NHS England has issued an alert regarding a critical Veeam Backup & Replication vulnerability that is being actively exploited, potentially leading to remote code execution Read More

Read More

Access Now announced that the US Customs and Border Protection agency released records on its app following the NGO’s lawsuit Read More

Read More

After retiring in 2014 from an uncharacteristically long tenure running the NSA (and US CyberCommand), Keith Alexander founded a cybersecurity company called IronNet. At the time, he claimed that it was based on IP he developed on his own time while still in the military. That always troubled me. Whatever ideas he had, they were…

Read More

A new Sonatype report reveals a 156% surge in open source malware, with over 704,102 malicious packages identified since 2019, as OSS adoption continues to skyrocket Read More

Read More

Russian-backed APT29 has been spying on US and European organizations since at least 2021, a US-UK joint advisory said Read More

Read More

Operation MiddleFloor targets Moldova’s October elections, spreading EU disinformation via email Read More

Read More

The data breach exposed more than 10m customer conversations from an AI call center platform in the Middle East Read More

Read More

The EU’s Cyber Resilience Act requires cybersecurity standards for all connected products throughout their entire lifecycle Read More

Read More

Financial Business and Consumer Solutions (FBCS), a debt collection agency previously used by Comcast, was the subject of a ransomware attack in February 2024, which had a database of names, addresses, social security numbers, dates of birth, and Comcast account details exposed. Read more in my article on the Hot for Security blog. Read More

Read More

Marriott will pay $52m to 50 US states for a data breach impacting 131.5 million American customers, and has agreed to implement stronger security practices Read More

Read More