LastPass Investigates Security Incident Impacting Customer Data LastPass, a widely utilized password management service, has disclosed an ongoing investigation into a security breach that has revealed unauthorized access to certain customer information. This incident follows a previous compromise in August 2022, raising new concerns regarding the security measures in place.…
Recent developments in the cybersecurity landscape have raised alarms as a massive dataset, comprising credentials from 183 million accounts, has surfaced online. Notably, a substantial portion of this data is associated with Gmail users. This exposure arises from logs generated by infostealer malware accumulated over several years, rather than a…
A significant data leak has come to light, compromising over 183 million email passwords, including tens of millions connected to Gmail accounts. Cybersecurity experts are characterizing this incident as one of the most substantial credential dumps ever discovered. This vast dataset, amounting to 3.5 terabytes of sensitive information, emerged online…
Russian State Propaganda in AI Responses: A Growing Concern Recent investigations reveal that advanced AI chatbots, notably OpenAI’s ChatGPT, Google’s Gemini, DeepSeek, and xAI’s Grok, are inadvertently promoting Russian state propaganda when queried about the Ukraine conflict. A report from the Institute of Strategic Dialogue (ISD) highlights that these chatbots…
On November 12, 2024, Microsoft disclosed that two significant security vulnerabilities affecting Windows NT LAN Manager (NTLM) and Task Scheduler have been actively exploited in the wild. These vulnerabilities were part of the November Patch Tuesday update, which addressed a total of 90 security flaws across Microsoft products. Among the…
On Thursday, Google’s Threat Analysis Group (TAG) revealed that it is currently monitoring over 270 state-sponsored threat actors operating across more than 50 countries. Since the beginning of 2021, TAG has issued approximately 50,000 alerts concerning phishing and malware attempts tied to these government-backed actors. This represents a 33% increase…
A significant security breach has come to light, involving the exposure of 183 million email accounts along with their corresponding passwords. This data, reportedly stemming from a malware-driven theft, has been added to the renowned breach-notification platform, Have I Been Pwned, run by cybersecurity expert Troy Hunt. Following its discovery…
Google recently announced that its AI-driven fuzzing tool, OSS-Fuzz, has successfully uncovered 26 vulnerabilities in multiple open-source code repositories. Among these is a medium-severity flaw identified in the widely used OpenSSL cryptographic library. The open-source security team from Google highlighted in a blog post, shared with The Hacker News, that…
The Cybersecurity and Infrastructure Security Agency (CISA) in the United States has highlighted the urgent need for government agencies to address known cyber vulnerabilities. In a recent announcement, the agency published a comprehensive catalog containing vulnerabilities identified from major tech companies including Apple, Cisco, Microsoft, and Google. These vulnerabilities are…
