Okta Broadens Scope of Data Breach: All Customer Support Users Affected
Okta says the hackers who broke into its support case management system stole names and email addresses of all its customer support system users, an…
Category: SecurityWeek
New BLUFFS Bluetooth Attack Methods Can Have Large-Scale Impact: Researcher
EURECOM assistant professor Daniele Antonioli has demonstrated a series of novel attacks targeting Bluetooth sessions’ forward and future secrecy. By compromising a session key, an…
CISA Warns of Unitronics PLC Exploitation Following Water Utility Hack
After hackers compromised an industrial control system (ICS) at a water utility in the United States, the cybersecurity agency CISA issued an alert over the…
Google Patches Seventh Chrome Zero-Day of 2023
Google on Tuesday announced a security update that addresses a zero-day vulnerability in the Chrome browser. The high-severity issue, tracked as CVE-2023-6345, is described as…
Google Will Start Deleting ‘Inactive’ Accounts in December. Here’s What You Need to Know
Have a Google account you haven’t used in a while? If you want to keep it from disappearing, you should sign in before the end…
Amazon One Enterprise Enables Palm-Based Access to Physical Locations, Digital Assets
On the first day of its re:Invent conference, Amazon Web Services (AWS) announced Amazon One Enterprise, a new palm-based identity service that enables users to…
Police Dismantle Major Ukrainian Ransomware Operation
Law enforcement agencies in seven countries teamed up with Europol and Eurojust to dismantle a major Ukraine-based ransomware operation. According to Europol, 30 properties were…
Exploitation of Critical ownCloud Vulnerability Begins
Threat actors have started exploiting a critical information disclosure vulnerability in the open source file-sharing and collaboration software ownCloud only days after its public disclosure.…
Critical Vulnerability Found in Ray AI Framework
A critical vulnerability in Ray, an open source compute framework for AI, could allow unauthorized access to all nodes, cybersecurity firm Bishop Fox warns. Tracked…
Los Angeles SIM Swapper Sentenced to 8 Years in Prison
Amir Hossein Golshan, 25, of Los Angeles, was sentenced to 96 months in prison for perpetrating multiple cybercrime schemes, including one involving SIM swapping. Between…
Ardent Hospitals Diverting Patients Following Ransomware Attack
Ardent Health Services on Monday announced that its clinical and financial operations have been disrupted by a ransomware attack discovered on Thanksgiving morning. The incident,…
Critical ownCloud Flaws Lead to Sensitive Information Disclosure, Authentication Bypass
Open-source file-sharing and collaboration software ownCloud is plagued by critical vulnerabilities that could lead to the exposure of credentials and other sensitive information and to…