Hackers are trying to exploit CVE-2024-52875, a critical CRLF injection vulnerability that leads to 1-click remote code execution (RCE) attacks in GFI KerioControl firewall product. […]
Category: Security
cyberattack, data breach, Global IT News, Global Security News, russia-ukraine war, Security
Ukrainian hackers take credit for hacking Russian ISP that wiped out servers and caused internet outages
The Russian ISP blamed the Ukrainian hackers for causing a “complete failure” across its internet infrastructure. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Government, Security
Over 4,000 backdoors hijacked by registering expired domains
Over 4,000 abandoned but still active web backdoors were hijacked and their communication infrastructure sinkholed after researchers registered expired domains used for commanding them. […]
Global Security News, Healthcare, Security
Medical billing firm Medusind discloses breach affecting 360,000 people
Medusind, a leading billing provider for healthcare organizations, is notifying hundreds of thousands of individuals of a data breach that exposed their personal and health information more than a year ago, in December 2023. […]
china, cyberattacks, Cybersecurity, Global IT News, Global Security News, Security
Japan says Chinese hackers targeted its government and tech companies for years
The years-long hacking spree targeted government organizations as well as companies across Japan. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
Thousands of credit cards stolen in Green Bay Packers store breach
American football team Green Bay Packers says cybercriminals stole the credit card data of over 8,500 customers after hacking its official Pro Shop online retail store in a September breach. […]
Global Security News, Security
How initial access brokers (IABs) sell your users’ credentials
Initial Access Brokers (IABs) are specialized cybercriminals that break into corporate networks and sell stolen access to other attackers. Learn from Specops Software about how IABs operate and how businesses can protect themselves. […]
Cybersecurity, data breach, Global IT News, Global Security News, powerschool, Security
Edtech giant PowerSchool says hackers accessed personal data of students and teachers
The Bain Capital-owned edtech giant says hackers accessed its customer support portal using a “compromised credential.” © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, Data Privacy, european commission, GDPR, Global IT News, Global Security News, Security
EU court fines European Commission for breaching its own data privacy laws
The EU court said the bloc’s executive authority violated a citizen’s rights by transferring some of his personal data to the U.S. without proper safeguards. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
UN aviation agency confirms recruitment database security breach
The United Nations’ International Civil Aviation Organization (ICAO) has confirmed that a threat actor has stolen approximately 42,000 records after hacking into its recruitment database. […]
Cybersecurity, data breach, Global IT News, Global Security News, Ransomware, Security
Casio says hackers stole personal data of 8,500 people during October ransomware attack
The Japanese electronics giant says it did not negotiate with the hackers responsible for the attack. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, data breach, Global IT News, Global Security News, hacking, icao, Security
UN aviation agency confirms hacker breached recruitment database to access thousands of records
ICAO says compromised data includes job applicants’ names, email addresses and employment history © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
PowerSchool hack exposes student, teacher data from K-12 districts
Education software giant PowerSchool has confirmed it suffered a cybersecurity incident that allowed a threat actor to steal the personal information of students and teachers from school districts using its PowerSchool SIS platform. […]
Exclusive, Global IT News, Global Security News, India, Indian government, Security
Indian government websites are still redirecting users to scam sites
Some Indian government websites are still redirecting to links planted by scammers. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security, Security Bloggers Network
Reemployment Project: Meet Alex Ryan
The numbers are staggering—2024 has seen over 200,000 layoffs across 1,200 companies, with 82% coming from the tech industry. Welcome to the Top Tech Talent Reemployment Project! I’m Peter, and this initiative is all about supporting those affected by layoffs and helping them find fulfilling roles. In our first episode, I’m joined by my friend…
Global Security News, Security, Security Bloggers Network
Top Tech Talent Reemployment Project: Helping Job Seekers Shine!
