-
SuperCare Health Faces Lawsuits Over Data Breach
PRIVACY PRIVACY Respiratory patients seek legal redress after breach allegedly exposes medical records Read More
-
Leaked Chats Show LAPSUS$ Stole T-Mobile Source Code
PRIVACY PRIVACY KrebsOnSecurity recently reviewed a copy of the private chat messages between members of the LAPSUS$ cybercrime group in the week leading up to the arrest of its most active members last month. The logs show LAPSUS$ breached T-Mobile multiple times in March, stealing source code for a range of company projects. T-Mobile says…
-
Leaked Chats Show LAPSUS$ Stole T-Mobile Source Code
PRIVACY PRIVACY KrebsOnSecurity recently reviewed a copy of the private chat messages between members of the LAPSUS$ cybercrime group in the week leading up to the arrest of its most active members last month. The logs show LAPSUS$ breached T-Mobile multiple times in March, stealing source code for a range of company projects. T-Mobile says…
-
Java Cryptography Implementation Mistake Allows Digital-Signature Forgeries
PRIVACY PRIVACY Interesting implementation mistake: The vulnerability, which Oracle patched on Tuesday, affects the company’s implementation of the Elliptic Curve Digital Signature Algorithm in Java versions 15 and above. ECDSA is an algorithm that uses the principles of elliptic curve cryptography to authenticate messages digitally. […] ECDSA signatures rely on a pseudo-random number, typically notated…
-
Infosecurity Europe Announces Live Training Courses for this Year’s Event
PRIVACY PRIVACY Live cybersecurity training courses taking place for first time during this year’s Infosecurity Europe conference Read More
-
FBI Warns US Farmers of Ransomware Surge
PRIVACY PRIVACY Agricultural sector could be vulnerable during critical seasons Read More
-
State Actors Drive Record Number of Zero-Day Exploits in 2021
PRIVACY PRIVACY China is most prolific actor, according to Mandiant Read More
-
Crypto-Mining Botnet Goes After Misconfigured Docker APIs
PRIVACY PRIVACY LemonDuck targets Linux machines Read More
-
SolarWinds launches overarching management, monitoring for hybrid cloud
PRIVACY PRIVACY Hybrid Cloud Observability pulls together siloed monitoring and management tools on a single interface. Read More
-
Hot Patches for Log4Shell Introduced Multiple Vulnerabilities in Amazon Web Services
PRIVACY PRIVACY Hot Patches for Log4Shell Introduced Multiple Vulnerabilities in Amazon Web Services Amazon Web Services has addressed vulnerabilities introduced by the hot patches released in response to the Log4Shell vulnerability in December. Background On April 19, researchers with Palo Alto’s Unit 42 disclosed four vulnerabilities introduced by the hot patches for Amazon Web Services…