Funksec gang turned up ransomware heat in December
December 2024 broke records for ransomware attack volumes, according to data released by cyber security firm NCC Group, which said it saw a total of…
Month: January 2025
Windows 11 24H2 now also offered to all eligible Windows 10 PCs
Microsoft says Windows 11 24H2 has entered the broad deployment phase and is now available to all seekers via Windows Update. The latest Windows version (known as…
The Cyber Resilience Act: How Manufacturers Can Meet New EU Standards and Strengthen Product Security
Cybersecurity has become a leading priority for manufacturers of embedded systems and IoT devices. The rapid proliferation of these technologies, combined with their increasing integration…
MasterCard DNS Error Went Unnoticed for Years – Krebs on Security
The payment card giant MasterCard just fixed a glaring error in its domain name server settings that could have allowed anyone to intercept or divert…
Mirai botnet behind the largest DDoS attack to date
Researchers have uncovered two Mirai-based botnets harnessing Internet of Things (IoT) devices to DDoS target organizations around the world. The Murdoc botnet Qualys researchers have…
Use this AI chatbot prompt to create a password-exclusion list
One of the most successful forms of password breaches occurs when hackers simply guess commonly used passwords. And while organizations often invest in advanced security…
Passwords Are Out, Biometrics Are In
As more aspects of daily life move online—including financial transactions, government services like mobile driver’s licenses, and digital travel authentication—the weaknesses of traditional remote identity…
Clubcard at 30 – the evolution of retail loyalty
Back in the pre-internet days of the early 1990s, retail loyalty programmes were prehistoric (Green Shield stamps anyone?) – until Tesco teamed up with plucky…
Fellowship Program To Address Cybersecurity Talent Gap In Alabama
The Alabama Community College System in partnership with Advantage Consulting & Solutions is set to debut its inaugural class of the Alabama Cybersecurity Fellowship. Funded by…
DataDome DDoS Protect detects application layer-based threats
DataDome unveiled DDoS Protect, a cloud-based service designed to block distributed denial-of-service (DDoS) attack traffic at the edge before it overwhelms an organization’s infrastructure. DDoS…
7-Zip bug could allow a bypass of a Windows security feature. Update now
A patch is available for a vulnerability in 7-Zip that could have allowed attackers to bypass the Mark-of-the-Web (MotW) security feature in Windows. The MotW…
Hackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS Botnet
Threat actors are exploiting an unspecified zero-day vulnerability in Cambium Networks cnPilot routers to deploy a variant of the AISURU botnet called AIRASHI to carry…