Cyberattack Disables Tracking Systems for British Prison Transport A recent cyberattack on Microlise, a telematics provider based in the United Kingdom, has resulted in a temporary disruption of essential tracking systems and panic alarms for British prison vans. Although this incident has sparked concerns regarding the safety and security of…
Two newly identified security vulnerabilities in Ivanti Connect Secure (ICS) devices are currently being exploited to facilitate the notorious Mirai botnet attack. This information was disclosed by Juniper Threat Labs, which highlighted that the vulnerabilities, known as CVE-2023-46805 and CVE-2024-21887, are being leveraged to deliver the botnet’s malware payload. CVE-2023-46805…
Two UK Teenagers Convicted for LAPSUS$ Hacking Activities Targeting Major Tech Firms A jury in London has convicted two teenagers for their roles in the notorious LAPSUS$ hacking group, also known as Slippy Spider. This gang has been linked to a series of high-profile cyberattacks against leading technology companies, employing…
A cybercriminal group known as Hellcat ransomware has recently surged into the spotlight after launching an attack on Schneider Electric, a prominent French energy management firm. According to the group, they have exfiltrated around 60GB of sensitive data and are reportedly threatening to release 40GB of it on the dark…
CISO Martyn Booth Discusses Building Resilience Amid Organizational Change Martyn Booth, the Chief Information Security Officer at Dunhumby, emphasized the importance of resilience, adaptability, and teamwork during a recent interview. With his leadership role at a globally recognized customer data science firm, Booth focused on leveraging a solid foundation and…
Human Rights Activists Targeted by New Phishing Campaign in Morocco and Western Sahara A new cybersecurity threat has emerged in Morocco and the Western Sahara, particularly targeting human rights activists associated with the Sahrawi Arab Democratic Republic (SADR). This threat actor, identified by Cisco Talos as Starry Addax, employs sophisticated…
The Supreme Court is currently divided in its deliberations regarding a significant legal case involving Facebook and the implications of a major data breach. This case has drawn attention not only for its relevance to Facebook but also for its broader implications in the realm of data privacy and security.…
New Cyberattack Technique Exploits Stolen Cloud Credentials to Target LLM Services Cybersecurity researchers have recently uncovered a sophisticated attack that leverages stolen cloud credentials to infiltrate cloud-hosted large language model (LLM) services. This technique, dubbed LLMjacking by the Sysdig Threat Research Team, poses a significant threat as attackers aim to…
Kroll Reports SIM Swapping Incident Affecting Employee’s Data On August 19, 2023, Kroll, a prominent risk and financial advisory solutions provider, disclosed that one of its employees fell prey to a sophisticated SIM swapping attack targeting their T-Mobile account. The company emphasized that, without authorization or communication with Kroll, T-Mobile…
