Google’s new detection tool gives companies an edge over hackers
Google adds a new detection tool to its Security Command Center. It should help companies by securing their cloud environments.
Cloud environments are hard to secure due to their dynamic and complex nature. Google thinks it has the solution and adds a simulation tool to detect attack paths to it... Read more
Chrome patch fixes yet another zero-day vulnerability
Google is releasing another fix for a zero-day vulnerability. The news marks the third time this year that hackers have exploited such vulnerabilities within the popular browser, raising concerns about its susceptibility to targeted attacks. Google acknowledged the existence of an exploit for CVE-2... Read more
Windows 11 makes SMB signing mandatory
Microsoft is cracking down on NTLM relaying. To that end, it is mandating SMB signing for all Windows 11 devices.
A Windows 11 feature that mandates SMB signing is rolling out in the Insider channel. This security signature prevents hackers from tampering with a message during transmission.
T... Read more
User data hacker forum RaidForums made public in data breach
Hackers have given the formerly popular hacker forum RaidForums a post-mortem exposé akin to the old forum's actions. A database containing the data of more than 478,000 members of the hacker forum was recently posted online.
RaidForums was a notorious platform where hackers hosted and sold the... Read more
Hackers use encrypted RPMSG attachments for phishing
Hackers are using encrypted Restricted Permission Message (RPMSG) files via compromised Microsoft 365 accounts to steal login credentials. This is according to security specialist Trustwave.
According to Trustwave, the RPMSG files are abused to trick victims into handing over their Microsoft log... Read more
Report: even one unpatched bug can lead to cyber insurance claim
A new report shows that companies with even one unresolved vulnerability are more likely to experience a claim.
This week SiliconANGLE highlighted a new report by the cyber insurance startup Coalition showing that companies with even one unpatched critical vulnerability have a 33% higher likelih... Read more
WordPress Elementor plugin bug poses a catastrophic threat
WordPress Elementor contains a bug that poses a catastrophic security threat. The vulnerability affects over 1 million WordPress sites and can expose private information or even cause site deletion.
This week BleepingComputer reported that "Essential Addons for Elementor", one of WordPress's mos... Read more
Western Digital provides details on March data breach
The US hardware giant gave us an update on the extent of the damage done in the recent cyberattack.
Last Friday Western Digital (WDC) issued an official "update" on the results of the cyberattack the company had suffered in March.
Calling the attack a "network security incident", the San Jose... Read more
Hackers gain access to UK Pension Protection Fund data
The UK's Pension Protection Fund, which manages a massive £39 billion in assets for nearly 300,000 members, has been hit by hackers who gained access to some employee data.
The intruders exploited a vulnerability in the third-party data transfer service Go Anywhere, which the fund uses for secu... Read more
Dole claims ransomware attack had only “limited impact” to operations
The company says it has engaged third party experts to ensure swift remediation, but questions remain.
Food giant Dole announced this week that the company recently "experienced a cybersecurity incident that has been identified as ransomware".
The fresh food producer was very terse in its off... Read more