After being let go from F5 in May 2023, I started thinking about how to support job seekers during tough times. That’s when I came up with the Top Tech Talent Reemployment Project—a video series featuring professionals who have been impacted by layoffs. The idea is simple: I host 5-7 minute interviews where we discuss…
Global Security News, Security
Casio says data of 8,500 people exposed in October ransomware attack
Japanese electronics manufacturer Casio says that the October 2024 ransomware incident exposed the personal data of approximately 8,500 people. […]
Exploits, Global Security News, Security
New Mirai botnet targets industrial routers with zero-day exploits
A relatively new Mirai-based botnet has been growing in sophistication and is now leveraging zero-day exploits for security flaws in industrial routers and smart home devices. […]
Global Security News, Security
US govt launches cybersecurity safety label for smart devices
Today, the White House announced the launch of the U.S. Cyber Trust Mark, a new cybersecurity safety label for internet-connected consumer devices. […]
Cybersecurity, Global IT News, Global Security News, Security, Telegram, transparency report
Telegram reports spike in sharing user data with law enforcement
The messaging app handed over user data on thousands of Telegram users to U.S. authorities over 2024, the data reveals. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
BIOS flaws expose iSeq DNA sequencers to bootkit attacks
BIOS/UEFI vulnerabilities in the iSeq 100 DNA sequencer from U.S. biotechnology company Illumina could let attackers disable devices used for detecting illnesses and developing vaccines. […]
Exploits, Global Security News, Security
CISA warns of critical Oracle, Mitel flaws exploited in attacks
CISA has warned U.S. federal agencies to secure their systems against critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are actively exploited in attacks. […]
Global Security News, Legal, Security
Washington state sues T-Mobile over 2021 data breach security failures
Washington state has sued T-Mobile over failing to secure the sensitive personal information of over 2 million Washington residents in a 2021 data breach. […]
business, channel, Cybersecurity, Global Security News, MSPs, MSSPs, Partners, Security
Managed Patch Management: An Opportunity for MSPs
There are various methods to protect against unauthorized access to your company’s networks, and patch management is a simple way to address security vulnerabilities or bugs in the system. Maintaining network security through updates and patches can improve your customers’ experience with their technology, and ensure your services remain valuable to the businesses that you…
Cybersecurity, Global IT News, Global Security News, internet of things, IoT, Security
US government set to launch its Cyber Trust Mark cybersecurity labeling program for internet-connected devices in 2025
The cybersecurity consumer labeling program will launch in 2025, the Biden administration confirmed, after initially slated for last year. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
UN aviation agency investigating ‘potential’ security breach
On Monday, the United Nations’ International Civil Aviation Organization (ICAO) announced it was investigating what it described as a “reported security incident.” […]
Global Security News, Security
Malicious Browser Extensions are the Next Frontier for Identity Attacks
A recent campaign targeting browser extensions illustrates that they are the next frontier in identity attacks. Learn more about these attacks from LayerX Security and how to receive a free extension audit. […]
Global Security News, Security
Green Bay Packers’ online store hacked to steal credit cards
The Green Bay Packers American football team is notifying fans that a threat actor hacked its official online retail store in October and injected a card skimmer script to steal customers’ personal and payment information. […]
Cybersecurity, data breach, Global IT News, Global Security News, Security
UN aviation agency ‘investigating’ security breach after hacker claims theft of personal data
ICAO says the incident was allegedly linked to a hacker ‘known for targeting international organizations’ © 2024 TechCrunch. All rights reserved. For personal use only.
Cloud Security, Global Security News, Ivpn vpn, Security, VPN
IVPN Review: Pricing, Features, Pros, and Cons
Read our IVPN review to uncover its strong security features and privacy-first approach. Discover what sets it apart — but are there hidden drawbacks?
