Recent Security News
-
British Library: Ongoing outage caused by ransomware attack
November 17, 2023 at 08:39AM The British Library has confirmed that a ransomware attack is the cause of a major outage affecting its services. The library is still investigating the attack and has not disclosed how the hackers breached its systems. The website is still offline three weeks after the incident. The library expects some…
-
CISA Warns of Attacks Exploiting Sophos Web Appliance Vulnerability
November 17, 2023 at 08:09AM The US cybersecurity agency CISA has added vulnerabilities from Sophos, Oracle, and Microsoft to its Known Exploited Vulnerabilities (KEV) catalog. The Sophos flaw, CVE-2023-1671, has been exploited in attacks and allows for arbitrary code execution. There have been reports of Chinese threat actors exploiting Sophos vulnerabilities. CISA’s KEV list also…
-
Israeli Man Who Made $5M From Hacking Scheme Sentenced to Prison in US
November 17, 2023 at 08:09AM Israeli private investigator Aviram Azari has been sentenced to 80 months in prison in the US for hacking companies and individuals, earning him nearly $5 million. Azari owned an Israeli intelligence firm, Aviram Hawk or Aviram Netz, and hired hacking groups to access online accounts and steal information. Targets included…
-
FCC Enforces Stronger Rules to Protect Customers Against SIM Swapping Attacks
November 17, 2023 at 07:48AM The FCC is implementing new rules to protect consumers from SIM-swapping attacks and port-out fraud. These scams involve malicious actors gaining control of a consumer’s phone number without physical access to the device. The rules require wireless providers to use secure authentication methods and notify customers of any SIM changes…
-
CitrixBleed Vulnerability Exploitation Suspected in Toyota Ransomware Attack
November 17, 2023 at 06:33AM Toyota Financial Services Europe & Africa confirmed being targeted in a cyberattack by the ransomware group Medusa. Unauthorized activity was detected in a limited number of locations and systems were taken offline. The group is threatening to distribute stolen data unless an $8 million ransom is paid. The attack may…