A data breach on DEA's Law enforcement system reportedly granted administrators of doxxing and swatting website Doxbin and linked to Lapsus$ hacking group access to at least 16 databases.
A multinational cybersecurity advisory warned that cyber attacks on managed service providers (MSPs) could enable supply chain attacks, ransomware, and cyber espionage downstream.
The U.K’s National Cybersecurity Centre (NCSC) report addressed the threat posed by malicious apps downloaded through official and third-party app...
The FBI calculated the cost of BEC attacks to be $43 billion, with a 65% increase between 2019 and 2021. Banks in Thailand, Hong Kong, China, and Singapore were the primary recipients of illicit funds.
Threat actors leveraged 139 compromised NHS email accounts to send thousands of malicious emails in a credential harvesting phishing campaign and advance-fee scam.
Security researchers discovered a “package planting” flaw that allows malware developers to add respected open-source contributors to malicious NPM packages without notification or approval.
A recent report investigated how much of that funding went to companies led by women. Of the 654 startups analyzed, only 22 — or 3.3% — were led by female CEOs.
Microsoft 365 Defender researcher team discovered a privilege escalation vulnerability dubbed Nimbuspwn allowing an attacker to gain root privileges and deploy malicious payloads.
The FBI warned that BlackCat ransomware had compromised 60 organizations worldwide as of March 2022 and demanded millions in ransom payment. Alert linked BlackCat to the now-defunct BlackMatter ransomware group.
Fraudster revealed how criminals make money using underground bots that steal multifactor authentication codes and link stolen cards to contactless payments like Apple Pay.