Employment agencies and retail companies chiefly located in the Asia-Pacific (APAC) region have been targeted by a previously undocumented threat actor known as ResumeLooters since early 2023 with the goal of stealing sensitive data. Singapore-headquartered Group-IB said the hacking crew’s activities are geared towards job search platforms and the theft of resumes, with as many […]
VMware partners continue searching for alternatives post-Broadcom acquisition, and plenty of vendors are jumping in to fill the void. It’s a big difference from the picture VMware painted a year ago. Back then the company said it was doubling-down into managed services, recognizing that it’s partners were moving into new revenue streams as the marketplace […]
Cybersecurity researchers have detailed an updated version of the malware HeadCrab that’s known to target Redis database servers across the world since early September 2021. The development, which comes exactly a year after the malware was first publicly disclosed by Aqua, is a sign that the financially-motivated threat actor behind the campaign is actively adapting […]
Two major water companies, Veolia North America in the United States and Southern Water in the United Kingdom, have been targeted in ransomware attacks that resulted in data breaches. Veolia describes itself as the world’s largest private player in the water sector, providing water and wastewater services to tens of millions of people. In a […]
The supermassive leak contains data from numerous previous breaches, comprising an astounding 12 terabytes of information, spanning over a mind-boggling 26 billion records. The leak, which contains LinkedIn, Twitter, Weibo, Tencent, and other platforms’ user data, is almost certainly the largest ever discovered. There are data leaks, and then there’s this. A supermassive Mother of […]
Jan 17 (Reuters) – The Cyberspace Administration of China is conducting a cybersecurity review of online retailer Shein’s data handling and sharing practices, the Wall Street Journal reported. China’s internet regulator is looking at how Shein handles information on its partners, suppliers and staff in China, and if the fashion company can protect such data […]
Multiple security vulnerabilities have been disclosed in Bosch BCC100 thermostats and Rexroth NXA015S-36V-B smart nutrunners that, if successfully exploited, could allow attackers to execute arbitrary code on affected systems. Romanian cybersecurity firm Bitdefender, which discovered the flaw in Bosch BCC100 thermostats last August, said the issue could be weaponized by an attacker to alter the […]
There is no clear dividing line between “cyber warfare” and “cyber crime.” This is particularly true with regard to alleged acts of cyber aggression originating from Russia. The recent suspected Russian cyber attack on Ukrainian mobile operator Kyivstar is a reminder of the potential dangers posed by cyber operations to infrastructure, governments, and private companies […]
Cybersecurity skills were analyzed in a recent report by Fortinet. According to the report, the number of organizations confirming five or more breaches jumped by 53% between 2021 and 2022. Sixty-eight percent of organizations indicate they face additional risks because of cybersecurity skills shortages, consistent with 67% in 2021. Ninety-three percent of respondents indicate their […]
Published on Tuesday, the NSA’s 2023 Cybersecurity Year in Review report (PDF) details the agency’s efforts in cybersecurity and its work with government partners, foreign partners, and defense industrial base (DIB) entities to improve national security. The NSA’s cybersecurity efforts mainly focus on protecting national security systems (NSS), which contain classified information or are critical […]