It's not often that malicious actors in the malware and virus space apologize, but that is exactly what happened on New Year's Eve after a ransomware attack targeted a children's hospital system in Canada.
The LockBit ransomware gang found out recently that one of its affiliates breached the rules of the...
Read more...
Back in August of this year, the password manager LastPass suffered a security breach that resulted in the theft of proprietary technical information and portions of the company’s source code. Hackers then used the stolen information to breach LastPass again at the end of November. Shortly after this follow-up breach...
Read more...
Back in October, a researcher at the cybersecurity firm Salt Security uncovered multiple security vulnerabilities in the LEGO BrickLink website that could have allowed hackers to hijack users’ accounts and arbitrarily read files on the the Amazon cloud server hosting the website. Upon making this discovery, the...
Read more...
The CEO of the password manager LastPass, Karim Toubba, has published a blog post on the company’s website disclosing a recent security breach. According to the blog post, this incident affected both LastPass and its affiliate company GoTo, with a similar blog post appearing on the GoTo website. With the help of the...
Read more...
Lenovo has been in the computer game for some time. In 2005 it purchased IBM's personal computer line that held the prefix moniker "Think," such as ThinkPad and ThinkCentre. It has since expanded the product offering to include much more, such as ThinkBooks, the Yoga series, and the Legion lineup, in addition to...
Read more...
Toyota, the world’s largest car company, recently discovered that an access key for one of its data servers has been publicly available on GitHub for almost five years, exposing the data on this server to potential unauthorized third party access. The data server in question stores information related to subscribers...
Read more...
We put a lot of faith in the prospect that our information is secure. Unfortunately, this is often just not the case. It is not hard for hackers and security ne'er-do-wells to get access to peoples' accounts when they use weak passwords incorporating little more than birthdates and pet names. This is especially true...
Read more...
We'll come clean up front: it's true that these security exploits require local access, and due to that fact, the urgent need to update might be a bit overstated. In this case, though, the excitement is less about the breadth of the vulnerabilities and instead the severity.
If you're confused, Lenovo published a...
Read more...
Back in January, we covered a phishing report by Check Point that placed DHL as the number one most-imitated brand in phishing attacks for the fourth quarter of 2021. DHL spoofs, representing 23% of global phishing attacks, passed Microsoft spoofs, which sat at 20%. However, Check Point just released its phishing...
Read more...
Update: British police say they have arrested seven individuals between the ages of 16 and 21 years old in connection with the investigation.
"The City of London Police has been conducting an investigation with its partners into members of a hacking group," Detective Inspector Michael O'Sullivan told...
Read more...
A ransomware gang known as LAPSUS$ has recently hit a number of big-name targets, including NVIDIA, Samsung, and Ubisoft, and the group may have now added Microsoft to that list. LAPSUS$ made waves at the end of February when news broke that NVIDIA had been hit by a cyber-attack. In an unexpected twist, LAPSUS$...
Read more...
Imagine it's the year 20XX. Hopefully you're healthy. You're also sitting on your front porch watching Amazon's package drones whiz through the skies while awaiting your own delivery. It slowly starts to prepare for landing before suddenly veering off somewhere else! What happened!? Well, Michigan State University...
Read more...
LastPass is telling its users that there is no evidence to suggest their passwords have been compromised, after previously sending out emails to some users stating their master passwords have been compromised. So what exactly is going on? According to LastPass, the email warnings were "likely triggered in...
Read more...
When it was found that Microsoft Exchange on-premises was vulnerable to hackers, quite a bit of havoc ensued across a wide range of industries. Since then, the FBI obtained a court order to go in and remove backdoors to hacked servers, but there are likely many hacked Exchange servers still out there. In recent days...
Read more...
Earlier this month, Facebook worked to downplay a data scraping operation that impacted nearly 533 million users on its social media platform. At that time, we viewed it as Facebook's attempt to simultaneously be evasive and attempt to save face. It seems this is legitimately Facebook's modus operandi; however, after...
Read more...
LG released a security update last month that addresses a vulnerability that impacted a massive number of its smartphones. The security flaw, tracked as CVE-2020-12753, affected every single smartphone that LG made over the last seven years. The vulnerability was in the bootloader component that shipped with the LG...
Read more...
Ring has faced challenges of late with hackers taking over accounts, among other things. Ring responded earlier this week to questions that five senators had sent to the company in the form of a letter about measures that it is taking to secure its line of video recording devices. The measures the company planned to...
Read more...
A company that develops digital forensics tools for businesses and law enforcement specialists has found a way to hack into locked Apple iPhone devices running the latest version of iOS. The method is said to work on most iPhone models, from the iPhone 5s through the iPhone X, and is effective on iOS 12 through iOS...
Read more...
If you use LastPass to manage your passwords, be advised that a recent update fixed a security issue that could allow an attacker to steal your login credentials. The issue is resolved in LastPass 4.33.0. However, if you do not have LastPass configured to update automatically, it is advised that you manually patch it...
Read more...
An auction for a netbook model from 2008 that is running Windows XP SP3 has fetched more than $1.3 million from its final bid, with the buyer owning quite possibly the most expensive laptop in the world. Why did it sell for so much? It contains half a dozen malware samples that have collectively caused over $95...
Read more...
LG is gearing up for a big MWC 2019 showing and is already teasing its flagship device that will be unveiled at the show. LG has in the past teased a device using a Snapdragon 855 SoC and packing a 5G modem for the show, but it's unclear if that device is the G8 ThinQ. LG has now announced that it has teamed up with...
Read more...
A newly discovered security vulnerability in modern Intel X86 processors has been revealed that affects the processor's speculative execution technology – like Spectre and Meltdown – and can be used to access sensitive information, including encryption related data. Over the last day or two, patches have quietly...
Read more...
