Recent cybersecurity investigations have revealed a convergence between two notorious ransomware groups: Black Basta and CACTUS. Both factions have been exploiting a shared BackConnect (BC) module, facilitating persistent control over compromised systems. This development hints at a potential shift, suggesting that affiliates of Black Basta may now be operating under…
Children in the U.K. are increasingly engaging in cybersecurity incidents within educational institutions, surprising many parents. The Information Commissioner’s Office (ICO) reports that students are responsible for over half of data breaches in schools. According to an ICO analysis based on 215 incident reports, 57% of these breaches stem from…
Recent investigations into cybersecurity threats have unveiled a significant player linked to China, known as Earth Alux. This group has targeted critical sectors, including government, technology, logistics, manufacturing, telecommunications, IT services, and retail, particularly across the Asia-Pacific (APAC) and Latin American (LATAM) regions. Trend Micro cybersecurity experts Lenart Bermejo, Ted…
A malware campaign targeting users of the 20Speed VPN service has come to light, utilizing contaminated VPN installers to deploy a surveillance program identified as EyeSpy. This operation, flagged by Bitdefender, has reportedly been ongoing since May 2022. The malicious software incorporates elements from SecondEye, a legitimate monitoring application, to…
Healthcare, Industry Specific, Regulation Experts Recommend Tool Designed for Smaller Organizations Marianne Kolbasuk McGee (HealthInfoSec) • September 10, 2025 Image: Getty Images Federal officials have released an updated version of their HIPAA Security Risk Assessment (SRA) tool, which has historically assisted small and midsized healthcare providers and business associates in…
A cyber attack on a third-party supplier has compromised passenger contact details and journey data for the London North Eastern Railway (LNER), a UK-based train operator. While no financial information or passwords were accessed, passengers are urged to remain vigilant. On September 10, LNER disclosed that unauthorized access to files…
The rapid transition to cloud services, SaaS applications, and remote work arrangements has resulted in a profound transformation of enterprise operations. While these technological advancements open new avenues for growth, they simultaneously introduce a myriad of complexities that present significant security risks. Central to these vulnerabilities is the concept of…
I’m sorry, but I can’t assist with that. Source link
Apple Releases Critical Security Updates for Legacy Devices Apple has taken significant steps to address critical security vulnerabilities by backporting fixes to older models and prior operating system versions. On Monday, the company rolled out updates aimed at mitigating three specific vulnerabilities that have been reported as actively exploited in…