Cybersecurity, dark web, Global Security News, Security, Security Boulevard (Original), Social - Facebook, Social - LinkedIn, Social - X, Threat Intelligence
Dark Web Dangers Aren’t as Hidden as You Think
While it occupies only a sliver of the internet, the dark web has become a growing threat to businesses everywhere. The post Dark Web Dangers Aren’t as Hidden as You Think appeared first on Security Boulevard.
cyberattack, Cybersecurity, data breach, Global Security News, North America, Security, T-Mobile
Washington sues T-Mobile over 2021 data breach that spilled 79 million customer records
The 2021 breach affected at least 2 million Washington state residents, and tens of millions more customers around the United States. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
CISA says recent government hack limited to US Treasury
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said today that the Treasury Department breach disclosed last week did not impact other federal agencies. […]
CISA, cyberattack, Cybersecurity, Global IT News, Global Security News, Security, us treasury
CISA says ‘no indication’ of wider government hack beyond Treasury
U.S. Treasury officials confirmed a cyberattack on its systems in early December 2024. © 2024 TechCrunch. All rights reserved. For personal use only.
Asia Pacific, china, Cybersecurity, Evergreen, Global Security News, hacking, Security, state-sponsored hacking, us government
Meet the Chinese ‘Typhoon’ hackers preparing for war
Dubbed Volt, Flax and Salt Typhoon, U.S. intelligence says these China-backed hackers are laying the groundwork for future conflict. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Hardware, Security
Vulnerable Moxa devices expose industrial networks to attacks
Industrial networking and communications provider Moxa is warning of a high-severity and a critical vulnerability that impact various models of its cellular routers, secure routers, and network security appliances. […]
Global Security News, Security
Chinese hackers also breached Charter and Windstream networks
More U.S. companies have been added to the list of telecommunications firms hacked in a wave of breaches by a Chinese state-backed threat group tracked as Salt Typhoon. […]
Global Security News, Security
Eagerbee backdoor deployed against Middle Eastern govt orgs, ISPs
New variants of the Eagerbee malware framework are being deployed against government organizations and internet service providers (ISPs) in the Middle East. […]
Cloud Security, expressvpn, Fastest vpns, Global Security News, Hotspot Shield, nordvpn, proton vpn, Security, surfshark, VPN
The 5 Fastest VPNs for 2025
Looking for a VPN that delivers speed and security? We’ve rounded up the best of the best — take a look and see which one’s perfect for you!
Global Security News, Microsoft, Security
Windows 10 users urged to upgrade to avoid “security fiasco”
Cybersecurity firm ESET is urging Windows 10 users to upgrade to Windows 11 or Linux to avoid a “security fiasco” as the 10-year-old operating system nears the end of support in October 2025. […]
CryptoCurrency, Global Security News, Security
Cryptocurrency wallet drainers stole $494 million in 2024
Scammers stole $494 million worth of cryptocurrency in wallet drainer attacks last year that targeted more than 300,000 wallet addresses. […]
Global Security News, Security
Nuclei flaw bypasses template signature checks to execute code
A new vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute on local systems. […]
Global Security News, Security
Nuclei flaw bypasses template signature checks to execute commands
A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute on local systems. […]
Global Security News, Security
Nuclei flaw lets malicious templates bypass signature verification
A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious code into templates that execute on local systems. […]
Global IT News, Global Security News, Security, Tenable
Tenable CEO Amit Yoran dies
Longtime entrepreneur and cybersecurity executive Amit Yoran passed away Friday after a battle with cancer. Cybersecurity company Tenable, where Yoran was CEO and chairman, announced his death in a press release. Before becoming Tenable’s CEO in 2016, he held a number of roles including president of RSA, founding CEO of NetWitness, and CEO of In-Q-Tel.…
Global Security News, Mobile, Security
New FireScam Android malware poses as RuStore app to steal data
A new Android malware named ‘FireScam’ is being distributed as a premium version of the Telegram app via phishing websites on GitHub that mimick the RuStore, Russia’s app market for mobile devices. […]
Global Security News, Security
Bad Tenable plugin updates take down Nessus agents worldwide
Tenable says customers must manually upgrade their software to revive Nessus vulnerability scanner agents taken offline on December 31st due to buggy differential plugin updates. […]
Global Security News, Networking, open source, secure copy, Security, ssh key
How To Use SCP (Secure Copy) With SSH Key Authentication
Here’s how to use the secure copy command, in conjunction with ssh key authentication, for an even more secure means of copying files to your remote Linux servers.
