Preparing for DORA Amid Technical Controls Ambiguity

/in

The European Union’s Digital Operational Resilience Act requires financial entities to focus on third-party risk, resilience, and testing.

darkreading – ​Read More

US Gov Agency Urges Employees to Limit Phone Use After China ‘Salt Typhoon’ Hack

/in

The US government’s CFPB sent an email with a simple directive: “Do NOT conduct CFPB work using mobile voice calls or text messages.”

The post US Gov Agency Urges Employees to Limit Phone Use After China ‘Salt Typhoon’ Hack appeared first on SecurityWeek.

SecurityWeek – ​Read More

In Other News: China Hacked Singtel, GuLoader Attacks on Industrial Firms, Phone Use Warning in US Agency

/in

Noteworthy stories that might have slipped under the radar: China’s Volt Typhoon hacked Singtel, GuLoader targets European industrial organizations, and US agency warns employees about phone use. 

The post In Other News: China Hacked Singtel, GuLoader Attacks on Industrial Firms, Phone Use Warning in US Agency appeared first on SecurityWeek.

SecurityWeek – ​Read More

Hackers Can Access Mazda Vehicle Controls Via System Vulnerabilities

/in

Hackers can exploit critical vulnerabilities in Mazda’s infotainment system, including one that enables code execution via USB, compromising…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

CISA’s Jack Cable on secure-by-design pledge progress — and next steps

/in

The pledge, and CISA’s broader secure-by-design initiative, are key parts of the White House’s push to hold tech companies accountable for the cascading harms of poorly designed products and vulnerable software.

The Record from Recorded Future News – ​Read More

FBI says hackers are sending fraudulent police data requests to tech giants to steal people’s private information

/in

The warning is a rare admission from the FBI about the threat from fake emergency data requests submitted by hackers with access to police email accounts.

© 2024 TechCrunch. All rights reserved. For personal use only.

Security News | TechCrunch – ​Read More

How Developers Drive Security Professionals Crazy

/in

The journey toward a successful DevSecOps implementation is complex, requiring a strategic approach to overcome the myriad challenges it presents.

darkreading – ​Read More

Seoul accuses pro-Kremlin hackers of attacking websites over decision to monitor North Korean troops in Ukraine

/in

According to a statement from the South Korean president’s office on Friday, the country’s cyber agencies have detected an increase in Russia-linked attacks, primarily targeting civilian and government websites.

The Record from Recorded Future News – ​Read More

Malwarebytes Acquires VPN Provider AzireVPN

/in

Malwarebytes has acquired Sweden-based privacy-focused VPN provider AzireVPN to expand its product offerings.

The post Malwarebytes Acquires VPN Provider AzireVPN appeared first on SecurityWeek.

SecurityWeek – ​Read More

Unpatched Vulnerabilities Allow Hacking of Mazda Cars: ZDI

/in

ZDI discloses vulnerabilities in the infotainment system of multiple Mazda car models that could lead to code execution.

The post Unpatched Vulnerabilities Allow Hacking of Mazda Cars: ZDI appeared first on SecurityWeek.

SecurityWeek – ​Read More