Dell has confirmed a security breach after the World Leaks ransomware cyber gang leaked 1.3 terabytes of data allegedly stolen from the company’s infrastructure.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
The massive 2023 cyber attack on Clorox can be traced to a negligent help desk employee at longtime contractor Cognizant, according to a new lawsuit filed by the company. Clorox is seeking a total sum of $380 million for breach of contract, lost sales and reputational damage, with $49 million of that in direct remediation.
Restrictions on ransomware payments have become common for government agencies around the world, but it is still fairly rare to see them extended to the public sector or local levels of government. The new UK rules would additionally require all business types that are not impacted to notify the government.
A ransomware attack affecting Russian vodka producer Novabev disrupted its internal IT systems, shutting down over 2,000 liquor stores, including...
Vibe coding AI Replit put out some bad vibes by hallucinating components that it added to a project on its own, such as a database of 4,000 fictional people, ignored repeated orders, and eventually deleting an entire database.
Microsoft has released security patches for the zero-day vulnerability chain dubbed ToolShell, capable of remote code execution on SharePoint, resulting in the exploitation of at least 54 organizations worldwide.
Artificial intelligence (AI) has rapidly emerged as the double-edged sword of the cyber threat environment. Sophisticated AI models now serve as both potent tools for attackers and vulnerable hinge points for organizations girding against intrusions.
Luxury brand Louis Vuitton has suffered a cyber attack attributed to ShinyHunters across South Korea, Turkey, the United Kingdom, Italy, and Sweden, leaking personal data.
A new Russia-based family of malware has been observed using a large language model (LLM) to issue commands on compromised systems in real time, which can potentially improve attacker capability by allowing them to shift tactics during an attack without having to introduce new payloads.
The Salt Typhoon state-sponsored hackers were able to maintain a footing in a state National Guard unit for nine months and use this position to intercept traffic from other national guard networks in all 50 states as well as at least four US territories.