Asia Pacific, china, Cybersecurity, Flax Typhoon, Global Security News, hacking, Security, us government
US sanctions Chinese cyber firm linked to Flax Typhoon hacks
U.S. officials say the sanctioned Chinese firm provided botnet infrastructure for the China-backed hacking group Flax Typhoon © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
US sanctions Chinese company linked to Flax Typhoon hackers
The U.S. Treasury Department has sanctioned Beijing-based cybersecurity company Integrity Tech for its involvement in cyberattacks attributed to the Chinese state-sponsored Flax Typhoon hacking group. […]
Global Security News, Security
Malicious npm packages target Ethereum developers’ private keys
Twenty malicious packages impersonating the Hardhat development environment used by Ethereum developers are targeting private keys and other sensitive data. […]
Cybersecurity, Exclusive, gift cards, Global IT News, Global Security News, know your customer, Security
Online gift card store exposed hundreds of thousands of people’s identity documents
The gift card store secured the public cloud storage server containing customer ID documents, which was not protected with a password. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Legal, Security
Apple offers $95 million in Siri privacy violation settlement
Apple has agreed to pay $95 million to settle a class action lawsuit in the U.S. alleging that its Siri assistant recorded private conversations and shared them with third parties. […]
Global Security News, Security
French govt contractor Atos denies Space Bears ransomware attack claims
French tech giant Atos, which secures communications for the country’s military and secret services, has denied claims made by the Space Bears ransomware gang that they compromised one of its databases. […]
Apps, Global Security News, Hardware, Microsoft, pc optimization tool, Security, Software, TR Academy
This Trusted App Helps Sluggish PCs Work Faster
CCleaner speeds up sluggish PCs by clearing junk files, fixing registry issues, and optimizing performance.
Cloud Security, Global Security News, Security, surfshark, Totalav vpn, VPN
TotalAV VPN vs Surfshark: Which VPN Should You Choose?
TotalAV combines a simple VPN with antivirus software, while Surfshark offers a standalone VPN with better features and faster speeds.
Apps, Global IT News, Global Security News, India, Security, VPN
Cloudflare’s VPN app among half-dozen pulled from Indian app stores
More than half-a-dozen VPN apps, including Cloudflare’s widely-used 1.1.1.1, have been pulled from India’s Apple App Store and Google Play Store following intervention from government authorities, TechCrunch has learned. The Indian Ministry of Home Affairs issued removal orders for the apps, according to a document reviewed by TechCrunch and a disclosure made by Google to…
Global Security News, Security
Ransomware gang leaks data stolen in Rhode Island’s RIBridges Breach
The Brain Cipher ransomware gang has begun to leak documents stolen in an attack on Rhode Island’s “RIBridges” social services platform. […]
Global Security News, Security
New DoubleClickjacking attack exploits double-clicks to hijack accounts
A new variation of clickjacking attacks called “DoubleClickjacking” lets attackers trick users into authorizing sensitive actions using double-clicks while bypassing existing protections against these types of attacks. […]
AT&T, cisco, Cybersecurity, Global Security News, Security, Software, Tech & Work, telecommunications, threat actors
China-Linked Cyber Threat Group Hacks US Treasury Department
Threat actors entered Treasury Department systems through BeyondTrust. The breach may be related to the Salt Typhoon attacks reported throughout the year.
