News

Trump Pardons Founder of Silk Road Website

Bys s January 22, 2025

President Donald Trump has pardoned Ross Ulbricht, the founder of Silk Road, an underground website for selling drugs.

The post Trump Pardons Founder of Silk Road Website appeared first on SecurityWeek.

News

The PIPC Sanctions Woori Card for Data Breaches, Imposing KRW 13.45 billion
Bys s March 30, 2025

The Personal Information Protection Commission (PIPC) held its seventh plenary meeting of 2025 and reached a decision to sanction Woori Card Co., Ltd. (Woori Card) for data breaches on March 26, 2025. Administrative sanctions by the PIPC are as follows: A penalty for violations (Gwajingguem) of KRW 13.45 billion; A publication order of sanction results…

Read More The PIPC Sanctions Woori Card for Data Breaches, Imposing KRW 13.45 billion
News

DPRK Hackers Use ClickFix to Deliver BeaverTail Malware in Crypto Job Scams
Bys s September 21, 2025

Threat actors with ties to the Democratic People’s Republic of Korea (aka DPRK or North Korea) have been observed leveraging ClickFix-style lures to deliver a known malware called BeaverTail and InvisibleFerret. “The threat actor used ClickFix lures to target marketing and trader roles in cryptocurrency and retail sector organizations rather than targeting software development roles,”…

Read More DPRK Hackers Use ClickFix to Deliver BeaverTail Malware in Crypto Job Scams
News

TransUnion notifying more than 4.4 U.S. million consumers of data breach
Bys s August 28, 2025

When companies have big breaches, they have to notify the big credit reporting agencies. However, it is now one of the major credit reporting agencies that must send notifications. TransUnion has notified the Maine Attorney General’s Office that 4,461,511 people were affected by an incident on July 28, 2025 that involved an unnamed third-party application…….

Read More TransUnion notifying more than 4.4 U.S. million consumers of data breach
News

The Time-Saving Guide for Service Providers: Automating vCISO and Compliance Services
Bys s September 10, 2025

Introduction Managed service providers (MSPs) and managed security service providers (MSSPs) are under increasing pressure to deliver strong cybersecurity outcomes in a landscape marked by rising threats and evolving compliance requirements. At the same time, clients want better protection without managing cybersecurity themselves. Service providers must balance these growing demands with the

Read More The Time-Saving Guide for Service Providers: Automating vCISO and Compliance Services
News

Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise
Bys s May 22, 2025

A privilege escalation flaw has been demonstrated in Windows Server 2025 that makes it possible for attackers to compromise any user in Active Directory (AD). “The attack exploits the delegated Managed Service Account (dMSA) feature that was introduced in Windows Server 2025, works with the default configuration, and is trivial to implement,” Akamai security researcher…

Read More Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise
News

Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers
Bys s January 20, 2026

Cloudflare has addressed a security vulnerability impacting its Automatic Certificate Management Environment (ACME) validation logic that made it possible to bypass security controls and access origin servers. “The vulnerability was rooted in how our edge network processed requests destined for the ACME HTTP-01 challenge path (/.well-known/acme-challenge/*),” the web infrastructure

Read More Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers

Similar Posts