-
Education in Secure Software Development
The Linux Foundation and OpenSSF released a report on the state of education in secure software development. …many developers lack the essential knowledge and skills to effectively implement secure software development. Survey findings outlined in the report show nearly one-third of all professionals directly involved in development and deployment system operations, software developers, committers,…
-
Cencora Confirms Patient Data Stolen in Cyber-Attack
Pharma company Cencora confirmed in an updated SEC filing that sensitive personal and health data was exfiltrated by attackers in a February 2024 incident Read More
-
E-Commerce Fraud Campaign Uses 600+ Fake Sites
The “Eriakos” info-stealing campaign is using hundreds of fake web shops to defraud victims Read More
-
BEC Attacks Surge 20% Annually Thanks to AI Tooling
A Vipre study reveals a 20% increase in business email compromise attacks Read More
-
Nearly 7% of Internet Traffic Is Malicious
Cloudflare reports on the state of applications security. It claims that 6.8% of Internet traffic is malicious. And that CVEs are exploited as quickly as 22 minutes after proof-of-concepts are published. News articles. Read More
-
Urgent Blood Appeal Issued in US After Ransomware Attack
US non-profit OneBlood has issued an urgent appeal for donations after a ransomware attack has significantly reduced its capacity to distribute blood to hospitals Read More
-
New SMS Stealer Malware Targets Over 600 Global Brands
Discovered by Zimperium’s zLabs team, the SMS Stealer malware was found in over 105,000 samples Read More
-
Meta to Pay Texas $1.4bn for Unlawful Biometric Data Capture
Meta has agreed a $1.4bn settlement with the State of Texas for failing to inform Facebook users about its biometric data capturing practices Read More
-
New PyPI Package Zlibxjson Steals Discord, Browser Data
According to Fortinet, PyPI package Zlibxjson steals Discord tokens and browser data, including passwords and extensive user information Read More
-
Don’t Let Your Domain Name Become a “Sitting Duck”
More than a million domain names — including many registered by Fortune 100 firms and brand protection companies — are vulnerable to takeover by cybercriminals thanks to authentication weaknesses at a number of large web hosting providers and domain registrars, new research finds. Image: Shutterstock. Your Web browser knows how to find a site like…