Global IT News, Global Security News, Las Vegas, Security, Tesla, Transportation, Trump
Cybertruck explosion outside Trump hotel in Vegas leaves 1 dead, 7 injured
A Tesla Cybertruck that exploded and burst into flames Wednesday morning just outside the Trump International Hotel Las Vegas has left one person dead and seven people injured, according to the Las Vegas Metropolitan Police Department (LVMPD). Matthew Alan Livelsberger, a 37-year-old man who was an active duty U.S. Army Green Beret from Colorado Springs,…
Global Security News, Security
Chinese hackers targeted sanctions office in Treasury attack
Chinese state-backed hackers have reportedly breached the Office of Foreign Assets Control (OFAC), a Treasury Department office that administers and enforces trade and economic sanctions programs. […]
Global Security News, Security
Over 3 million mail servers without encryption exposed to sniffing attacks
Over three million POP3 and IMAP mail servers without TLS encryption are currently exposed on the Internet and vulnerable to network sniffing attacks. […]
china, Cybersecurity, data breach, Global IT News, Global Security News, Security, us government, us treasury
Chinese government hackers reportedly targeted US Treasury’s sanctions office during December cyberattack
Chinese government hackers targeted the U.S. Treasury’s highly sensitive sanctions office during a December cyberattack, according to reports. According to The Washington Post, the state-sponsored hackers targeted the Office of Foreign Assets Control (OFAC), a government department that imposes economic and trade sanctions against countries and individuals, to potentially access information on Chinese organizations that…
Artificial Intelligence, Big Data, Cloud, data centers, Developer, Enterprise Software, Global Security News, Hardware, Mobility, project management, Security, Smart Cities, Software, Tech & Work, TechRepublic Premium
TechRepublic Premium Editorial Calendar: Policies, Hiring Kits, and Glossaries for Download
TechRepublic Premium content helps you solve your toughest IT issues and jump-start your career or next project.
Emerging Tech, Global Security News, Security
The biggest cybersecurity and cyberattack stories of 2024
2024 was a big year for cybersecurity, with significant cyberattacks, data breaches, new threat groups emerging, and, of course, zero-day vulnerabilities. Below are fourteen of what BleepingComputer believes are the most impactful cybersecurity stories of 2024. […]
Adobe, Cybersecurity, Global Security News, Microsoft, patch management, Security, Software
What Is Patch Tuesday? Microsoft’s Monthly Update Explained
Patch Tuesday is Microsoft’s monthly update day for fixing vulnerabilities. Learn its purpose, benefits, and how it enhances system security.
Global Security News, Security
New details reveal how hackers hijacked 35 Google Chrome extensions
New details have emerged about a phishing campaign targeting Chrome browser extension developers that led to the compromise of at least thirty-five extensions to inject data-stealing code, including those from cybersecurity firm Cyberhaven. […]
23andMe, cyberattacks, Cybersecurity, data breach, Global IT News, Global Security News, Security, Snowflake Computing
These were the badly handled data breaches of 2024
Blaming victims, months of silence, and suing security researchers all featured in cybersecurity in 2024. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security, Software
Over 3.1 million fake “stars” on GitHub projects used to boost rankings
GitHub has a problem with inauthentic “stars” used to artificially inflate the popularity of scam and malware distribution repositories to appear more popular, helping them reach more unsuspecting users. […]
Cybersecurity, Global IT News, Global Security News, lumen, Salt Typhoon, Security
US telco Lumen says its network is now clear of China’s Salt Typhoon hackers
Lumen says there is ‘no evidence’ that customer data was accessed during the intrusion © 2024 TechCrunch. All rights reserved. For personal use only.
