Cybersecurity skills were analyzed in a recent report by Fortinet. According to the report, the number of organizations confirming five or more breaches jumped by 53% between 2021 and 2022. Sixty-eight percent of organizations indicate they face additional risks because of cybersecurity skills shortages, consistent with 67% in 2021. Ninety-three percent of respondents indicate their […]

Published on Tuesday, the NSA’s 2023 Cybersecurity Year in Review report (PDF) details the agency’s efforts in cybersecurity and its work with government partners, foreign partners, and defense industrial base (DIB) entities to improve national security. The NSA’s cybersecurity efforts mainly focus on protecting national security systems (NSS), which contain classified information or are critical […]

Dec 19 (Reuters) – Sony-owned (6758.T) Insomniac Games’ more than 1.3 million files, including game roadmaps, budgets and information about an upcoming “Wolverine” title, have been leaked online by the Rhysida ransomware group, Bloomberg News reported on Tuesday. The files show the Japanese company plans to release several Marvel-inspired titles in the next decade, including […]

Widely disruptive, large-scale hacks are surging. After a lull in 2022, ransomware attacks on high-value targets such as big companies, banks, hospitals or government agencies, have seen a “massive uptick” this year, rising 51% through late November, according to cybersecurity firm Crowdstrike Holdings Inc. Last year, such attacks declined from the year before, the company […]

LONDON, Dec 13 (Reuters) – A hacking group believed by Kyiv to be affiliated with Russian military intelligence claimed responsibility on Wednesday for a cyberattack that knocked Ukraine’s biggest mobile network operator offline. Tuesday’s attack on Kyivstar, which has 24.3 million mobile subscribers and more than 1.1 million home internet users, knocked out services, damaged […]

More details are emerging about a data breach the genetic testing company 23andMe first reported in October. But as the company shares more information, the situation is becoming even murkier and creating greater uncertainty for users attempting to understand the fallout. 23andMe said at the beginning of October that attackers had infiltrated some of its […]

Sellafield has denied reports its IT networks have been attacked by cyber groups linked to Russia and China. The Guardian said an investigation into the nuclear site in Cumbria found security breaches, dating back to 2015, which it says were not reported to regulators for “several years”. The year-long investigation, named Nuclear Leaks, said sleeper […]

Threat actors from the Democratic People’s Republic of Korea (DPRK) are increasingly targeting the cryptocurrency sector as a major revenue generation mechanism since at least 2017 to get around sanctions imposed against the country. “Even though movement in and out of and within the country is heavily restricted, and its general population is isolated from […]

Cybersecurity researchers have detailed a “severe design flaw” in Google Workspace’s domain-wide delegation (DWD) feature that could be exploited by threat actors to facilitate privilege escalation and obtain unauthorized access to Workspace APIs without super admin privileges. “Such exploitation could result in theft of emails from Gmail, data exfiltration from Google Drive, or other unauthorized […]

With the holiday online shopping blitz just days away, a study examining how online merchants handle customer personal and financial data suggests shoppers need to add a dollop of caution to their shopping list. An examination of web application security practices by online retailers revealed a mix of privacy red flags for Black Friday and […]