Safe, Secure, Anonymous, and Other Misleading Claims
Presently sponsored by: NTT’s Samurai XDR offers affordable enterprise-grade security for businesses of any size. $40 /endpoint/year. Try it free…
Security
Phishing campaign targeted US executives exploiting a flaw in Indeed job search platform
Threat actors exploited an open redirection vulnerability in the job search platform Indeed to carry out phishing attacks. Researchers from…
San Francisco’s transport agency Metropolitan Transportation Commission (MTC) exposes drivers’ plate numbers and addresses
A misconfiguration in the Metropolitan Transportation Commission (MTC) systems caused a leak of over 26K files, exposing clients’ home addresses…
BunnyLoader, a new Malware-as-a-Service advertised in cybercrime forums
Cybersecurity researchers spotted a new malware-as-a-service (MaaS) called BunnyLoader that’s appeared in the threat landscape. Zscaler ThreatLabz researchers discovered a…
Hacking Gas Pumps via Bluetooth
Turns out pumps at gas stations are controlled via Bluetooth, and that the connections are insecure. No details in the…
Exclusive: Lighting the Exfiltration Infrastructure of a LockBit Affiliate (and more)
Researchers have identified the exfiltration infrastructure of a LockBit affiliate while investigating a LockBit extortion incident that occurred in Q3…
Two hacker groups are back in the news, LockBit 3.0 Black and BlackCat/AlphV
Researchers from cybersecurity firm TG Soft are warning Italian entities and companies of LockBit 3.0 Black and BlackCat/AlphV attacks. In…
European Telecommunications Standards Institute (ETSI) suffered a data breach
The European Telecommunications Standards Institute (ETSI) disclosed a data breach, threat actors had access to a database of its users.…
WS_FTP flaw CVE-2023-40044 actively exploited in the wild
Experts warn of threat actors actively exploiting CVE-2023-40044 flaw in recently disclosed flaw in Progress Software’s WS_FTP products. Progress Software…
NSA AI Security Center
The NSA is starting a new artificial intelligence security center: The AI security center’s establishment follows an NSA study that…