A significant data breach has compromised the personal details and locations of about 800,000 electric Volkswagen vehicles, leaving sensitive driver information exposed online for several months. This incident, first reported by German magazine Der Spiegel, stemmed from identified vulnerabilities in the software operating within Volkswagen vehicles. The breach potentially enabled…
In a concerning development for cybersecurity in 2024, Jake Williams, Vice President of Research and Development at Hunter Strategy and a former NSA hacker, expressed disbelief at the emergence of command injection vulnerabilities in secure remote access products, particularly those used by the U.S. government. These vulnerabilities, he notes, are…
A significant cyber incident involving the United States Department of the Treasury has come to light, involving an alleged breach by hackers linked to a Chinese Advanced Persistent Threat (APT) group. This attack, confirmed by the Treasury in an official statement issued on December 30, 2024, raises serious concerns regarding…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Network Firewalls, Network Access Control Hackers Exploit PAN-OS Vulnerability Shortly After Its Announcement Akshaya Asokan (asokan_akshaya) • December 30, 2024 A Palo Alto firewall. (Image: Palo Alto) A suspected cyber espionage effort traced back to a Chinese hacking group is exploiting a…
Marriott Faces Federal Action Over Major Data Breaches Affecting Millions The U.S. Federal Trade Commission (FTC) announced on Wednesday that Marriott International and its subsidiary, Starwood Hotels & Resorts Worldwide, will be mandated to implement an information security program as part of a settlement related to several significant data breaches…
Chinese State-Sponsored Hacking of U.S. Treasury Workstations: A Major Incident The U.S. Treasury Department recently reported a significant security breach, revealing that Chinese hackers gained access to its workstations via a third-party cloud service. This alarming incident, which the department categorized as a "major incident" in a letter to Congress,…
The United States government has unveiled a set of proposed cybersecurity regulations aimed at mitigating the ramifications of health data breaches. These new rules are designed to bolster the safeguarding of sensitive health information amid a significant uptick in high-profile data compromises affecting millions of Americans. Anne Neuberger, the Deputy…
The recent developments in passkey technology highlight significant challenges faced by users, particularly regarding cross-platform functionality and ease of access. A new feature announced allows users to create passkeys directly on security keys, a move that aims to enhance user convenience. However, many industry experts argue that the implementation across…
On Saturday, a wave of complex cyberattacks targeted nine websites belonging to the Italian government, leading to significant disruptions across critical digital services. Among the compromised sites were the Ministry of Foreign Affairs and the official platforms for Milan’s principal airports, Linate and Malpensa. Despite the severity of the attack,…