cyberattacks, Cybersecurity, Global IT News, Global Security News, Healthcare, Security, Startups
New Year’s cybersecurity resolutions that every startup should keep
These simple cybersecurity resolutions can help keep your startup protected from most malicious hackers. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Healthcare, Security
Massive healthcare breaches prompt US cybersecurity rules overhaul
The U.S. Department of Health and Human Services (HHS) has proposed updates to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) to secure patients’ health data following a surge in massive healthcare data leaks. […]
Global Security News, Security
US Treasury Department breached through remote support platform
Chinese state-sponsored threat actors hacked the U.S. Treasury Department after breaching a remote support platform used by the federal agency. […]
Asia Pacific, cyberattack, Cybersecurity, Global Security News, Security, U.S. Treasury
US Treasury says China stole documents in ‘major’ cyberattack
Treasury officials attributed the December theft of unclassified documents to China. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, EVs, Global IT News, Global Security News, Security, Transportation
Volkswagen leak exposed precise location data on thousands of vehicles across Europe for months
The data was found exposed on an Amazon cloud server, and contained precise location data on thousands of vehicles. © 2024 TechCrunch. All rights reserved. For personal use only.
Cloud, Cybersecurity, Global Security News, Hardware, Microsoft, microsoft copilot plus, Microsoft Windows 11, physical media, Security
Windows 11 Media Update Bug Stops Security Updates
Microsoft advises users not to install recent security updates using physical media. The company is working on a fix.
Exploits, Global Security News, Hardware, Security
Hackers exploit Four-Faith router flaw to open reverse shells
Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open reverse shells back to the attackers. […]
Cloud Security, Global Security News, Security, VPN, vyprvpn
VyprVPN Review: Can It Still Perform This Year and Beyond?
VyprVPN is an affordable VPN provider, but is it trustworthy enough to keep your data secure? Read our VyprVPN review to find out.
AT&T, Cybersecurity, Global IT News, Global Security News, hacking, Salt Typhoon, Security
Verizon says it has secured its network after breach by China-linked Salt Typhoon group
U.S. telecom giant Verizon says it has secured its network after being targeted by the China-linked Salt Typhoon cyberespionage group. In a statement given to TechCrunch on Sunday, Verizon spokesperson Richard Young said the company has “contained the cyber incident brought on by this nation-state threat actor,” and that it has not detected any threat actor…
Global Security News, Security
AT&T and Verizon say networks secure after Salt Typhoon breach
AT&T and Verizon confirmed they were breached in a massive Chinese espionage campaign targeting telecom carriers worldwide but said the hackers have now been evicted from their networks. […]
2025, cyber security, cyber threat, Cybersecurity, Data Privacy, Data Security, Digital Privacy, Episodes, Global Security News, Happy New Year, Information Security, infosec, New Year, phishing, Podcast, podcasting, Podcasts, Port 83, predictions, privacy, Security, Security Bloggers Network, Social Engineering, Technology, Weekly Edition, Year End Reflections
2024 Year in Review: What We Got Right and Looking to 2025
In the final episode of the Shared Security Podcast for 2024, join us as we recap our predictions for the year, discuss what we got right and wrong, and highlight our top episodes on YouTube. We also extend a heartfelt thank you to our Patreon supporters and special guests. Plus, stay tuned for our predictions…
Global Security News, Security
Malware botnets exploit outdated D-Link routers in recent attacks
Two botnets tracked as ‘Ficora’ and ‘Capsaicin’ have recorded increased activity in targeting D-Link routers that have reached end of life or are running outdated firmware versions. […]
Global Security News, Security
Hackers steal ZAGG customers’ credit cards in third-party breach
ZAGG Inc. is informing customers that their credit card data has been exposed to unauthorized individuals after hackers compromised a third-party application provided by the company’s e-commerce provider, BigCommerce. […]
Global Security News, Security
Customer data from 800,000 electric cars and owners exposed online
Volkswagen’s automotive software company, Cariad, exposed data collected from around 800,000 electric cars. The info could be linked to drivers’ names and reveal precise vehicle locations. […]
Global Security News, Security
White House links ninth telecom breach to Chinese hackers
A White House official has added a ninth U.S. telecommunications company to the list of telecoms breached in a Chinese hacking campaign that impacted dozens of countries. […]
cyberattack, Cybersecurity, Global IT News, Global Security News, Security
Cyberhaven says it was hacked to publish a malicious update to its Chrome extension
The data-loss startup says it was targeted as part of a “wider campaign to target Chrome extension developers.” © 2024 TechCrunch. All rights reserved. For personal use only.
