UK Health Club Chain ‘Total Fitness’ Data Leak Exposes KYC and Card Data
A recent KYC (Know Your Customer) data exposure at Total Fitness, a members-only club in the UK, left personal details of its members exposed online.…
Month: June 2024
Apparent Ransomware Attack Suspends Operations At Crown Equipment
Crown Equipment, a global top five forklift manufacturer, was hit by a cyberattack that has disrupted its manufacturing operations for nearly two weeks. The company…
The pros, cons and misconceptions of dynamic pricing for retailers
Advances in technology are making it increasingly possible for retailers and hospitality companies to be more intelligent with their pricing strategies, including multiple intra-day changes…
SolarWinds Serv-U path-traversal flaw actively exploited in attacks
Threat actors are actively exploiting a SolarWinds Serv-U path-traversal vulnerability, leveraging publicly available proof-of-concept (PoC) exploits. Although the attacks do not appear particularly sophisticated, the…
Hackers Exploit Progressive Web Apps to Steal Passwords
In a concerning development for cybersecurity, hackers are increasingly leveraging Progressive Web Apps (PWAs) to execute sophisticated phishing attacks aimed at stealing user credentials. This…
Now a Doctrine for Cyberspace Operations
Have you ever heard of a Doctrine meant to formulate cyber space operations? Well, here’s a news piece that might interest you a bit. The…
French Diplomatic Entities Targeted in Russian-Linked Cyber Attacks
Jun 20, 2024NewsroomCyber Espionage / Hacking News State-sponsored actors with ties to Russia have been linked to targeted cyber attacks aimed at French diplomatic entities,…
Chinese Hackers Targeted Telecommunications Of Asian Country
Researchers have discovered that various threat actors groups associated with Chinese state-linked espionage have been conducting a sustained hacking campaign targeting telecommunications operators in an…
CDK Global hacked again while recovering from first cyberattack
Car dealership SaaS platform CDK Global suffered an additional breach Wednesday night as it was starting to restore systems shut down in an previous cyberattack. CDK…
How to Hunt for Volt Typhoon Malware in Critical Infrastructure
Hunting for Volt Typhoon, a sophisticated and stealthy cyber threat actor with unknown malware components “living off the land”, is critical for several reasons: National…
Researchers Uncover UEFI Vulnerability Affecting Multiple Intel CPUs
Jun 20, 2024NewsroomFirmware Security / Vulnerability Cybersecurity researchers have disclosed details of a now-patched security flaw in Phoenix SecureCore UEFI firmware that affects multiple families…
A Dispute Over $3 Million 0-Day Bug Bounty
In a high-stakes clash within the crypto verse, Kraken, a leading U.S. cryptocurrency exchange, has accused blockchain security firm Certik of illicitly siphoning $3 million…