Recent Security News

  • Transport for London staff faces systems disruptions after cyberattack

    September 6, 2024 at 03:52PM Transport for London (TfL) reported limited system and email access following a cyberattack, prompting collaboration with government agencies. Despite inaccessible refund services and journey history, TfL assures normal public transport operations. Customer data security is a concern, with temporary disruptions addressed and potential unauthorized system access identified. Essential transport services…

    Read More

  • Commercial Spyware Use Roars Back Despite Sanctions

    September 6, 2024 at 03:49PM Efforts by the US and other governments to curb NSO Group’s Pegasus and Intellexa Consortium’s Predator spyware have largely failed, leading the spyware retailers to improve evasion tactics. While recognized as a threat to human rights, sanctions have been circumvented, with spyware sales persisting. The spyware market is concentrated in…

    Read More

  • Car rental giant Avis discloses data breach impacting customers

    September 6, 2024 at 02:10PM Avis, a well-known car rental company, disclosed a recent data breach where attackers accessed their business application from August 3 to August 6, stealing names and other sensitive customer information. Avis has taken measures to enhance security and has advised affected customers to monitor their accounts for unauthorized activity and…

    Read More

  • US Gov Removing Four-Year-Degree Requirements for Cyber Jobs

    September 6, 2024 at 01:36PM The US government announced a new ‘Serve for America’ initiative to address cybersecurity job shortages by removing unnecessary degree requirements in favor of a skills-based approach. National Cyber Director Harry Coker emphasized the need for cyber talent and aims to prioritize candidates’ ability to perform the job rather than their…

    Read More

  • SonicWall Urges Users to Patch Critical Firewall Flaw Amid Possible Exploitation

    September 6, 2024 at 01:27PM SonicWall disclosed an actively exploited security flaw in SonicOS, urging immediate patching. The vulnerability (CVE-2024-40766) affects management access and SSLVPN, with potential unauthorized access and firewall crashes. Temporary solutions include restricting firewall management and implementing multi-factor authentication. The flaw’s exploitation in the wild has led to urgent patch recommendations for…

    Read More