Live Webinar | Supercharge Your ServiceNow CMDB with Complete and Real-Time Data
Post Content
Similar Posts
Year in Review 2024: The major headlines and moments from Sophos this year
Bys sFrom cyber attacks across the geopolitical landscapes, to product updates that help small businesses, Sophos was there in 2024.
Feds Seize $6.4M VerifTools Fake-ID Marketplace, but Operators Relaunch on New Domain
Bys sAuthorities from the Netherlands and the United States have announced the dismantling of an illicit marketplace called VerifTools that peddled fraudulent identity documents to cybercriminals across the world. To that end, two marketplace domains (verif[.]tools and veriftools[.]net) and one blog have been taken down, redirecting site visitors to a splash page stating the action was…
Chinese hackers breached Treasury Department workstations, documents in ‘major cybersecurity incident’
Ryan Knappenberger reports: The U.S. Department of the Treasury said on Monday that Chinese-backed hackers had breached its workstations and gained access to unclassified documents earlier this month in what it described as a “major cybersecurity incident.” The announcement comes just over a month after the Senate Intelligence Committee revealed recent Chinese hacks into the…
Lazarus Campaign Plants Malicious Packages in npm and PyPI Ecosystems
Bys sCybersecurity researchers have discovered a fresh set of malicious packages across npm and the Python Package Index (PyPI) repository linked to a fake recruitment-themed campaign orchestrated by the North Korea-linked Lazarus Group. The coordinated campaign has been codenamed graphalgo in reference to the first package published in the npm registry. It’s assessed to be active…
Malicious PyPI and npm Packages Discovered Exploiting Dependencies in Supply Chain Attacks
Bys sCybersecurity researchers have discovered a malicious package in the Python Package Index (PyPI) repository that introduces malicious behavior through a dependency that allows it to establish persistence and achieve code execution. The package, named termncolor, realizes its nefarious functionality through a dependency package called colorinal by means of a multi-stage malware operation, Zscaler
2025: Double the breaches, but less patient data compromised
Bys sJill Hughes reports: In 2025, the frequency of healthcare data breaches more than doubled. However, the number of patient records exposed has significantly decreased, indicating a shift in the data breach landscape, according to a new report from Fortified Health Security. “The healthcare sector is experiencing more frequent cyber events with smaller data footprints, driven largely by ransomware, identity compromise, and third-party weakness,”……