US Treasury Department Admits It Got Hacked by China
“I cannot believe that we’re seeing command injection vulnerabilities in 2024 in any products, let alone a secure remote access product that’s supposed to have…
Month: December 2024
Cisco Data Breach – Authenticity of 4.45GB Data Leak Verified
Cisco has confirmed the authenticity of a 4.45GB data leak posted online by the hacker known as IntelBroker. The leaked files, released on December 25,…
US Treasury Department Hacked – Attackers Gained Access to Workstations
A Chinese state-sponsored hacker has successfully breached the US Treasury Department’s systems, gaining access to employee workstations and unclassified documents, American officials revealed on Monday.…
An X user claimed a 7-Zip zero-day vulnerability, but 7-Zip’s creator says is a fake
An X user claimed a 7-Zip zero-day vulnerability, but 7-Zip’s creator says is a fake Pierluigi Paganini December 31, 2024 An X user using the…
Post Office scandal campaigners awarded OBEs in New Year Honours List
Former subpostmasters and leading campaigners in the Post Office scandal have been honoured for their decades-long fight against the injustices inflicted on them and their…
Chinese Salt Typhoon cyber espionage targets AT&T, Verizon – Security
The Chinese-linked Salt Typhoon cyberespionage operation targeted AT&T and Verizon’s systems, but the wireless carriers’ US networks are now secure as they work with law…
US Treasury Department breached through remote support platform
Chinese state-sponsored threat actors hacked the U.S. Treasury Department after breaching a remote support platform used by the federal agency. In a letter sent to lawmakers…
16 Chrome Extensions Hacked in Large-Scale Credential Theft Scheme
SUMMARY Large-Scale Breach: Over 16 Chrome extensions were compromised, exposing 600,000+ users to data and credential theft. Phishing Attack: Developers were tricked into granting access…
CISA Added Palo Alto Networks PAN-OS Vulnerability to Its Known Vulnerability Database
In the ongoing battle against cyber threats, the Cybersecurity and Infrastructure Security Agency (CISA) has flagged a critical vulnerability in Palo Alto Networks’ PAN-OS software…
Is nowhere safe from AI slop? (Lock and Code S05E27)
This week on the Lock and Code podcast… You can see it on X. You can see on Instagram. It’s flooding community pages on Facebook…
Ransomware Turns 35. How It All Started In 1989.
The first event considered to be a ransomware attack happened in 1989, according to CNBC. A hacker physically mailed floppy disks claiming to contain software that…
Hackers exploit Four-Faith router flaw to open reverse shells
Threat actors are exploiting a post-authentication remote command injection vulnerability in Four-Faith routers tracked as CVE-2024-12856 to open reverse shells back to the attackers. The…