BSNL Data Breach Exposes Millions Of User Records
India has confirmed a data breach in the systems of Bharat Sanchar Nigam Limited’s (BSNL), the country’s largest government-owned-telecommunications service provider. The BSNL data breach,…
Month: July 2024
The Future Of Network Defense
26 Jul Cybersecurity Mesh: The Future Of Network Defense Posted at 09:03h in Blogs by Di Freeze This week in cybersecurity from the editors at…
The Dumbest Thing In Security This Week: Really, CrowdStrike Again?
CrowdStrike (CRWD) is in the midst of an unenviable crisis after a faulty update crashed 8.5 million Windows machines around the globe, but some of…
ServiceNow Flaw Let Remote Attackers Execute Arbitrary Code
ServiceNow recently disclosed three critical vulnerabilities (CVE-2024-4879, CVE-2024-5217, and CVE-2024-5178) affecting multiple Now Platform versions, allowing unauthenticated remote code execution and unauthorized file access. The…
Sheltering from the Cyberattack Storm
As we move towards the summer and the promise of sunnier weather, it’s worth noting that the cybersecurity industry has seen more rain than sunshine…
A North Korean Hacker Tricked a US Security Vendor Into Hiring Him—and Immediately Tried to Hack Them
KnowBe4, a US-based security vendor, revealed that it unwittingly hired a North Korean hacker who attempted to load malware into the company’s network. KnowBe4 CEO…
CMA cloud licensing: Microsoft accuses Google and AWS of ‘muddying’ anti-trust debate
Microsoft’s response to the Competition and Markets Authority’s (CMA) ongoing investigation into its cloud licensing practices has seen it accuse arch-rivals Amazon and Google of…
SeleniumGreed Campaign Targets Cryptocurrency Users Online
Threat actors are increasingly targeting exposed Selenium Grid services to deploy cryptominers, a campaign dubbed “SeleniumGreed.” This threat leverages the popular Selenium WebDriver API and has…
BIND updates fix high-severity DoS bugs in the DNS software suite
BIND updates fix four high-severity DoS bugs in the DNS software suite Pierluigi Paganini July 26, 2024 The Internet Systems Consortium (ISC) released BIND security…
ConfusedFunction Vulnerability Google Cloud Platform
A newly discovered vulnerability in Google Cloud Platform (GCP) has raised significant security concerns among users and experts alike. The vulnerability, dubbed “ConfusedFunction,” involves GCP’s…
Europe Is Pumping Billions Into New Military Tech
From €142 million to €1 billion ($1.1 billion) a year. The European Commission is pressing the accelerator on investment in weapons and defense technologies. From…
US Charges North Korean Hacker for Ransomware Attacks on Hospitals
The North Korean hacker, Rim Jong Hyok, is accused of being part of the government-backed cyberespionage group Andariel, which is known for conducting attacks on…