August 6, 2024 at 10:19AM Proton VPN has introduced updates to its Windows and Android apps, including a ‘Discreet Icon’ feature to mask the app as weather or notes. The ‘Stealth’ anti-censorship protocol is now available on Windows, aiding in disguising VPN traffic. Additionally, new servers in countries with restricted digital freedom have been added … Read more
July 22, 2024 at 09:05AM Microsoft is facing questions regarding third-party software like CrowdStrike running at a low level in the Windows kernel, sparking fallout in the tech industry. The 2009 undertaking with the European Commission may have contributed to this situation, as it sought to provide equal access to third-party security vendors. However, closer … Read more
July 21, 2024 at 03:34PM Cybercriminals are using CrowdStrike’s glitchy update to target companies with data wipers and remote access tools. CrowdStrike is actively assisting affected customers, urging them to verify official communications. Phishing emails exploiting the situation have been observed by researchers and government agencies. Malicious actors are distributing malware disguised as CrowdStrike updates, … Read more
July 12, 2024 at 10:17AM AT&T suffered its second cyberattack this year, with data on “nearly all” wireless customers being compromised, including those with MVNOs. The breach on a third-party cloud platform exposed call and text metadata, potentially enabling customer geolocation. Around 110 million customers were affected, and the incident is linked to the Snowflake … Read more
July 10, 2024 at 12:52PM Mandiant’s report linked data thefts to Snowflake account intrusions due to lacking multi-factor authentication controls. In response, Snowflake now offers a mandatory MFA option and a new authentication policy. The Snowflake Trust Center and security scanner packages are now available, aiming to promote MFA adoption and secure configurations. Snowflake denies … Read more
July 4, 2024 at 06:37AM Microsoft has disclosed two security vulnerabilities in Rockwell Automation PanelView Plus, which could be exploited by remote attackers for remote code execution and denial-of-service (DoS) attacks. These flaws are tracked as CVE-2023-2071 and CVE-2023-29464, impacting FactoryTalk View Machine Edition and FactoryTalk Linx. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) … Read more
June 14, 2024 at 07:42AM The French government has offered €700 million for crucial assets of troubled IT services company Atos, as part of a restructuring plan. These assets include Advanced Computing, Mission-Critical Systems, and Cybersecurity activities, which have significant involvement in French military and state projects. Atos is evaluating the proposal and is also … Read more
June 13, 2024 at 01:25PM A proof-of-concept exploit for Veeam Recovery Orchestrator vulnerability tracked as CVE-2024-29855 has been released by security researcher Sina Kheirkha. The exploit allows unauthenticated access to the web UI with administrative privileges due to a hardcoded JWT secret. Veeam’s security bulletin suggests upgrading to patched versions and provides conditions required to … Read more
April 4, 2024 at 01:27PM Hoya Corporation, a global optics manufacturer, faced a “system failure” leading to server downtime at various plants. With 37,000 employees across 160 sites and in over 30 countries, they prioritize system restoration. A third-party security breach is suspected, impacting production and order systems. Investigations continue to analyze the extent and … Read more
March 20, 2024 at 08:57AM Government agencies in the US, UK, Canada, Australia, and New Zealand are warning critical infrastructure entities of the threat posed by Chinese state-sponsored group, Volt Typhoon. Following a February advisory, the agencies are offering guidance on defending against the group’s advanced persistent threat (APT) activities, emphasizing cybersecurity, supply chain security, … Read more