Atomic research institute breached via VPN vulnerability - A North Korean APT group is thought to be behind a attack on the South Korean atomic energy research institute, KAERI.
Two Google plans that could make open source code more secure - Google has announced projects to ensure the integrity of open source supply chains, and to bring the Rust language to the Linux kernel
Jail for consultant who scraped colossal trove of Alibaba customer data - A baffling number of data points gathered by Alibaba were siphoned off by a marketing consultant to help other customers.
Russia accused of hacking Dutch police during MH17 investigation - Journalists in the Netherlands suspect that Russian group APT29 (Cozy Bear) breached Dutch Police systems looking for information about MH17.
800 arrests after police dupe crime groups into using backdoored phones - International law enforcement created a wildly popular encrypted messaging service for criminals. And then they listened in.
Using iPhones and AirTags to sneak data out of air-gapped networks - A researcher has discovered a method for exfiltrating data from air-gapped networks using Apple's Find My technology.
IoT riddled with BadAlloc vulnerabilities - A set of memory allocation vulnerabilities, dubbed BadAlloc, has been found in a massive number of IoT and OT devices.
SUPERNOVA malware discovered on SolarWinds Orion server - During an incident response investigation CISA found SUPERNOVA malware hidden on a server running SolarWinds Orion.
FIN7 sysadmin behind “billions in damage” gets 10 years - Fedir Hladyr is considered the mastermind behind the Carbanak campaign that stole $900 million from financial institutions and others.

Select your language