banking-as-a-service startup Solid (formerly called Wise) has filed for Chapter 11 bankruptcy protection, according to documents filed in the United States Bankruptcy Court for the District of Delaware on April 7. Founded in 2018, the fintech company had raised a total of nearly $81 million in funding from investors such as FTV Capital and Headline.…
Australia, Canada, china, Citizen Lab, fbi, Federal Bureau of Investigation (FBI), Geopolitics, Germany, Global Security News, Lookout, National Security Agency, New Zealand, North America, Spyware, taiwan, Threats, Tibet, Uighur, United Kingdom (U.K.)
BadBazaar and Moonshine malware targets Taiwanese, Tibetan and Uyghur groups, U.K. warns
Two spyware variants are targeting Uyghur, Taiwanese and Tibetan groups and individuals, the U.K.’s National Cyber Security Centre warned in a joint alert Wednesday with Western allies. Cybersecurity researchers have previously linked the BADBAZAAR and MOONSHINE spyware to the Chinese government. The variants mentioned in Wednesday’s alert trojanize apps that are of interest to the…
Global Security News, North America
PipeMagic Trojan Exploits Windows Zero-Day Vulnerability to Deploy Ransomware
Microsoft has revealed that a now-patched security flaw impacting the Windows Common Log File System (CLFS) was exploited as a zero-day in ransomware attacks aimed at a small number of targets. “The targets include organizations in the information technology (IT) and real estate sectors of the United States, the financial sector in Venezuela, a Spanish…
Global Security News, North America
OCC email system breach described as ‘stunning, serious’
A cyber intrusion at the US Office of the Comptroller of the Currency (OCC) is “massively serious” and comes at a time when “the good work done to improve cybersecurity in the US is under extraordinary pressure,” a security analyst said Tuesday. David Shipley, head of Canadian security awareness training provider Beauceron Security, was responding…
fbi, Federal Bureau of Investigation (FBI), FISA, Global Security News, Government, House Judiciary Committee, Jamie Raskin, jim jordan, Kash Patel, National Security Agency, North America, Policy, privacy, Privacy and Civil Liberties Oversight Board (PCLOB), Section 702, surveillance
Privacy fights over expiring surveillance law loom after House hearing
Lawmakers on the House Judiciary Committee say privacy protections under a bill Congress passed to re-up a major surveillance law aren’t strong enough, and are gearing up for additional changes for when the legislation is set to expire next year. Legislative battles over Section 702 of the Foreign Intelligence Surveillance Act (FISA) — under which…
estonia, France, Germany, Global Security News, Hungary, Ireland, Italy, kosovo, Luxembourg, Moldova, Netherlands, North America, Pall Mall Process, poland, Policy, privacy, Slovakia, Slovenia, Spyware, Sweden, switzerland, Technology, United Kingdom (U.K.), vulnerability disclosure
Voluntary ‘Pall Mall Process’ seeks to curb spyware abuses
Twenty-one nations signed on to a voluntary accord last week in Paris to govern the use of commercial hacking tools commonly known as spyware, after more than a year of work on the agreement. The Pall Mall Process, or Code of Practices for States, has four pillars for the responsible use of the surveillance tech,…
Global Security News, North America
CISA and FBI Warn Fast Flux is Powering Resilient Malware, C2, and Phishing Networks
Cybersecurity agencies from Australia, Canada, New Zealand, and the United States have published a joint advisory about the risks associated with a technique called fast flux that has been adopted by threat actors to obscure a command-and-control (C2) channel. “‘Fast flux’ is a technique used to obfuscate the locations of malicious servers through rapidly changing…
Email Security Insights, Global Security News, North America, Research, Security Bloggers Network
DMARC Adoption in U.S. and Canada Higher Education Sector
We’re looking at how DMARC adoption is shaping the email security landscape of colleges and universities in North America. The post DMARC Adoption in U.S. and Canada Higher Education Sector appeared first on Security Boulevard.
