Lapsus$ hackers compromised Microsoft's Azure DevOps Server, exfiltrated and published source code for the company's web infrastructure, websites, and mobile apps.
Staff Correspondent at CPO Magazine
Alicia Hope has been a journalist for more than 5 years, reporting on technology, cyber security and data privacy news.
Attackers exploit Google reCAPTCHA forms to sneak into users' inboxes because automated email security scanners cannot solve CAPTCHAs to determine the destination phishing URLs.
Google says initial access broker Exotic Lily targeted at least 650 organizations with about 5,000 phishing emails per day to obtain credentials for selling to ransomware gangs.
Pandora cybercrime gang took responsibility for the ransomware attack on automotive supplier Denso and threatened to leak 1.4 terabytes of stolen data. Attack occurred hot on the heels of another compromise on Bridgestone.
While API security remains a major concern for most organizations, most were unprepared, with only 11% having a concrete API security strategy to detect and stop API attacks.
Suspected state-sponsored hackers compromised at least 100 employees of at least 21 natural gas producers before staging a cyber attack on the eve of the Russian invasion.
Ukraine's major internet provider Triolan suffered two severe cyber attacks disrupting internet services in what it described as the "vile strategy of the enemy."
Gaming chipmaker Nvidia said hackers started releasing information stolen in the February massive data leak, but no evidence suggests it was a Russian-sponsored ransomware attack.
Remote attackers and unauthorized users could access sensitive patient data and disrupt patient care via known security vulnerabilities present in 75% of medical infusion pumps.
Cyber attack on Toyota's electronics and plastic parts supplier Kojima Industries shut down 28 production lines across 14 plants in Japan, exposing production supply chain vulnerabilities.
