WASHINGTON, April 15 (Reuters) – A whistleblower complaint says that billionaire Elon Musk’s team of technologists may have been responsible for a “significant cybersecurity breach,” likely of sensitive case files, at America’s federal labor watchdog. The complaint, opens new tab, addressed to Republican Senate Intelligence Committee Chairman Tom Cotton and his Democratic counterpart Mark Warner […]
A China-linked advanced persistent threat (APT) group has exploited critical vulnerabilities in Ivanti Connect Secure VPN appliances to infiltrate organizations across 12 countries and 20 industries, cybersecurity firm TeamT5 revealed in a report shared with Cyber Security News. The campaign, active since late March 2025, leverages the CVE-2025-0282 and CVE-2025-22457 vulnerabilities both stack-based buffer overflow flaws with maximum CVSS […]
Small businesses across the UK are losing £3.4 billion a year thanks to inadequate cybersecurity measures, according to new research. Cyber attacks against SMBs have surged in recent years, analysis from Vodafone Business shows, with more than a third experiencing a cyber incident last year alone. Meanwhile, 28% had between one and five attempted attacks, and 6% […]
Microsoft has released security fixes to address a massive set of 126 flaws affecting its software products, including one vulnerability that it said has been actively exploited in the wild. Of the 126 vulnerabilities, 11 are rated Critical, 112 are rated Important, and two are rated Low in severity. Forty-nine of these vulnerabilities are classified as privilege […]
April 2 (Reuters) – Oracle (ORCL.N), opens new tab has told customers that a hacker broke into a computer system and stole old client log-in credential, Bloomberg News reported on Wednesday, citing two people familiar with the matter. Last month, an unidentified person began attempting to sell data online that was stolen from the cloud servers of […]
Artificial intelligence cybersecurity company Adaptive Security announced Wednesday that it closed a $43 million funding round in March, co-led by OpenAI and Andreessen Horowitz. The investment marks OpenAI’s first outside backing of a cybersecurity firm. Adaptive Security simulates AI-powered attacks against companies, specializing in training for deepfake attacks and other phishing threats. “The technology is […]
The threat actor that claimed responsibility for an alleged data breach at Oracle Cloud is threatening to release or sell the data, according to security researchers. The threat actor, identified as Rose87168, posted a threat Sunday to leak stolen data and claimed Oracle is not cooperating with the hacker’s demands, according to a LinkedIn post […]
MIT Technology Review’s How To series helps you get things done. Things aren’t looking good for 23andMe. The consumer DNA testing company recently parted ways with all its board members but CEO Anne Wojcicki over her plans to take the company private. It’s also still dealing with the fallout of a major security breach last October, which […]
A Medusa ransomware campaign is using a malicious driver to disrupt and even delete endpoint detection and response (EDR) products on targeted organization networks. According to new research from Elastic Security Labs, the malicious driver, dubbed ABYSSWORKER, is deployed along with a packer-as-a-service called HeartCrypt to deliver Medusa ransomware. Elastic noted the driver was first documented in a ConnectWise […]
BEIJING, March 20 (Reuters) – Chinese search giant Baidu (9888.HK), opens new tab on Wednesday denied allegations it had suffered an internal data breach after a top executive’s teenage daughter posted personal details of other internet users online, sparking a controversy. The company, one of China’s largest cloud providers, was thrust into the spotlight last […]