Category: Uncategorized
-
AT&T Says Data on 73 Million Customers Leaked on Dark Web Mike Lennon
AT&T used the Easter holiday weekend to quietly share details on data that surfaced on the dark web roughly two weeks ago. The post AT&T Says Data on 73 Million Customers Leaked on Dark Web appeared first on SecurityWeek. Read More
-

Hackers Target macOS Users with Malicious Ads Spreading Stealer Malware [email protected] (The Hacker News)
Malicious ads and bogus websites are acting as a conduit to deliver two different stealer malware, including Atomic Stealer, targeting Apple macOS users. The ongoing infostealer attacks targeting macOS users may have adopted different methods to compromise victims’ Macs, but operate with the end goal of stealing sensitive data, Jamf Threat Labs said in a report published…
-

Urgent: Secret Backdoor Found in XZ Utils Library, Impacts Major Linux Distros [email protected] (The Hacker News)
RedHat on Friday released an “urgent security alert” warning that two versions of a popular data compression library called XZ Utils (previously LZMA Utils) have been backdoored with malicious code designed to allow unauthorized remote access. The software supply chain compromise, tracked as CVE-2024-3094, has a CVSS score of 10.0, indicating maximum severity. It impacts XZ UtilsRead More
-

Dormakaba Locks Used in Millions of Hotel Rooms Could Be Cracked in Seconds [email protected] (The Hacker News)
Security vulnerabilities discovered in Dormakaba’s Saflok electronic RFID locks used in hotels could be weaponized by threat actors to forge keycards and stealthily slip into locked rooms. The shortcomings have been collectively named Unsaflok by researchers Lennert Wouters, Ian Carroll, rqu, BusesCanFly, Sam Curry, sshell, and Will Caruana. They were reported to the Zurich-basedRead More
-
SydeLabs Emerges From Stealth Mode With $2.5 Million in Funding Ionut Arghire
Generative-AI security startup SydeLabs emerges from stealth mode with $2.5 million in seed funding led by RTP Global. The post SydeLabs Emerges From Stealth Mode With $2.5 Million in Funding appeared first on SecurityWeek. Read More
-
In Other News: Airline Privacy Review, SEC’s SolarWinds Hack Probe, Apple MFA Bombing SecurityWeek News
Noteworthy stories that might have slipped under the radar: US government conducting airline privacy review, SEC’s overreaching SolarWinds hack probe, MFA bombing of Apple users. The post In Other News: Airline Privacy Review, SEC’s SolarWinds Hack Probe, Apple MFA Bombing appeared first on SecurityWeek. Read More
-
Pentagon Outlines Cybersecurity Strategy for Defense Industrial Base Eduard Kovacs
US Defense Department releases defense industrial base cybersecurity strategy with a focus on four key goals. The post Pentagon Outlines Cybersecurity Strategy for Defense Industrial Base appeared first on SecurityWeek. Read More
-
The Complexity and Need to Manage Mental Well-Being in the Security Team Kevin Townsend
It is the CISO’s responsibility to build and maintain a high functioning team in a difficult environment – cybersecurity is a complex, continuous, and adversarial environment like none other outside of military conflict. The post The Complexity and Need to Manage Mental Well-Being in the Security Team appeared first on SecurityWeek. Read More
-

TheMoon Botnet Resurfaces, Exploiting EoL Devices to Power Criminal Proxy [email protected] (The Hacker News)
A botnet previously considered to be rendered inert has been observed enslaving end-of-life (EoL) small home/small office (SOHO) routers and IoT devices to fuel a criminal proxy service called Faceless. “TheMoon, which emerged in 2014, has been operating quietly while growing to over 40,000 bots from 88 countries in January and February of 2024,” the Black Lotus Labs…
-
Energy Department Invests $15 Million in University Cybersecurity Centers Ionut Arghire
The US Department of Energy announces $15 million funding for university-based electric power cybersecurity centers. The post Energy Department Invests $15 Million in University Cybersecurity Centers appeared first on SecurityWeek. Read More
