Latest Software Security Breaches & Attacks
Codecov has called in law enforcement agencies after a cyber attacker breached one of its products which enables software developers to test source code to help prevent bugs and syntax errors.
Nearly every business polled reported a cyber-attack via a mobile device last year, according to research by cyber security firm Check Point Software Technologies
The Australian Cyber Security Centre (ACSC) has identified extensive targeting and confirmed compromises of organisations with vulnerable Microsoft Exchange servers.
Microsoft is pushing out updates for older software as ransomware groups seek to exploit vulnerabilities caused by ongoing attacks against on-premise versions of its Exchange Server.
A group of hackers says it has breached security systems and viewed live feeds from 150,000 surveillance cameras supplied by Verkada to general and psychiatric hospitals, women’s health clinics, police stations, prisons, schools and companies, including car maker Tesla and software provider Cloudflare.
The White House has urged widespread action to patch Microsoft Exchange servers following an ongoing attack that the company has blamed on China.
McAfee hits back after being charged with fraud and money laundering conspiracy over cryptocurrency promotion
The anti-virus software pioneer John McAfee has hit out after being charged with fraud and money laundering crimes in the United States.
Residential Mortgage Services (RMS) has agreed with New York state’s Department of Financial Services to pay $1.5m after failing to report a cyber breach.
Microsoft says it has detected multiple zero-day attacks against on-premise versions of Microsoft Exchange Server.
Oxford University has confirmed reports of a cyber incident at a research laboratory that is researching how to counter the Covid-19 pandemic
Ransomware attacks increased 20% in 2020 compared to the previous year, with “double-extortion” tactics used in 59% of cases, according to a report by IBM Security.
Hackers behind Accellion breach linked to FIN11 group
Clubhouse app reviews data protection practices following concerns about potential Chinese government access
High-profile US app Clubhouse has pledged to review its data protection procedures after academics warned it contained security flaws that left users’ data at risk of being accessed by the Chinese authorities.
A new ransomware group called Egregor has caught the attention of the Federal Bureau of Investigation, prompting it to issue a warning last month. GRC World Forums explains more about what it is and how it is being used in “double-extortion” attempts.
The Federal Trade Commission (FTC) in the US has finalised a settlement with SkyMed International over allegations that the emergency travel services provider failed to take reasonable steps to secure sensitive consumer information.
An environmental regulator in Scotland has confirmed that at least 4,000 files have been accessed and likely stolen by criminals in an ongoing cyberattack on its systems.
Vehicles are now entertainment, communications and productivity hubs, connected to both the internet and their surroundings – so automotive cyber security is increasingly essential, writes Alexander Moiseev
US cyber security company FireEye yesterday revealed that it had been the victim of what it believes was a state-sponsored cyber attack.
Data locality is increasingly seen as important, but is there confusion as to why it matters? Microsoft’s Mark Anderson explains what he believes to be the real reason for its importance
The Director of the Cybersecurity and Infrastructure Security Agency (CISA) was fired by Donald Trump yesterday because he authorised a statement saying that the election was “the most secure in American history.”