DC Board of Elections Discloses Data Breach
The District of Columbia Board of Elections (DCBOE) on Friday confirmed that voter records were compromised in a data breach at a third-party services provider.…
Category: SecurityWeek
Hackers Join In on Israel-Hamas War With Disruptive Cyberattacks
Several hacker groups have joined in on the Israel-Hamas conflict escalation that started over the weekend after the Palestinian militant group launched a major attack.…
Taiwan Probes Firms Suspected of Selling Chip Equipment to China’s Huawei Despite US Sanctions
Taiwan authorities are investigating four Taiwan-based companies suspected of helping China’s Huawei Technologies to build semiconductor facilities. Minister of Economic Affairs Wang Mei-hua said Friday…
MGM Resorts Says Ransomware Hack Cost $110 Million
Hospitality and entertainment giant MGM Resorts said costs from last month’s debilitating ransomware infection has exceeded $110 million, including $10 million in one-time consulting clean-up…
Android Devices With Backdoored Firmware Found in US Schools
Tens of thousands of Android devices have been shipped to end-users with backdoored firmware, according to a warning from cybersecurity vendor Human Security. As part…
Nonprofit Service Provider Blackbaud Settles Data Breach Case for $49.5M With States
The fundraising software company Blackbaud agreed Thursday to pay $49.5 million to settle claims brought by the attorneys general of 49 states and Washington, D.C.,…
Microsoft Releases New Report on Cybercrime, State-Sponsored Cyber Operations
The US, Ukraine, and Israel remain the most frequent targets of cyberespionage and cybercrime attacks out of a total of 120 attacked countries, Microsoft says…
In Other News: Funding Increase, Abuse of Smartphone Location Data, Legal Matters
SecurityWeek is publishing a weekly cybersecurity roundup that provides a concise compilation of noteworthy stories that might have slipped under the radar. We provide a…
Organizations Warned of Top 10 Cybersecurity Misconfigurations Seen by CISA, NSA
The US cybersecurity agency CISA and the NSA have issued new guidance on addressing the most common cybersecurity misconfigurations in large organizations. Impacting many organizations,…
CISA Reverses Course on Malicious Exploitation of Video Conferencing Device Flaws
The US cybersecurity agency CISA has removed several Owl Labs product flaws from its Known Exploited Vulnerabilities (KEV) Catalog after SecurityWeek privately called into question…
Cisco Plugs Gaping Hole in Emergency Responder Software
A remotely exploitable vulnerability in the Cisco Emergency Responder software could allow an unauthenticated attacker to log in to an affected device using the root…
GitHub Improves Secret Scanning Feature With Expanded Token Validity Checks
Software development giant GitHub on Wednesday announced an enhancement to its secret scanning feature, now allowing users to check the validity of exposed credentials for…