Microsoft Threat Intelligence has revealed that it has been tracking the active exploitation of a vulnerability in Atlassian Confluence software since September 14, 2023. Microsoft…
The CISA Known Exploited Vulnerabilities catalog has grown to cover more than 1,000 vulnerabilities since its launch in November 2021. On September 18, 2023, the…
North America has a spying problem. Its perpetrators are everyday people. North America has a spying problem. Its perpetrators are everyday people. According to recent…
In September, two high-profile casino breaches taught us about the nuances of the RaaS affiliate landscape, the asymmetric dangers of phishing, and of two starkly…
Information belonging to as many as seven million 23andMe customers has been put up for sale on criminal forums following a credential stuffing attack. Information…
A few tips and how-tos for when you are ready to move to the next Android phone. Backup, transfer, wipe, and move on. Last month,…
This week on the Lock and Code podcast, we speak with Bay Area teenager Nitya Sharma—for the second year in a row—about what she’s most…
A very convincing Amazon Prime scam landed in our mail server today and…went straight to spam. Here’s why. More often than not, its our solemn…
Amazon has announced it will require all privileged AWS to use MFA in the near future. Let’s hope others follow. Recently, Amazon announced that it…
Six vulnerabilities in the Exim message transfer agent have been fixed—over a year after they were reported. Exim is a message transfer agent (MTA) originally…
Social media companies are offering or thinking about paid subscriptions in exchange for removing ads. According to a report from the Wall Street Journal, Meta…
Sony has confirmed a ransomware attack in June and is investigating claims of a second, more recent one. On September 25, newcomer ransomware group RansomedVC…
