Recent Security News
-
Crypto-crook Sam Bankman-Fried spared a second trial
January 2, 2024 at 03:14PM US prosecutors have decided not to pursue a second trial for convicted crypto figure Sam Bankman-Fried. A letter cited already considered evidence and public interest for a prompt resolution. The decision could affect SBF’s March 2024 sentencing, as it would involve negotiating with The Bahamas over extradition terms. The first…
-
Google password resets not enough to stop these info-stealing malware strains
January 2, 2024 at 03:06PM Info-stealing malware can still access compromised Google accounts even after passwords are changed, due to a zero-day exploit first mentioned by the cybercriminal “PRISMA.” The exploit involves regenerating session tokens to access emails and cloud storage. CloudSEK identified the exploit in the undocumented Google OAuth endpoint “MultiLogin.” The discover reveals…
-
Online museum collections down after cyberattack on service provider
January 2, 2024 at 02:07PM Gallery Systems, a museum software provider formed in April 2022, suffered a ransomware attack on December 28th, 2023, causing IT outages. Notable clients, including MoMA and the Met, were affected. The company is working to restore systems and data using backups, and is conducting an internal investigation while law enforcement…
-
Are Security Appliances fit for Purpose in a Decentralized Workplace?
January 2, 2024 at 02:06PM Traditional security appliances are no longer considered effective perimeter security as they are infested with high-risk vulnerabilities, not designed for mobility and the cloud, and are difficult to patch. Cloud-native security, particularly single-vendor SASE, offers convergence of security functions, centralized patching, and cloud-native design, driving a market expected to grow…
-
Xerox says subsidiary XBS U.S. breached after ransomware gang leaks data
January 2, 2024 at 12:33PM Xerox Business Solutions (XBS) U.S. division was hacked, with limited personal information possibly exposed. Xerox Corporation is working with cybersecurity experts to investigate and secure the IT environment. The attack has not affected operations, but sensitive data may have been stolen. Xerox assures it will notify affected individuals. This follows…