A Little Sunshine, fbi, Felician University, Global Security News, HarvardX, Kimberly Hanlon, Mark Lanterman, mark rasch, North America, Perkins Coie LLP, Sean Harrington, Stephen Allwine, The Coming Storm, U.S. Secret Service, Unit 221B, Upsala College
Cyber Forensic Expert in 2,000+ Cases Faces FBI Probe
A Minnesota cybersecurity and computer forensics expert whose testimony has featured in thousands of courtroom trials over the past 30 years is facing questions about his credentials and an inquiry from the Federal Bureau of Investigation (FBI). Legal experts say the inquiry could be grounds to reopen a number of adjudicated cases in which the…
Artificial Intelligence, Global Security News, North America, Software
OpenAI’s $20 ChatGPT Plus is now free for students until the end of May
ChatGPT Plus subscription is now free, but only if you’re a student based out of the United States of America and Canada. […]
Apps, Global Security News, North America, TikTok, tiktok for artists
TikTok quietly launches a new ‘TikTok for Artists’ platform
As TikTok’s fate in the United States remains uncertain, the tech giant has quietly started testing a new “TikTok for Artists” insights platform that is designed to help artists build their careers, the company confirmed to TechCrunch. The platform will provide artists with tools to promote their songs, understand performance metrics, and engage with fans.…
Global Security News, News and Trends, North America
Darktrace and Climb Sign North American Distribution Agreement
Specialty technology distributor Climb Channel Solutions and AI cybersecurity provider Darktrace have formed a distribution agreement for North America, allowing Climb to distribute Darktrace’s portfolio of AI-powered cybersecurity products across the continent. New agreement brings ActiveAI Security Platform to Climb partners “Darktrace’s pioneering use of AI in network detection and response has earned the trust…
Global Security News, Government & Policy, Instagram, Meta, North America, Social, White House
You might be following Second Lady Usha Vance on Instagram now
Starting Wednesday, Meta says it will begin combining the Instagram accounts of the Second Lady of the United States, Usha Vance, and the former Second Gentleman of the United States, Doug Emhoff. As a result, the 1.2 million people who were previously following the Instagram account of Kamala Harris’s husband, @secondgentleman46archive (recently archived by the…
Global Security News, North America, Security
North Korean IT worker army expands operations in Europe
North Korea’s IT workers have expanded operations beyond the United States and are now increasingly targeting organizations across Europe. […]
AI, ai models, cyber security, cyber threat, Cybersecurity, Data Privacy, Data Security, Digital Privacy, Episodes, Global Security News, Information Security, infosec, LLM, North America, Podcast, Podcasts, privacy, Security, Security Bloggers Network, Smart Privacy, Tech Podcast, Tech Policy, Technology, Weekly Edition
Understanding Privacy Changes: eBay’s AI Policy and The Future of Data Privacy
In this episode, host Tom Eston discusses recent privacy changes on eBay related to AI training and the implications for user data. He highlights the hidden opt-out feature for AI data usage and questions the transparency of such policies, especially in regions without strict privacy laws like the United States. The host also explores how…
A Little Sunshine, doge, Electronic Frontier Foundation, Facebook, Federal Communications Commission, First Amendment, Freedom of Information Act, Gannett, George Stephanopoulos, Global Security News, House Speaker Mike Johnson, Interfaith Alliance, Jeffrey Goldberg, Jenner & Block, Judge Richard Leon, Kate Ruane, Latest Warnings, Marc Elias, Meta CEO Mark Zuckerberg, National Security Advisor Michael Waltz, North America, NPR, Paramount, PBS, Pulitzer Prize board, Radio Free Asia, Radio Free Europe / Radio Liberty, Rev. Paul Brandeis Raushenbush, Secretary of State Marco Rubio, The Atlantic, The Coming Storm, The Des Moines Register, The New York Times, The Washington Post, Tony Bradley, U.S. Agency for Global Media, U.S. Agency for International Development, U.S. District Court Judge Royce Lamberth, U.S. District Judge James Boasberg, U.S. Immigration and Customs Enforcement, U.S. Supreme Court Justice John Roberts, Vice President JD Vance, Vice President Kamala Harris, Voice of America, WilmerHale
How Each Pillar of the 1st Amendment is Under Attack
“Congress shall make no law respecting an establishment of religion, or prohibiting the free exercise thereof; or abridging the freedom of speech, or of the press; or the right of the people peaceably to assemble, and to petition the Government for a redress of grievances.” -U.S. Constitution, First Amendment. Image: Shutterstock, zimmytws. In an address…
Federal Trade Commission (FTC), Global Security News, Government, North America, rebecca slaughter, Workforce
Democratic FTC Commissioners file lawsuit against Trump over attempted firings
Democratic commissioners on the Federal Trade Commission filed a lawsuit against President Donald Trump on Thursday, saying his administration’s attempts to fire them violate the FTC Act and Supreme Court precedent. The lawsuit, filed in the District Court for the District of Columbia, asks the court to declare the president’s actions unlawful, affirm the statutory…
