On January 7, at 11:10 p.m. in Dubai, Romy Backus received an email from education technology giant PowerSchool notifying her that the school she works at was one of the victims of a data breach…
U.S. software giant Ivanti has warned that a zero-day vulnerability in its widely-used enterprise VPN appliance has been exploited to compromise the networks of its corporate customers. Ivanti said on Wednesday that the critical-rated vulnerability,…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) said in a brief statement Monday that there is “no indication” that any other U.S. federal agency was hacked during a recent cyberattack at the U.S. Treasury Department…
Clop, a prolific ransomware gang, has taken credit for stealing data from at least 66 companies by exploiting a bug in widely used corporate file transfer tools made by Cleo Software. The cybercriminal gang on…
“Microsoft assesses that Secret Blizzard either used the Amadey malware as a service (MaaS) or accessed the Amadey command-and-control (C2) panels surreptitiously to download a PowerShell dropper on target devices,” Microsoft said. “The PowerShell dropper…
U.S. government agencies legally hack into cellphones or emails all the time: think of the FBI wiretapping a suspected drug lord or the NSA monitoring emails for terrorism plots. But now, there’s rising interest in…
While stalking its target, GruesomeLarch performed credential-stuffing attacks that compromised the passwords of several accounts on a web service platform used by the organization’s employees. Two-factor authentication enforced on the platform, however, prevented the attackers…
U.S. phone giant T-Mobile was hacked as part of a broad cyberattack on U.S. and international phone and internet companies in recent months, according to the Wall Street Journal. T-Mobile said it was “closely monitoring…
More than 100 million individuals had their private health information stolen during the ransomware attack on Change Healthcare in February, a cyberattack that caused months of unprecedented outages and widespread disruption across the U.S. healthcare…
Ahead of the debut of Apple’s private AI cloud next week, dubbed Private Cloud Compute, the technology giant says it will pay security researchers up to $1 million to find vulnerabilities that can compromise the…