Cyber Security News

A cleanup month brings 63 patches… wait, no, 68… how about 61?

On November 7, a relatively new user on a hacking forum offered data allegedly from Doctor Alliance for sale. According to the seller, there is 353 GB of data comprising 1,240,640 files. “Contact us on signal to negociate this ransom or all your data will be sold,” the seller warned.  The ransom demand was listed……

Globes reports: A recent conference discussed Amendment 13 to Israel’s Privacy Protection Law and how organizations can address emerging risks associated with the deployment of advanced AI. During a recent privacy and data-security conference in Israel, industry leaders explored the implications of Amendment 13 to Israel’s Privacy Protection Law and discussed how organizations can address……

A scary breach showed up in my news search today. Jamie Singleton reports: On Saturday, November 8, the Telegraph reported Wiltshire Police had accidentally released sensitive information. The article reads: “These included the door codes to safe houses for victims of rape and sexual assault, codes to access systems where digital files of evidence are……

Elliott Greene reports: Hundreds of thousands of University of St. Thomas files have appeared on the dark web after a summer cyberattack that shut down campus systems and key services. Students, faculty, and alumni say they’ve received little information as experts and law enforcement work to find out what data was stolen, as reported by Houston……

Google has filed a civil lawsuit in the U.S. District Court for the Southern District of New York (SDNY) against China-based hackers who are behind a massive Phishing-as-a-Service (PhaaS) platform called Lighthouse that has ensnared over 1 million users across 120 countries. The PhaaS kit is used to conduct large-scale SMS phishing attacks that exploit…

Combining advanced technologies with human expertise to defend against evolving threats.

Some wines benefit from aging. Breach notification letters do not. On or about December 28, 2023, Alpha Omega Winery in California experienced what they report as a ransomware incident. According to their notification, the types of personal information may have included, and potentially were not limited to: name, date of birth, Social Security number, driver’s……

Amazon’s threat intelligence team on Wednesday disclosed that it observed an advanced threat actor exploiting two then-zero-day security flaws in Cisco Identity Service Engine (ISE) and Citrix NetScaler ADC products as part of attacks designed to deliver custom malware. “This discovery highlights the trend of threat actors focusing on critical identity and network access control…

Get involved in the Sophos Firewall v22 Early Access Program today!