US govt launches cybersecurity safety label for smart devices
Today, the White House announced the launch of the U.S. Cyber Trust Mark, a new cybersecurity safety label for internet-connected consumer devices. The Cyber Trust…
Month: January 2025
New HIPAA Security Rule Would Boost Healthcare Cybersecurity
The HIPAA Security Rule would get its first update since 2013 under a new proposal that would mandate basic security practices like multi-factor authentication, encryption,…
Nvidia CEO unveils robot training tech, Toyota deal and new gaming chips – Hardware
AI to better train robots and cars as well as new gaming chips dominated Nvidia CEO Jensen Huang’s keynote speech at the CES 2025 conference…
CISA warns of critical Oracle, Mitel flaws exploited in attacks
CISA has warned U.S. federal agencies to secure their systems against critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are actively exploited…
License Plate Readers Are Leaking Real-Time Video Feeds and Vehicle Data
In just 20 minutes this morning, an automated license-plate-recognition (ALPR) system in Nashville, Tennessee, captured photographs and detailed information from nearly 1,000 vehicles as they…
Washington state sues T-Mobile over 2021 data breach security failures
Washington state has sued T-Mobile over failing to secure the sensitive personal information of over 2 million Washington residents in a 2021 data breach. The case…
AI-supported spear phishing fools more than 50% of targets
One of the first things everyone predicted when artificial intelligence (AI) became more commonplace was that it would assist cybercriminals in making their phishing campaigns…
New WordPress Plugin That Weaponizes Legit Sites To Steal Customer Payment Data
Cybercriminals have developed PhishWP, a malicious WordPress plugin, to facilitate sophisticated phishing attacks, which enable attackers to create convincing replicas of legitimate payment gateways, such…
EAGERBEE Malware Updated It’s Arsenal to Attack ISPs & Government Entities
The Kaspersky researchers investigation into the EAGERBEE backdoor revealed its deployment within Middle Eastern ISPs and government entities of novel components, including a service injector…
Telegram hands over data on thousands of users to US law enforcement
Telegram reveals that the communications platform has fulfilled 900 U.S. government requests, sharing the phone number or IP address information of 2,253 users with law enforcement.…
Hackers Weaponize Security Testing By Weaponizing npm, PyPI, & Ruby Exploit Packages
Over the past year, malicious actors have been abusing OAST services for data exfiltration, C2 channel establishment, and multi-stage attacks by leveraging compromised JavaScript, Python,…
Security firm issues strong warning to Windows 10 users
Windows 10 users have been experiencing noticeable slowdowns in system performance over the past few months, and the situation is expected to worsen in the…