Items tagged with cybersecurity
Though you may think your home network is secure, attackers may be able to sneak in through your web browser and leverage vulnerabilities to pivot to internal devices. This is especially true for Internet of Things (IoT) equipment, which is notoriously insecure, requiring regular patches or even warnings from the...
Read more...
Artificial intelligence has found a footing in large language models (LLMs), which are all the rage right now, even finding their way onto PCs with user-run instances. However, with this increase in accessibility comes an increase in the risk of nefarious activity, like creating bioweapons using GPT-4. Now, Microsoft...
Read more...
Earlier this month, consumers were notified of a data breach at one of the United States’ largest banks, Bank of America. Serving 69 million customers and handling $1.3T in deposits, it comes as somewhat of a surprise to see such a massive, complex organization suffered a breach. However, it would appear that a...
Read more...
Around the world, countries are plagued with oppression, corruption, and misguided leadership that journalists and ethical hackers are trying to fight. However, keeping data safe from prying eyes can be difficult in some of these places with restrictive laws and invasive policies in place. Despite this, though, people...
Read more...
The federal government has quite the security doozy on its hands going into an election year, with events like Super Bowl LVIII going on as well. However, this is nothing that cannot be handled by an interagency task force dedicated to the physical and digital protection of Super Bowl LVIII patrons, participants, and...
Read more...
We know that ransomware has severe negative effects, such as hospitalizing security professionals from the sheer stress stemming from these sorts of attacks. We also know that the threat actors behind these operations are the lowest of the low and will do anything to maintain profit and their nefarious businesses...
Read more...
Cyberattacks are no joke, as they’ll clean out your systems, bank account and your mental and physical health, regardless of whether or not there was a ransom involved. This is precisely what consumer and professional cleaning products brand Clorox found from its August-thru-September 2023 cyberattack, which has cost...
Read more...
If you find yourself worrying about the latest breach that may have compromised your personal data, or you want to know exactly what about you is online, it is not all that hard to find out. You must know where to look, however, which is the most difficult part. That said, we have compiled a guide of some resources...
Read more...
Your personal data and information are hot commodities, so much so that virtually all businesses or other entities with access are all scrambling to monitor and sell it if possible. Threat actors also know this as well, which could lead to blackmail, extortion, bank account access, or more sinister things if your personal data is breached.
Read more...
USB malware drops have been around forever, and as always, we do not recommend you randomly plug in a flash drive you find out in the wild. However, this initial access method is still working for threat actors, which is what researchers found tracking threat actor group UNC4990. Beyond the initial access, though...
Read more...
Cybersecurity might be all the rage right now, with a plethora of people looking to break into it from previous careers or fresh out of college. Regardless of the circumstances, the industry might not be all that it is chalked up to be all the time. According to new research and reports, cybersecurity professionals...
Read more...
Power management and industrial automation company Schneider Electric (SE) was hit by a ransomware attack this month. With disclosures about the incident becoming available, it would indicate that while this was an isolated attack on SE, it could have repercussions for several companies whose data may have been...
Read more...
When it comes to security breaches, traditionally we expect that it is a company with poor security practices or simply struggling to keep up in the never-ending onslaught of threats online. However, the latest breach suffered by Microsoft changes that narrative significantly, indicating that, realistically, anyone...
Read more...
Botnet activities are usually sniffed out and found fairly routinely, but it seems that a previously unknown cybercrime gang named Bigpanzi has been laying low and getting away with it. New reports suggest that this gang has amassed a 170,000-device-strong botnet since 2015, developing along with it an admittedly...
Read more...
This week, researchers have publicly disclosed nine security vulnerabilities affecting devices that use TianoCore’s EDK II, an open-source reference UEFI implementation. While this may sound like super technical speak, these vulnerabilities, known as PixieFAIL, can be simplified to their effects, including but not...
Read more...
Simply put, the Internet of Things is cool, but it's cooler still when configured correctly and built with security in mind. Unfortunately, that almost never happens. A much more likely story is something like what happened to Johnie on Xwitter, who discovered a rogue IoT device living on their network and sending...
Read more...
In 2021 the Framework laptop hit the market, revolutionizing the standard laptop model from being a one-and-done sort of deal to an upgradable and modular experience. Since then, the brand has expanded quite a bit. With several releases and reiterations, like the recent AMD Ryzen upgrade across the 13” and 16” models...
Read more...
Early in January, Bitcoin saw a healthy spike up to $45,000 following some excitement surrounding Bitcoin exchange-traded-funds. This trend has continued with some ups and downs in the middle, but regardless, people have been rather excited about the prospects. So much so that one person elected to hack the SEC X...
Read more...
In December of last year, genetic testing company 23andMe suffered a significant data breach. Since then, the company has been dealing with the fallout, which includes several class action lawsuits from customers whose data was compromised. However, 23andMe is shifting some blame onto its customers, blaming them for...
Read more...
Password managers are not perfect. Recently, LastPass was blamed for millions in stolen neing crypto and KeePass is downplaying password database theft. Bitwarden may ne next to catch some flak. It turns out a penetration test discovered that unlocking a password vault with Windows Hello biometrics could be bypassed...
Read more...
As we closed out 2023, the world of cybersecurity settled just a touch as threat actors and defenders went off to celebrate the holiday in a seemingly unspoken Christmas truce. Nothing good can last forever, though, as the Cybersecurity and Infrastructure Security Agency (CISA) makes clear with an update to the Known...
Read more...
Earlier in the year, Apple fixed several vulnerabilities, which, when exploited, allowed Operation Triangulation spyware to make its way onto devices with zero interaction required. Since then, researchers have been uncovering all the components that made up the attack chain for the spyware campaign, and what they...
Read more...
