SecurityWeek

The Internet Archive has suffered an email hack while working to restore services impacted by the recent cyberattacks.

Cyprus said that it has successfully thwarted a DDoS attack aimed at blocking access to the government’s central online portal.

Premier Industrial Cybersecurity Conference offers 80+ sessions and hands-on training to tackle critical infrastructure cyber threats.

The Adload macOS adware potentially exploits a privacy bypass vulnerability resolved in Sequoia 15 last month.

Noteworthy stories that might have slipped under the radar: China making claims about encryption cracking and Intel backdoors, ConfusedPilot AI attack, Microsoft loses security logs.  

A Pyongyang-aligned APT was caught exploiting a recent zero-day in Internet Explorer in a supply chain attack.

Veracode and Veilid Foundation co-founder discusses the "human rights issue" of accessible privacy and what makes hackers unique.

North Korean nationals posing as IT workers have been extorting their employers after gaining insider access.

SANS has published its 2024 State of ICS/OT Cybersecurity report, based on a survey of over 530 critical infrastructure sector professionals.

An Alabama man has been arrested over his role in the hacking of the SEC's X account, which led to a Bitcoin price spike.

Omni Family Health has disclosed a data breach impacting nearly 470,000 current and former patients and employees.

Data security company Cyera has acquired stealth mode startup Trail Security for its data loss prevention (DLP) technology. 

There are a number of lesser-known phishing techniques that are often overlooked or underestimated yet increasingly being employed by attackers.

CISA and the FBI are requesting public comment on new guidance regarding risky software security bad practices.

F5 has released patches for a high-severity elevation of privilege vulnerability in BIG-IP and a medium-severity bug in BIG-IQ.

Cisco has released patches for multiple vulnerabilities in ATA 190 series firmware, including two high-severity flaws.

Iranian threat actors use brute force techniques in attacks against critical infrastructure organizations, the US, Australia, and Canada warn.

Brazil’s Federal Police announced the arrest of a hacker whose description matches that of the notorious leaker USDoD.

The DoJ has announced charges against Anonymous Sudan members and the disruption of their DDoS attack service.

Artificial intelligence tech giant Nvidia issues a warning for code execution and data tampering security problems in the NeMo platform.