New Supply Chain Attack “Revival Hijack” Risks Massive PyPI Takeovers

JFrog’s cybersecurity researchers have identified a new PyPI attack technique called “Revival Hijack,” which exploits package deletion policies. Over 22,000 packages are at risk, potentially impacting thousands of users. Stay informed!

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

‘Revival Hijack’ on PyPI Disguises Malware with Legitimate File Names

Adversaries reusing abandoned package names sneak malware into organizations in a sort of software shell game.

darkreading – ​Read More

US Government Isn’t Ready for Cyber Chaos in the Food and Agriculture Sector

The industry remains largely unscathed by cyber threats, but recent events like the JBS ransomware attack highlight vulnerabilities. The sector’s increased automation makes it a target for hackers, posing risks to the US food supply.

Cyware News – Latest Cyber News – ​Read More

Travelers Targeted in New Booking.com Phishing Scam

The attack involves compromising hotel managers’ accounts to access customer reservation systems, ultimately tricking hotel guests via the Booking.com app. The scheme utilizes a fake domain to deceive users and harvest sensitive data.

Cyware News – Latest Cyber News – ​Read More

Microsoft Tackling Windows Logfile Flaws With New HMAC-Based Security Mitigation

Microsoft is experimenting with a major new security mitigation to block attacks targeting flaws in the Windows Common Log File System (CLFS).

The post Microsoft Tackling Windows Logfile Flaws With New HMAC-Based Security Mitigation appeared first on SecurityWeek.

SecurityWeek – ​Read More

DDoS Attacks Hit France Over Telegram’s Pavel Durov Arrest

Hacktivists unite for the #FreeDurov campaign to launch a massive cyber campaign against France in response to Telegram…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

That massive Pixel security flaw has been patched

Google’s new update removes software intended only for cell phone store employees that could have been exploited by bad actors.

Latest stories for ZDNET in Security – ​Read More

Ransomware Crisis Deepens as Attacks and Payouts Rise

The ransomware crisis is escalating, with a surge in attacks and payouts. New ransomware groups like PLAY and Medusa have led a wave of attacks in the second quarter, following the takedown of LockBit and BlackCat.

Cyware News – Latest Cyber News – ​Read More

Initial Access Brokers Target $2bn Revenue Companies

Initial Access Brokers (IABs) are now targeting companies with revenues reaching $2 billion, particularly in the US and business services sector, according to new research from Cyberint.

Cyware News – Latest Cyber News – ​Read More

Dutch Privacy Watchdog Fines Clearview AI $34 Million for ‘Illegal’ Database of Faces

The Dutch Data Protection Authority (Dutch DPA) fined Clearview AI $34 million for the illegal creation of a facial image database. If Clearview AI does not comply, an additional fine of up to $5.5 million will be imposed.

Cyware News – Latest Cyber News – ​Read More