The secret hardware function targeted by the attackers allowed them to bypass advanced memory protections, enabling post-exploitation techniques and compromising system integrity.
SE Labs has warned that multi-factor authentication (MFA) is not foolproof and can be bypassed by attackers using old-school methods such as social engineering, malware, and phishing.
The breached information includes names, contact details, dates of birth, medical and health insurance information, financial account numbers, employment status, and government identifiers.
Companies need to shift their focus from solely addressing threats to proactively mitigating risks by analyzing behaviors and implementing insider risk management solutions.
DDoS attacks have significant consequences, including financial losses, compromised data, and erosion of customer trust. Global events like the Russia-Ukraine war and NATO bids have fueled recent DDoS attack growth.
The cybercrime group, DragonForce, has claimed responsibility for the attack and has leaked 95 GB of data belonging to the company. Yakult Australia is currently investigating the incident with the help of cybersecurity experts.
The hacker group CyberAv3ngers claims to have obtained and is selling 1TB of data from Israel’s electricity infrastructure. They posted a message on a platform offering the data for sale. The Israel Electric Corporation (IEC) has not yet responded.
The cyberattack on Fidelity National Financial was claimed by the AlphV/Blackcat ransomware gang, causing disruption to hundreds of home purchases and leading to the seizure of the gang’s leak site by law enforcement agencies.
A Russian man accused by the United States of trafficking in a hacked database of online credentials will apparently evade American courts after the Russian government said it had succeeded in extraditing him.
Barracuda Networks has discovered two zero-day vulnerabilities, known as CVE-2023-7102 and CVE-2023-7101, in its Barracuda Email Security Gateway Appliance (ESG) devices.