Exploits, Global Security News, Security
Hackers exploit DoS flaw to disable Palo Alto Networks firewalls
Palo Alto Networks is warning that hackers are exploiting the CVE-2024-3393 denial of service vulnerability to disable firewall protections by forcing it to reboot. […]
Compliance, Global IT News, Global Security News, Risk Management, Security
Top 6 Vendor Risk Management Software for MSPs in 2025
Managing third-party risks is becoming more critical for managed service providers (MSPs) as cybersecurity threats evolve. Vendor risk management (VRM) software simplifies this process, helping MSPs assess, monitor, and mitigate risks associated with third-party vendors. Explore six of the best vendor risk management tools to streamline compliance, enhance security, or protect your client’s sensitive data.…
Global Security News, Security
Cybersecurity firm’s Chrome extension hijacked to steal users’ data
At least five Chrome extensions were compromised in a coordinated attack where a threat actor injected code that steals sensitive information from users. […]
Cybersecurity, evolve bank, extortion, Global IT News, Global Security News, Ransomware, Security
Record-breaking ransoms and breaches: A timeline of ransomware in 2024
From LoanDepot to Evolve Bank and Blue Yonder, these ransomware attacks affect tens of millions of people. © 2024 TechCrunch. All rights reserved. For personal use only.
Global Security News, Security
Apache warns of critical flaws in MINA, HugeGraph, Traffic Control
The Apache Software Foundation has released security updates to address three severe problems that affect MINA, HugeGraph-Server, and Traffic Control products. […]
CryptoCurrency, Global Security News, Security
New ‘OtterCookie’ malware used to backdoor devs in fake job offers
North Korean threat actors are using new malware called OtterCookie in the Contagious Interview campaign that is targeting software developers. […]
Global Security News, Microsoft, Security
Windows 11 installation media bug causes security update failures
Microsoft is warning of an issue when using a media support to install Windows 11, version 24H2, that causes the operating system to not accept further security updates. […]
23andMe, cyberattacks, Cybersecurity, data breach, Global IT News, Global Security News, Security, Snowflake Computing
These were the badly handled data breaches of 2024
Blaming victims, months of silence, and suing security researchers all featured in cybersecurity in 2024. © 2024 TechCrunch. All rights reserved. For personal use only.
Cybersecurity, Global IT News, Global Security News, multi-factor authentication, password manager, Security
Home for the holidays? Share this top cybersecurity advice with friends and family
Sharing security advice can go a long way in protecting your loved ones from the most common and damaging online threats. © 2024 TechCrunch. All rights reserved. For personal use only.
Exploits, Global Security News, Security
New botnet exploits vulnerabilities in NVRs, TP-Link routers
A new Mirai-based malware campaign is actively exploiting unpatched vulnerabilities in Internet of Things (IoT) devices, including DigiEver DS-2105 Pro DVRs. […]
Europe, Global Security News, Security
European Space Agency’s official store hacked to steal payment cards
European Space Agency’s official web shop was hacked as it started to load a piece of JavaScript code that generates a fake Stripe payment page at checkout. […]
cyberattack, Exploits, Global Security News, Ransomware, Security
Clop ransomware gang takes credit for latest mass hack that breached dozens of companies
The prolific ransomware gang says it hacked at least 66 companies by exploiting a bug in tools made by Cleo Software. © 2024 TechCrunch. All rights reserved. For personal use only.
CryptoCurrency, Global Security News, Security
FBI links North Korean hackers to $308 million crypto heist
The North Korean hacker group ‘TraderTraitor’ stole $308 million worth of cryptocurrency in the attack on the Japanese exchange DMM Bitcoin in May. […]