Endpoint Security, Hardware / Chip-level Security, Internet of Things Security Annual Conference and Hackathon Highlights Innovations in IoT Device Protection Athira Nair • October 22, 2024 Vulnerabilities in electric vehicle chargers are key topics of discussion at Hardware.io. (Image: Shutterstock) The increasing connectivity of devices has led to a parallel…
The Federal Bureau of Investigation (FBI) has been summoned to probe a significant cybersecurity incident involving HBO, which has allegedly suffered a data breach resulting in the exposure of sensitive information, including unreleased episodes of popular shows like Game of Thrones. Hackers are reported to have extracted approximately 1.5 terabytes…
A significant extortion campaign has emerged, targeting various organizations by exploiting publicly accessible environment variable files (commonly ending in .env) that contain sensitive credentials for cloud and social media applications. This alarming trend underscores the vulnerabilities in data security practices across industries. According to a report by Palo Alto Networks’…
Connecticut has reached a settlement with Guardian Analytics, a financial crime risk management firm, following a significant data breach that affected one of its clients, Webster Bank. The breach, which occurred between November 2022 and January 2023, compromised the personal information of over 157,000 residents in Connecticut. This sensitive data…
Security Vulnerabilities in Emerson Rosemount Gas Chromatographs Exposed Recent findings have revealed multiple security vulnerabilities in Emerson Rosemount gas chromatographs, specifically the GC370XA, GC700XA, and GC1500XA models. These vulnerabilities could potentially be exploited by malicious actors to gain unauthorized access to sensitive information, disrupt services leading to denial-of-service (DoS) conditions,…
Recently reported zero-day vulnerabilities in Ivanti Connect Secure (ICS) virtual private network (VPN) devices have been actively exploited to deploy a Rust-based payload known as KrustyLoader. This malicious software component is specifically designed to install the open-source Sliver adversary simulation tool, which has gained traction among threat actors. The security…
Fortinet, a prominent provider of network security solutions, has recently come under scrutiny for concealing a significant vulnerability that has reportedly been exploited by attackers to execute unauthorized code on servers belonging to sensitive organizations. This silence persisted for over a week, raising concerns among users and cybersecurity experts alike…
2023 Cybersecurity Breach Impacts 1.9 Million Individuals at Great Expressions Dental Centers In a significant cybersecurity incident, Great Expressions Dental Centers, a Michigan-based dental organization operating 250 locations across nine states, has reached a preliminary settlement of $2.7 million over a hacking event that compromised the personal data of more…
Equifax Faces Wave of Lawsuits Following Major Data Breach Exposing Personal Information of Millions Equifax, one of the largest credit reporting agencies in the United States, is facing over 30 lawsuits in the wake of a significant data breach that exposed personal information belonging to approximately 143 million Americans. This…
