China Accuses U.S. of Fabricating Volt Typhoon to Hide Its Own Hacking Campaigns

/in

China’s National Computer Virus Emergency Response Center (CVERC) has doubled down on claims that the threat actor known as the Volt Typhoon is a fabrication of the U.S. and its allies.
The agency, in collaboration with the National Engineering Laboratory for Computer Virus Prevention Technology, went on to accuse the U.S. federal government, intelligence agencies, and Five Eyes countries of

The Hacker News – ​Read More

Researchers Uncover Hijack Loader Malware Using Stolen Code-Signing Certificates

/in

Cybersecurity researchers have disclosed a new malware campaign that delivers Hijack Loader artifacts that are signed with legitimate code-signing certificates.
French cybersecurity company HarfangLab, which detected the activity at the start of the month, said the attack chains aim to deploy an information stealer known as Lumma.
Hijack Loader, also known as DOILoader, IDAT Loader, and

The Hacker News – ​Read More

Recurring Risks: Analyzing Fidelity Investments’ Latest Data Breach and Its Implications

/in

In a recent notification from the Maine Attorney General, Fidelity Investments disclosed another data breach affecting over 77,000 individuals. This marks the second significant incident for the company in 2024 for one of the world’s largest financial services providers. The breach, occurring between August 17-19, 2024, exposed sensitive information including names, Social Security numbers…

Source

TechSplicer – ​Read More

European cyber insurance startup Stoïk secures $27 million

/in

Cyber risk has become an increasingly important issue for small companies around the world. While many companies try to avoid and mitigate cyber risks, they rarely discuss transferring those risks to a third party. That’s why Stoïk is stepping in with a cyber insurance product specifically designed for small and medium-sized businesses. The French startup […]

© 2024 TechCrunch. All rights reserved. For personal use only.

Security News | TechCrunch – ​Read More

WordPress Plugin Jetpack Patches Major Vulnerability Affecting 27 Million Sites

/in

The maintainers of the Jetpack WordPress plugin have released a security update to remediate a critical vulnerability that could allow logged-in users to access forms submitted by others on a site.
Jetpack, owned by WordPress maker Automattic, is an all-in-one plugin that offers a comprehensive suite of tools to improve site safety, performance, and traffic growth. It’s used on 27 million

The Hacker News – ​Read More

Southeast Asian Cybercrime Profits Fuel Shadow Economy

/in

With cybercriminal gangs raking in at least $18 billion regionally — and much more globally — law enforcement and policymakers are struggling to keep up as the syndicates innovate and entrench themselves in national economies.

darkreading – ​Read More

Serious Adversaries Circle Ivanti CSA Zero-Day Flaws

/in

Suspected nation-state actors are spotted stringing together three different zero-days in the Ivanti Cloud Services Application to gain persistent access to a targeted system.

darkreading – ​Read More

Intel Broker Claims Cisco Breach, Selling Stolen Data from Major Firms

/in

Intel Broker claims a major data breach at Cisco, allegedly stealing source codes, confidential documents, and credentials from…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Microsoft: Schools Grapple With Thousands of Cyberattacks Weekly

/in

Education, including K-12 schools and universities, has become the third most targeted sector due to the high variety of sensitive data it stores in its databases.

darkreading – ​Read More

Pokémon Gaming Company Employee Info Leaked in Hack

/in

The gaming company reports that the server has been rebuilt after the leak, but has not confirmed what kind of information was compromised.

darkreading – ​Read More