A hacktivist group posted evidence of its involvement in the X attack in the form of screenshots on a Telegram channel. It has previously used DDoS attacks to target an assortment of organizations with a strong focus on the US, UAE, Israel and Ukraine.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Nearly 12,000 live API keys were found in an AI training dataset used by various models such as OpenAI and DeepSeek, exposing services like AWS, MailChimp, and Slack to exploitation.
A bill establishing a new vulnerability disclosure program for federal contractors has passed the House, and will now move on to the Senate to be reviewed by the Committee on Homeland Security and Governmental Affairs.
Have I Been Pwned? (HIPB) has added 244 million freshly stolen passwords compromised via infostealer malware to an already existing list of 199 million, impacting 284 million unique user accounts.
The United States government has formally put a pause on offensive cyber operations against Russia … The order was issued by Defense Secretary Pete Hegseth as part of new guidance provided to the US Cyber Command sometime in February.
American media giant Lee Enterprise has confirmed that the February cyber incident that disrupted operations including newspaper circulation was a ransomware attack by Qilin cyber gang.
The Chinese hackers were able to dwell for at least several months in 2023 and captured about 5% to 10% of all of the emails sent by the Belgian State Intelligence Service during that time.
The Department of Justice (DOJ) recently announced an $11.3 million settlement of False Claims Act allegations against a Department of Defense (DOD) contractor that allegedly falsely certified compliance with DOD cybersecurity contract requirements.
A massive data breach has struck the American background screening and drug and alcohol testing service DISA Global Solutions impacting over 3.3 million people.
The Chinese hackers are able to run a massive but stealthy campaign of password-spraying attacks while evading logs, targeting Microsoft 365 accounts that require only basic authentication and do not have MFA enabled.










