May 14, 2024 at 09:45AM Google and Apple are introducing an anti-stalking feature for Android 6.0+ and iOS 17.5 to alert users if someone uses a Bluetooth tag to track them. It aims to address alleged misuse of tracking devices for stalking. Apple’s Find My network has a similar alert feature for AirTags, and the … Read more
May 10, 2024 at 03:33PM Dell recently suffered a data breach compromising 49 million customer records, including personal data and hardware details, which were subsequently offered for sale on the Breach hacking forum. A threat actor named Menelik admitted to exploiting a partner portal to access and scrape the information, claiming ease of registration and … Read more
May 8, 2024 at 03:35AM Ransomware has plagued the information security landscape for a decade, with attacks increasingly targeting corporations for big payouts. Mikko Hyppönen, chief research officer at WithSecure, warns that the rise in attacks and the value of Bitcoin has created lucrative opportunities for criminals. Despite this, the security industry offers a promising … Read more
April 16, 2024 at 11:24AM Security researchers have uncovered a “credible” takeover attempt targeting the OpenJS Foundation, resembling a recent incident aimed at the open-source XZ Utils project. The incident involved suspicious emails urging updates to JavaScript projects and calls to designate new maintainers. This highlights the risks of supply chain attacks and the need … Read more
April 15, 2024 at 07:48AM Former senior security engineer Shakeeb Ahmed, 34, of New York, was sentenced to three years in prison for defrauding two cryptocurrency exchanges of $9 million and $1.4 million, using smart contract vulnerabilities to manipulate prices. Ahmed, who worked at an international tech company, must forfeit $12.3 million and pay $5 … Read more
April 4, 2024 at 09:51PM Hoya, a Japanese optics conglomerate, has experienced an IT systems attack, leading to a halt in production and sales activities. The company discovered a system failure on March 30, 2024, and is working to restore affected systems. It is unclear if any confidential or personal information has been compromised, and … Read more
March 29, 2024 at 06:50PM The Tech Tip outlines how to check for system impact from a newly discovered backdoor in the open source xz compression utility. It seems like the main takeaway from the meeting notes is to detail the process for checking if a system is affected by the newly discovered backdoor in … Read more
March 28, 2024 at 10:54AM The government offers monetary rewards for tips aiding in the suppression of ransomware-as-a-service group’s cyberattacks on vital US infrastructure. Based on the meeting notes, the key takeaway is that the Feds are providing monetary incentives for information that can aid in combating the ransomware-as-a-service group’s cyberattacks on critical US infrastructure. … Read more
March 26, 2024 at 05:22PM A new and improved variant of the group’s malware is causing chaos in virtual environments by combining fileless infection, BYOVD, and other advanced techniques. Based on the meeting notes, it seems that a new, enhanced version of the group’s malware has been developed. This variant combines fileless infection, BYOVD, and … Read more
March 25, 2024 at 06:41PM Countries globally are showing support for secure AI practices, although not fully committing to them. The meeting notes indicate that while countries are showing support for secure AI practices, they are not completely committing to them. This suggests a widespread interest in the concept, but a hesitance to fully embrace … Read more