electric vehicles, Elon Musk, EVs, Global Security News, North America, Tesla, Transportation
Trump’s auto tariffs are a gift to Tesla
President Trump is slapping 25% tariffs on all cars imported to the United States, including from our immediate North American neighbors. He’s also placed a 25% tariff on certain parts used to build cars. It’s a decision that will likely supercharge the cost of new and used cars, but it’s also a gift to Tesla,…
Apps, Commerce, Global Security News, In Brief, North America, Social, TikTok, TikTok Shop
TikTok to launch TikTok Shop in France, Germany, and Italy
TikTok is set to expand its TikTok Shop e-commerce platform to users in France, Germany, and Italy on Monday, Reuters reports. TikTok Shop has been available in the United Kingdom since 2021, and now the company is ready to expand farther into Europe. While TikTok Shop is also available in the United States and saw…
Global Security News, North America
New SparrowDoor Backdoor Variants Found in Attacks on U.S. and Mexican Organizations
The Chinese threat actor known as FamousSparrow has been linked to a cyber attack targeting a trade group in the United States and a research institute in Mexico to deliver its flagship backdoor SparrowDoor and ShadowPad. The activity, observed in July 2024, marks the first time the hacking crew has deployed ShadowPad, a malware widely…
Global Security News, North America, Uncategorized
Active Roles Wins 2025 Cybersecurity Excellence Award for Hybrid Active Directory Protection
Alisa Viejo, United States, 25th March 2025, CyberNewsWire The post Active Roles Wins 2025 Cybersecurity Excellence Award for Hybrid Active Directory Protection appeared first on Security Boulevard.
Global Security News, North America, Security, signal, TC
The Trump administration planned Yemen strikes in an unauthorized Signal chat
The Trump administration’s national security leaders accidentally included the editor-in-chief of the Atlantic, Jeffrey Goldberg, in a chat on Signal discussing confidential plans to attack Yemen’s Houthis. “I could not believe that the national-security leadership of the United States would communicate on Signal about imminent war plans,” Goldberg wrote of the March 15 messages, which…
Canada, Cybercrime, Cybersecurity, Department of Justice (DOJ), extradition, Global Security News, hacking, indictment, North America, Ransomware, Snowflake, Threats
Canadian citizen allegedly involved in Snowflake attacks consents to extradition to US
A Canadian citizen is one step closer to standing trial in the United States for his alleged involvement in a series of attacks targeting as many as 165 Snowflake customers, one of the most widespread and damaging attack sprees on record. Connor Moucka consented to extradition on Friday to face 20 federal charges, including conspiracy…
Global Security News, honda, honda prologue ev, North America, Tesla Supercharger, Transportation
Honda and Acura EV owners to gain access to Tesla Superchargers this June
Honda and its luxury brand, Acura, are set to join the growing list of automakers providing EV owners access to Tesla’s Supercharger network in North America. Starting in June, owners of the Honda Prologue and Acura ZDX electric vehicles will be able to charge at Tesla’s stations. Those EVs are built with CCS charging ports…
Apps, for you feed, Global Security News, North America, Social, TikTok
TikTok to start pushing Amber Alerts to users’ For You feeds
TikTok is partnering with the National Center for Missing & Exploited Children (NCMEC) to bring real-time Amber Alerts directly to users’ For You feeds in the United States, the company announced on Thursday. With this new feature, if an Amber Alert is activated by law enforcement and you are in the designated search area, the…
Cybersecurity, Global Security News, North America, Paige Thompson, U.S. courts
Capital One hacker Paige Thompson got too light a sentence, appeals court rules
A federal appeals court overruled a district court judge’s sentence for Capital One hacker Paige Thompson this week, deciding that the sentence of five years’ probation plus time served was too lenient. Describing the hack as the “second largest data breach in the United States at the time, causing tens of millions of dollars in…
Apps, Commerce, Global Security News, Google, google wallet, North America
Google now lets kids use Google Wallet for in-store payments in select countries
Google announced on Wednesday that kids with Android phones can now tap to pay at stores using Google Wallet in the United States, United Kingdom, Australia, Spain, and Poland. Parents and guardians in these countries can now allow their children to access digital payments on their Android devices with supervision. Kids can also use Google…
Global Security News, North America, Uncategorized
SpyCloud’s 2025 Identity Exposure Report Reveals the Scale and Hidden Risks of Digital Identity Threats
Austin, TX, United States, 19th March 2025, CyberNewsWire The post SpyCloud’s 2025 Identity Exposure Report Reveals the Scale and Hidden Risks of Digital Identity Threats appeared first on Security Boulevard.
