HACK THE PENTAGON AGAIN – AND AGAIN
Defense Secretary Ash Carter announcing Hack the Pentagon results during a press conference Great news today for U.S. citizens – the Department of Defense has…
Month: May 2023
Data Breach at MCNA Dental Insurer Impacts 9 Million Users
The discovery of unauthorized access to MCNA Insurance Company’s systems occurred on March 6th 2023, although the initial breach had taken place as early as…
MCNA Dental data breach impacts 8.9 million people after ransomware attack
Managed Care of North America (MCNA) Dental has published a data breach notification on its website, informing almost 9 million patients that their personal data…
Cryptanalysis of Tropical Encryption Scheme Based on Double Key Exchange
Abstract: A tropical encryption scheme is analyzed in this paper, which uses double key exchange protocol (KEP). The key exchange protocol is divided into two…
$7.5 Million Lost in Latest DeFi Attack
The immediate consequence was that the price of the native token of the Jimbos Protocol, Jimbo (JIMBO), plummeted by 40%. In the ever-evolving world of…
3 Challenges in Building a Continuous Threat Exposure Management (CTEM) Program and How to Beat Them
If you’re a cybersecurity professional, you’re likely familiar with the sea of acronyms our industry is obsessed with. From CNAPP, to CWPP, to CIEM and…
Introducing Policy Change Notifications | HackerOne
Never miss a security page policy change with new Policy Versioning. Although you can browse through the history of a program’s policy, we wanted to…
Lazarus hackers target Windows IIS web servers for initial access
The notorious North Korean state-backed hackers, known as the Lazarus Group, are now targeting vulnerable Windows Internet Information Services (IIS) web servers to gain initial…
AceCryptor: Cybercriminals’ Powerful Weapon, Detected in 240K+ Attacks
A crypter (alternatively spelled cryptor) malware dubbed AceCryptor has been used to pack numerous strains of malware since 2016. Slovak cybersecurity firm ESET said it identified over 240,000 detections…
Patched This Mitsubishi MELSEC Controller Vulnerability?
The Cybersecurity and Infrastructure Security Agency (CISA) issued a special advisory on Mitsubishi MELSEC controller vulnerability CVE-2023-1424, apart from the list of ICS vulnerability alerts…
OT Malware Causes Electric Power Disruption
A Russian government-linked malware targeting power transmission was discovered recently by researchers at Mandiant during research, suggesting its potential use in training exercises for cyberattacks…
CERT-In Issues Alert On High-Severity ITunes Vulnerabilities
The Computer Emergency Response Team (CERT-In) of India issued an advisory addressing two Apple iTunes vulnerabilities. The bugs were found in Apple iTunes versions prior…