Microsoft has released security fixes to address a massive set of 126 flaws affecting its software products, including one vulnerability that it said has been actively exploited in the wild. Of the 126 vulnerabilities, 11 are rated Critical, 112 are rated Important, and two are rated Low in severity. Forty-nine of these vulnerabilities are classified as privilege […]

April 2 (Reuters) – Oracle (ORCL.N), opens new tab has told customers that a hacker broke into a computer system and stole old client log-in credential, Bloomberg News reported on Wednesday, citing two people familiar with the matter. Last month, an unidentified person began attempting to sell data online that was stolen from the cloud servers of […]

Artificial intelligence cybersecurity company Adaptive Security announced Wednesday that it closed a $43 million funding round in March, co-led by OpenAI and Andreessen Horowitz. The investment marks OpenAI’s first outside backing of a cybersecurity firm. Adaptive Security simulates AI-powered attacks against companies, specializing in training for deepfake attacks and other phishing threats. “The technology is […]

The threat actor that claimed responsibility for an alleged data breach at Oracle Cloud is threatening to release or sell the data, according to security researchers. The threat actor, identified as Rose87168, posted a threat Sunday to leak stolen data and claimed Oracle is not cooperating with the hacker’s demands, according to a LinkedIn post […]

MIT Technology Review’s How To series helps you get things done.  Things aren’t looking good for 23andMe. The consumer DNA testing company recently parted ways with all its board members but CEO Anne Wojcicki over her plans to take the company private. It’s also still dealing with the fallout of a major security breach last October, which […]

A Medusa ransomware campaign is using a malicious driver to disrupt and even delete endpoint detection and response (EDR) products on targeted organization networks. According to new research from Elastic Security Labs, the malicious driver, dubbed ABYSSWORKER, is deployed along with a packer-as-a-service called HeartCrypt to deliver Medusa ransomware. Elastic noted the driver was first documented in a ConnectWise […]

BEIJING, March 20 (Reuters) – Chinese search giant Baidu (9888.HK), opens new tab on Wednesday denied allegations it had suffered an internal data breach after a top executive’s teenage daughter posted personal details of other internet users online, sparking a controversy. The company, one of China’s largest cloud providers, was thrust into the spotlight last […]

SAN FRANCISCO (AP) — Google has struck a deal to buy cybersecurity firm Wiz for $32 billion in what would be the tech giant’s biggest-ever acquisition at the same time it’s facing a potential breakup of its internet empire. The proposed takeover announced Tuesday is part of Google’s aggressive expansion into cloud computing during an artificial intelligence boom. The […]

LOS ANGELES (AP) — The FBI and the U.S. Cybersecurity and Infrastructure Security Agency are warning against a dangerous ransomware scheme. In an advisory posted earlier this week, government officials warned that a ransomware-as-a-service software called Medusa, which has launched ransomware attacks since 2021, has recently affected hundreds of people. Medusa uses phishing campaigns as […]

(NEXSTAR) – The $350 million T-Mobile agreed to pay in a 2022 class action settlement will finally start going out to customers next month. The class action lawsuit came after a cyberattack in August 2021 compromised the personal data of 76 million T-Mobile customers in the U.S. The data that was breached included customers’ names, […]