Browser extension sales, updates pose hidden threat to enterprises
Sometimes the simplest pieces of software can cause the most complex security headaches for organizations. Browser extensions, which can be bought, sold and repurposed without…
Category: Cyberscoop
Canadian citizen allegedly involved in Snowflake attacks consents to extradition to US
A Canadian citizen is one step closer to standing trial in the United States for his alleged involvement in a series of attacks targeting as…
As 23andMe declares bankruptcy, privacy advocates sound alarm about DNA data
Genetic testing business 23andMe filed for bankruptcy Sunday, amplifying fears from privacy advocates that the DNA records and personal information of its 15 million customers…
Researchers raise alarm about critical Next.js vulnerability
Researchers warn that attackers could exploit a recently discovered critical vulnerability in the open-source JavaScript framework Next.js to bypass authorization in middleware and gain access…
Privacy-boosting tech could prevent breaches, data misuse with government aid, report says
Governments should prioritize the use of privacy-boosting technologies like encryption, de-identification and hashing to prevent breaches and data misuse, a report that New America’s Open…
Senators criticize Trump officials’ discussion of war plans over Signal, but administration answers don’t come easily
Democratic senators hammered two top national security officials Tuesday about their participation in a Signal chat discussing war plans that reportedly included a journalist, but struggled…
Trump issues executive order seeking greater federal control of elections
President Donald Trump issued an executive order Tuesday that threatens states with the loss of federal election grants unless they comply with a broad list…
String of defects in popular Kubernetes component puts 40% of cloud environments at risk
More than 40% of cloud environments are at risk of an account takeover due to a series of five recently discovered vulnerabilities — one regarded…
Commerce limits 19 Chinese, Taiwanese companies from buying U.S. tech
The Commerce Department plans to finalize economic sanctions this week on nearly 20 Chinese and Taiwanese organizations, citing the need to limit their access to…
Intelligence chiefs insist Signal chat was a simple mistake
U.S. intelligence leaders found themselves under intensified scrutiny from Congress for a second straight day, following revelations that significant military plans were discussed over text…
Despite challenges, the CVE program is a public-private partnership that has shown resilience
In 1999, Dave Mann and Steve Christey, two researchers from the nonprofit R&D corporation MITRE, debuted a concept for security vulnerabilities that laid the groundwork…
FCC’s Carr alleges Chinese companies are making ‘end run’ around Chinese telecom bans, announces investigation
The first initiative from The Federal Communications Commission’s newly-created Council on National Security will be a “sweeping” investigation of Chinese-made equipment in America’s telecommunications infrastructure,…