Eduard Kovacs

AtlasVPN developers are working on a patch for an IP leak vulnerability after a researcher publicly disclosed the flaw due to being ignored.

Nine vulnerabilities patched in SEL electric power management products, adding to the 19 other flaws fixed earlier this year.

Okta says some of its US-based customers have been targeted in social engineering attacks whose goal was to disable MFA and obtain high privileges.

Forty cybersecurity-related merger and acquisition (M&A) deals were announced in August 2023.

Industry professionals comment on the law enforcement operation targeting the Qakbot botnet and its implications.

Small electric utilities in the US offered $9 million as part of a competition whose goal is to help them boost their cybersecurity posture.

Five Eyes report details 'Infamous Chisel' malware used by Russian state-sponsored hackers to target the Ukrainian military’s Android devices. 

Dangling DNS records were abused by researchers to hijack subdomains belonging to major organizations, warning that thousands of entities are impacted.

Earth Estries, a cyberspy group possibly linked to China, has targeted governments and tech firms in the US, Germany, South Africa and Asia. 

Serious flaw affecting major BGP implementations can be exploited to cause prolonged internet outages, but several vendors have not patched it. 

The DreamBus botnet has resurfaced and it has been exploiting a recently patched Apache RocketMQ vulnerability to deliver a Monero miner.

Fianu Labs has emerged from stealth mode with a software governance automation solution and $2 million in seed funding.  

The Crates.io Rust package registry was targeted in preparation of a malware attack aimed at developers, according to Phylum.

Dutch cloud company Leaseweb shut down some critical systems last week due to a cyberattack.

Three bankrupt cryptocurrency companies — FTX, BlockFi and Genesis — suffered data breaches following a SIM swapping attack at Kroll. 

Weekly cybersecurity news roundup that provides a summary of noteworthy stories that might have slipped under the radar for the week of August 21,...

Congresswoman Nancy Mace has introduced a bill that would require federal contractors to have a Vulnerability Disclosure Policy (VDP).

Nearly 1,000 organizations and 60 million individuals are impacted by the MOVEit hack, and the Cl0p ransomware gang is leaking stolen data.

Mysterious Whiffy Recon malware scans for nearby Wi-Fi access points to obtain the location of the infected device.

Rockwell Automation ThinManager ThinServer vulnerabilities could allow remote attackers to  take control of servers and hack HMIs.