Cybersecurity Alert: US Treasury Sanctions Chinese Cyber Actors Following Breach The U.S. Department of the Treasury has taken decisive action in response to recent cyber threats by sanctioning Yin Kecheng, a cyber operative allegedly based in Shanghai. Yin is implicated in a significant breach that compromised the Department of Treasury’s…
As the United States intensifies efforts to eliminate Chinese influence from its telecommunications networks, Jessica Rosenworcel, the outgoing Democratic chair of the Federal Communications Commission (FCC), emphasizes the necessity for robust oversight in the telecommunications sector. This call for vigilance comes in light of the recent “Salt Typhoon” hacking campaign,…
Cybersecurity Alert: New Spear Phishing Campaign Linked to Russian Group Recent revelations from Microsoft’s Threat Intelligence teams uncover a significant spear phishing campaign targeting WhatsApp accounts, attributed to the Russian hacker group known as Star Blizzard. This campaign reportedly commenced in October 2023 and has persisted into August 2024, raising…
Governance & Risk Management, Network Firewalls, Network Access Control, Patch Management Warning Issued for Active Zero-Day Vulnerability as Device Configurations Are Exposed Mathew J. Schwartz (euroinfosec) • January 17, 2025 Image: Shutterstock Fortinet has issued an urgent alert to users of its firewall products, advising them to apply patches for…
The data breach that impacted the NFT marketplace OpenSea in 2022 has resurfaced in discussions, particularly after the revelation that over seven million email addresses were publicly exposed. This incident highlights ongoing concerns regarding the inherent risks tied to centralized computing within the Web3 ecosystem, as noted by industry experts.…
In a significant move just four days before his departure, President Joe Biden has issued a comprehensive cybersecurity directive aimed at enhancing government security protocols. This executive order seeks to reshape how federal agencies monitor their networks, procure software, implement artificial intelligence, and respond to foreign hacking threats. The directive,…
Identity & Access Management, Security Operations Google Issues Warning on Using Emails as Unique Identifiers for Authentication Prajeet Nair (@prajeetspeaks) • January 16, 2025 Image: Shutterstock A recent investigation revealed a critical security risk associated with Google’s authentication methods, particularly concerning the use of email addresses as unique identifiers. Security…
Title: Human Element Continues to Drive Data Breaches: Insights for Business Owners Recent studies reveal that approximately 70% of data breaches can be traced back to human factors, underscoring the critical need for organizations to protect their most valuable assets: their employees, finances, and data. As cybercriminals increasingly target human…
In the evolving landscape of cybersecurity, the misuse of open-source tools has emerged as a significant threat, particularly regarding intimate image abuse. Ajder highlights that many of these tools are created with good intentions but can swiftly be weaponized by individuals with malicious aims. The journey often begins when a…
