PyPI Warns Users of Fresh Phishing Campaign
The Python Package Index (PyPI), the default platform for Python’s package management tools, is warning users of a fresh phishing campaign relying on domain confusion…
Category: SecurityWeek
Perspective: Why Politics in the Workplace is a Cybersecurity Risk
When I first started working, politics was intentionally kept out of the workplace, regardless of how strongly different people may have felt about their own…
Chinese Cyberspies Hacked US Defense Contractors
A Chinese cyberespionage group has compromised at least two US defense contractors and various other organizations in the Americas, Europe, Asia, and Africa, cybersecurity firm…
RTX Confirms Airport Services Hit by Ransomware
Aerospace and defense giant RTX (formerly Raytheon Technologies) has officially confirmed that airport services have been disrupted as a result of a ransomware attack. The…
Chinese Spies Lurked in Networks for 393 Days, Hunted for Zero-Day Intel
Researchers in Google’s Threat Intelligence Group and Mandiant unit have analyzed a recent Chinese cyberespionage campaign where the hackers have managed to dwell in compromised…
CSA Unveils SaaS Security Controls Framework to Ease Complexity
Software as a Service (SaaS) is an increasingly favored method for delivering security solutions, but also an increasingly favored attackers’ playground. The cause of the…
Volvo Group Employee Data Stolen in Ransomware Attack
Truck, bus and industrial equipment maker Volvo Group North America is notifying current and former employees of a data breach involving third-party supplier Miljödata. A…
Cisco Patches Zero-Day Flaw Affecting Routers and Switches
Cisco on Wednesday announced patches for 14 vulnerabilities in IOS and IOS XE, including a bug that has been exploited in the wild. The exploited…
Hackers Target Casino Operator Boyd Gaming
Casino entertainment company Boyd Gaming has disclosed a data breach after hackers gained access to its internal IT systems. Boyd Gaming said in a filing…
European Airport Cyberattack Linked to Obscure Ransomware, Suspect Arrested
The recent cyberattack aimed at aerospace and defense company Collins Aerospace, which has caused significant disruptions at major airports in Europe, reportedly involved a piece…
GeoServer Flaw Exploited in US Federal Agency Hack
The US cybersecurity agency CISA has shared details on the exploitation of a year-old GeoServer vulnerability to compromise a federal civilian executive branch (FCEB) agency.…
GitHub Boosting Security in Response to NPM Supply Chain Attacks
In the light of recent supply chain attacks targeting the NPM ecosystem, GitHub will implement tighter authentication and publishing rules meant to improve the NPM…