Eduard Kovacs

Irrigation systems were disrupted recently in Israel in an attack that once again shows how easy it is to hack industrial control systems (ICS).

A Windows zero-day tracked as CVE-2023-28252 and fixed by Microsoft with its April Patch Tuesday updates has been exploited in Nokoyawa ransomware attacks.

3CX has confirmed previous reports that the recently disclosed supply chain attack was likely conducted by North Korean hackers.

Microsoft and Citizen Lab release information on the activities, malware and victims of Israeli spyware vendor QuaDream.

Siemens and Schneider Electric’s Patch Tuesday advisories for April 2023 address a total of 38 vulnerabilities found in their products.

Three days after announcing patches for new zero-days affecting iOS and macOS, Apple released fixes for devices running older operating system versions.

Microsoft Exchange Server 2013 has reached end of support on April 11, 2023, and will no longer receive security patches.

Microsoft, Fortra and Health-ISAC have taken legal and technical action to prevent the abuse of the Cobalt Strike exploitation tool and Microsoft software.

An innocent-looking portable speaker can hide a hacking device that launches CAN injection attacks, which have been used to steal cars.

Forty-one cybersecurity-related M&A deals were announced in March 2023.

Law enforcement announced the takedown of Genesis Market, but the impact on the cybercrime marketplace’s infrastructure may be limited.

The FBI has seized Genesis Market, a major cybercrime website offering stolen device fingerprints.

Nexx has ignored repeated attempts to report critical product vulnerabilities that can be exploited to remotely open garage doors, and take control of alarms...

3CX supply chain attack appears to have been conducted by North Korean hackers with the goal of targeting cryptocurrency firms.

Cisco is set to acquire Israel-based cloud security company Lightspin for a reported $200-250 million.

Western Digital shuts down several of its services after discovering a network security breach.

Europe, the United States and Australia seem to be the most impacted by the 3CX supply chain hack, according to data from two cybersecurity...

The FDA is asking medical device manufacturers to provide cybersecurity-related information when submitting an application for a new product.

Several cybersecurity companies have published blog posts, advisories and tools to help organizations that may have been hit by the 3CX supply chain attack.

Water pumping systems made by ProPump and Controls are affected by several vulnerabilities that could allow hackers to cause significant problems.