3 days ago - From university breaches to cyberattacks that shut down whole supply chains, these were the worst cybersecurity incidents of the year.

1 week ago - "Those kinds of things are exactly why attackers like this particular period," Froggett said. Flashback: Many of the most high-profile cyberattacks of this decade happened over the holidays. The U.S. government uncovered the Russian-backed SolarWinds espionage campaign right before Christmas in 2020.

3 days ago - Others have been discussed in previous years, including a 2020 attack on a Düsseldorf hospital, and claims from the University of Minnesota's School of Public Health, which estimated between 42 and 67 US Medicare patients may have died as a ...

2 weeks ago - Another year has come and gone, and with it, thousands of data breaches that affect millions of people. The question these days is less, Is my information in a data breach this year? and more How

3 weeks ago - The president is buddy-buddy with Xi and won’t let cyberattacks or saber-rattling get in the way.

2 weeks ago - Intelligence service says attacks were work of groups connected to Russian state in ‘clear evidence’ of hybrid war ... The Danish government has accused Russia of being behind two “destructive and disruptive” cyber-attacks in what it describes as “very clear evidence” of a hybrid war.

1 week ago - This means that companies between 1 and 249 employees were the most vulnerable to cybersecurity breaches throughout the year. Retail, tech, and media/entertainment businesses were targeted most frequently. Names and contact information are the most common records to appear on the dark web, increasing the risk of phishing attacks targeting workers.

2 weeks ago - Every year, TechCrunch looks back at the cybersecurity horror shows of the past 12 months — from the biggest data breaches to hacks resulting in weeks of disruption — to see what we can learn.

2 days ago - For context, Trump fired former ... the 2020 presidential election "the most secure in American history" amidst Trump's unfounded claims of election fraud. Related:Apple Patches More Zero-Days Used in 'Sophisticated' Attack · CISA provides a wide range of services for organizations, including vulnerability guidance, physical and cyber security ...

3 days ago - Improved security: Consistently lower hack rates despite growing TVL suggest that DeFi protocols may be implementing more effective security measures compared to the 2020-2021 period. Target substitution: The concurrent rise in personal wallet thefts and centralized service compromises suggests that attacker attention may be shifting to alternative targets.

3 weeks ago - DoorDash, the popular app for ordering food and groceries, disclosed a recent data breach. A social-engineering scam was the culprit. The company’s response claims that there is no indication that any fraud or identity theft have occurred. Scope: Unspecified but included customers, employees, and partners. Data exposed: Names, phone numbers, email addresses, and physical addresses. ... Key lesson: Cybersecurity education and awareness are crucial to preventing these attacks.

2 weeks ago - What to watch: Whether defenders can quickly adopt and defend AI-powered defenses to fend off what experts warn will likely be a swarm of AI-enabled attacks in the coming year. AI model operators have also started developing and releasing their own security agents to find and detect bugs before adversaries do. Go deeper: The age of AI-powered cyberattacks is here

2 weeks ago - The same trend has been playing out in tooling, according to Amit Jain, global head of cybersecurity and GRC services at HCLTech. Attackers are upgrading the sophistication of their code.

5 days ago - Weekly cybersecurity recap on exploited network flaws, new APT attacks, major CVEs, and defense insights.

3 weeks ago - White House AI Czar David Sacks has dismissed any discussion of AI risks as “doomerism” and repeatedly attacks those who favor export controls to China, so perhaps the silence around it is to be expected, but the dangers are real. Take cybersecurity as an example. Anthropic recently announced that a Chinese state-sponsored group manipulated its Claude Code tool to attempt to infiltrate roughly 30 targets around the world, including “large tech companies, financial institutions, chemical manufacturing companies, and government agencies.” The hackers used “AI’s ‘agentic’ capabili

2 days ago - At the same time, AI supply chain compromise will eclipse zero-day exploits as the highest-impact attack vector. Poisoned training data, manipulated model weights, compromised plugins, and agent action libraries will quietly undermine AI systems ...

The NHS has a long and troubled history of cyber attacks and data breaches – with attacks on partners such as OneAdvanced and Synnovis disrupting services and demonstrating the supply chain risks faced by healthcare organisations.

The Cybersecurity and Infrastructure Security Agency (CISA) is aware of ongoing intrusions by People’s Republic of China (PRC) state-sponsored cyber actors using BRICKSTORM malware for long-term persistence on victim systems.

3 weeks ago - Like other FTOs, ISIS advocates for lone-offender attacks in the U.S. and Western countries via videos and other English-language propaganda that have specifically advocated for attacks against civilians, the military, law enforcement, and intelligence community personnel. Iran continues to plot attacks against former government officials in retaliation for the for the January 2020 death of Islamic Revolutionary Guard Corps Qods Force (“IRGC-QF”) Commander Qassem Soleimani.