In January 2023, a significant investigation uncovered a vast array of web vulnerabilities impacting several major automotive manufacturers, including Kia, Honda, Infiniti, Nissan, Acura, Mercedes-Benz, Hyundai, Genesis, BMW, Rolls Royce, and Ferrari. This extensive research culminated in an alarming report detailing how the identified flaws, reported directly to the affected…
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime Hackers Breach Software Libraries to Distribute Malware Akshaya Asokan (asokan_akshaya) • October 25, 2024 Recent investigations by security experts have revealed a disturbing trend involving backdoored software packages found within the NPM library, indicative of an ongoing cyber operation…
Law enforcement authorities in the United Kingdom have apprehended a 17-year-old individual from Walsall, identified as a suspected member of the infamous Scattered Spider cybercrime group. This operation signifies a strategic push against a global network allegedly responsible for targeting major corporations with ransomware attacks and breaching their computer networks.…
After concluding an investigation into the data breach that occurred in February involving Change Healthcare, the US Department of Health and Human Services reported yesterday that approximately 100 million individuals were affected. This incident ranks as one of the most significant breaches of medical and health data in the United…
Cybersecurity researchers have recently revealed the existence of a significant security vulnerability in Phoenix SecureCore UEFI firmware, which affects various Intel Core processors used in both desktop and mobile devices. This flaw, identified as CVE-2024-0762 and assessed with a CVSS score of 7.5, has been characterized as a buffer overflow…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a strong recommendation urging manufacturers to eliminate default passwords on systems exposed to the internet. The agency emphasizes that these types of passwords present significant risks, allowing malicious actors to gain unauthorized access and traverse networks within organizations. In a…
The recent revelation regarding a Chinese espionage operation adds another layer to the existing concerns surrounding foreign digital interference in electoral processes. This incident follows earlier instances of Iranian hacking attempts aimed at leaking emails from the Trump campaign, alongside disinformation campaigns attributed to Russian entities rampant across various social…
Business leaders face the intricate challenge of making decisions grounded in accurate data and risk assessments. The ability to interpret relevant data and anticipate future business needs is paramount, accompanied by the need to evaluate associated costs carefully. Striking the right balance among skills, resources, and profit generation is essential,…
Cyberwarfare / Nation-State Attacks, Election Security, Fraud Management & Cybercrime David Perera (@daveperera) • October 25, 2024 Image: Shutterstock The Federal Bureau of Investigation (FBI) has launched an investigation into reported hacking activities described as state-sponsored from China, targeting the telecommunications sector. This development follows a report suggesting that hackers…