Department of Government Efficiency, doge, Elon Musk, Global Security News, Government & Policy, North America
Elon Musk’s DOGE leadership likely violates constitution’s appointments clause, judge says
Elon Musk’s role overseeing the Department of Government Efficiency is likely a violation of the United States constitution’s appointments clause, a federal judge wrote Tuesday. Theodore Chuang, a judge in the U.S. District Court for the District of Maryland, wrote in an opinion there is more than enough evidence — mostly from statements made by…
Global Security News, North America
White House exempts cyber pros from mass layoffs; Judge reinstates CISA firings
The tide may be turning for US federal cybersecurity professionals who have faced job cuts or the threat thereof at the hand of Elon Musk’s Department of Government Efficiency (DOGE). Last week the US District Court of Maryland ordered the Trump administration to rehire federal government employees previously fired via DOGE initiatives, including probationary employees…
business, channel, Global Security News, News and Trends, North America, services
Backblaze to Deploy Services at Cologix Toronto Data Center
Network-neutral data center provider, Cologix, recently announced that Backblaze, a cloud storage company, will be deploying its services at Cologix’s TOR3 digital edge data center in Toronto. Partnership brings data storage compliant with Canadian regulations The collaboration on the deployment will feature “a high-capacity setup with dedicated power and a direct fiber connection to Cologix’s…
california, Data Privacy, Federal Trade Commission (FTC), Global Security News, North America, privacy
California’s legal push on geolocation data collection must take aim at the right targets, privacy experts say
The attorney general for California announced this week a wide-ranging investigation into the way companies collect, process and use consumer location data. The investigation will include scrutiny of advertising networks, mobile app providers and data brokers whose practices may violate the California Consumer Privacy Act (CCPA), one of the strictest state privacy laws in the…
Global Security News, North America
Alleged Israeli LockBit Developer Rostislav Panev Extradited to U.S. for Cybercrime Charges
A 51-year-old dual Russian and Israeli national who is alleged to be a developer of the LockBit ransomware group has been extradited to the United States, nearly three months after he was formally charged in connection with the e-crime scheme. Rostislav Panev was previously arrested in Israel in August 2024. He is said to have been…
Cybersecurity, Global Security News, Government, Mike Rounds, North America, Policy, water sector
Water utilities would get cybersecurity boost under bipartisan Senate bill
Small water and wastewater utilities would get a boost to their cybersecurity defenses under a bipartisan Senate bill that a pair of lawmakers re-introduced Thursday. Sens. Catherine Cortez Masto, D-Nev., and Mike Rounds, R-S.D., are taking another swing at the Cybersecurity for Rural Water Systems Act after the legislation stalled out in the 118th Congress.…
Global Security News, Legal, North America, Security
Suspected LockBit ransomware dev extradited to United States
A dual Russian-Israeli national, suspected of being a key developer for the LockBit ransomware operation, has been extradited to the United States to face charges. […]