Security researchers have discovered hundreds of federal network devices with exposed management interfaces violating the recently mandated CISA security requirements detailed in the Binding Operational Directive (BOD) 23-02.
Staff Correspondent at CPO Magazine
Alicia Hope has been a journalist for more than 5 years, reporting on technology, cyber security and data privacy news.
US military personnel were warned against turning on unsolicited smartwatches mailed to service members that auto-connect to Wi-Fi and smartphones, potentially collecting sensitive information.
Snack giant Mondelēz International has suffered a third-party law firm data breach from its legal services provider, Bryan Cave Leighton Paisner LLP, leaking sensitive personal information of over 50,000 current and former employees.
BlackCat ransomware group has claimed responsibility for the Reddit hack and threatened to leak 80GB of information stolen during the Feb 2023 data breach and claims to have obtained damaging information capable of destroying the company’s reputation.
Oregon DMV and Louisiana OMV were impacted by the MOVEit cyber attack exposing sensitive information of virtually all the states’ ID and driver’s license holders.
A joint advisory detailing LockBit ransomware’s tactics and mitigations disclosed that the cybercrime gang extorted $91 million from US companies since 2020 after 1,700 attacks.
An Illinois hospital has attributed its permanent shutdown to a ransomware attack that disrupted healthcare, communication, and IT systems, preventing it from making insurance claims.
An adware campaign involving over 60,000 Android apps has infected devices since October 2022. Researchers warned that the infected Android apps could start distributing potent malware, including credential stealers, banking trojans, and ransomware.
Cybersecurity firm Kaspersky Lab has discovered an iOS malware variant spreading via an iPhone zero-click exploit in iMessage. Russia has accused the NSA of targeting the country’s diplomatic missions and Apple of providing backdoors.
Toyota discovered a second cloud misconfiguration data leak that exposed 260,000 domestic and international customers' in-vehicle data and personal information for over eight years.
