SecurityWeek

New attack named SnailLoad allows a remote attacker to infer websites and videos viewed by a user without direct access to network traffic.

The EFF has issued a warning over the use of automated license plate readers following the discovery of serious vulnerabilities. 

LivaNova USA says the personal and medical information of 130,000 individuals was compromised in an October 2023 data breach.

The US has announced charges against four Vietnamese nationals for hacking businesses and causing $71 million in losses.

The Los Angeles County Department of Health Services discloses a data breach caused by push notification spamming attack.

The US has imposed sanctions on 12 individuals who have leadership roles at Kaspersky in Russia and the UK.

A hacker claims to have stolen the information of 30 million users from TEG subsidiary Ticketek.

Japan’s space agency has suffered a series of cyberattacks, but sensitive information related to rockets and satellites was not affected.

Facial recognition startup Clearview AI has reached a settlement in an Illinois lawsuit alleging its massive photographic collection of faces violated the subjects’ privacy rights.

Hundreds of operations and appointments are still being canceled more than two weeks after the June 3 cyberattack on NHS provider Synnovis.

Santander US is notifying over 12,000 employees that their personal information was compromised in a data breach.

A recently patched Vision Pro vulnerability was classified by Apple as a DoS issue, but a researcher has shown that it’s ‘scary’.

Noteworthy stories that might have slipped under the radar: Microsoft email spoofing vulnerability, Snowflake hack victims get ransom demands, LogoFail still around.

Threat actors are exploiting a recent path traversal vulnerability in SolarWinds Serv-U using public PoC code.

CISA says CFATS program data was likely accessed after an Ivanti Connect Secure appliance was hacked in January.

The US government announced a ban on the sale of Kaspersky software over fears that the company is controlled by the Russian government.

Car dealership software provider CDK Global was in the process of restoring services impacted by a cyberattack when it discovered an additional hack.

Change Healthcare is starting to notify hospitals, insurers and other customers that they may have had patient information exposed in a massive cyberattack.

A years-long espionage campaign has targeted telecoms companies in Asia with tools associated with Chinese groups.

Ilya Sutskever's new company is focused on safely developing “superintelligence” - a reference to AI systems that are smarter than humans.