When the now infamous CrowdStrike software update took down companies all over the world in July, it was inevitable that lawsuits would follow — and follow they have. Delta threatening to sue the company for as much as $500 million in damages and hiring lawyer David Boies is perhaps the highest-profile example. Among Boies’ wide […]
Transport for London’s (TfL) computer systems have been targeted in an ongoing cyber attack. It said there was no evidence customer data had been compromised and there was currently no impact on TfL services. Insiders have told BBC London they have been asked to work at home if possible, and that it is the transport […]
Cybersecurity spending will continue rising in the year ahead amidst heightened concerns about the threat of AI, according to new research from Gartner. Research from the consultancy expects global information security end-user spending to reach $183.9 billion in 2024, rising by 15.1% to $212 billion in 2025. A key factor in this spending growth, Gartner […]
Cybersecurity researchers are calling attention to a new QR code phishing (aka quishing) campaign that leverages Microsoft Sway infrastructure to host fake pages, once again highlighting the abuse of legitimate cloud offerings for malicious purposes. “By using legitimate cloud applications, attackers provide credibility to victims, helping them to trust the content it serves,” Netskope Threat […]
Qilin, the Russia-linked cybercrime group thought to be behind the June attacks that caused chaos at a number of U.K. hospitals in June, has now been caught stealing credentials stored within Google Chrome browsers in a surprise new twist to the ransomware attack threat. Although ransomware is not only a long-established but also increasingly costly […]
Generative AI platforms like ChatGPT are revolutionizing how we access information, answer questions, and even develop software code. It’s no surprise that according to the KPMG Cybersecurity Survey: Security Operations Center (SOC) Leaders Perspective (PDF), two-thirds (66%) of security leaders consider AI-based automation to be very important, both now and in the future, for staying […]
Ransomware payments in 2024 are on track to once again hit a record total value, even as fewer victims are choosing to pay attackers, Chainalysis found in its 2024 Crypto Crime Mid-year Update published last week. The blockchain intelligence firm revealed in a report published earlier this year that total ransomware payments exceeded $1 billion […]
Earlier this year, hackers stole nearly three billion records from the National Public Data (NPD) and posted the stolen details on the dark web for everyone to see in August 2024. The stolen info includes full name, date of birth, addresses, cell numbers, and social security numbers (SSN). Multiple media outlets have claimed that the […]
A newly discovered attack vector in GitHub Actions artifacts dubbed ArtiPACKED could be exploited to take over repositories and gain access to organizations’ cloud environments. “A combination of misconfigurations and security flaws can make artifacts leak tokens, both of third party cloud services and GitHub tokens, making them available for anyone with read access to […]
Sellafield has apologised after pleading guilty to criminal charges related to significant cybersecurity failings that ‘potentially endangered national security’. The charges, brought by the Office for Nuclear Regulation (ONR), cover a four-year period from 2019 to 2023 and were heard in Westminster Magistrates Court. According to The Guardian newspaper, the court heard that three-quarters of […]