Cybersecurity

Can the World Avoid a Cyber-Nuclear Catastrophe?

Anxieties about the dangers inherent in nuclear weapons were the defining feature of the Cold War era. On the negative side, the entire period was characterized by acute fears that the superpower tension would escalate into a nuclear exchange, existential security concerns…

Atlassian warns that Confluence zero-day is being exploited by hackers

Atlassian has warned its customers that hackers are exploiting a zero-day vulnerability in all supported versions of Confluence Server and Data Center. A spokesperson for the Australia-based software firm told The Record that the bug – tagged as CVE-2022-26134 – does not yet…

Bored Ape Yacht Club, Otherside NFTs stolen in Discord server hack

Hackers reportedly stole over $257,000 in Ethereum and thirty-two NFTs after the Yuga Lab's Bored Ape Yacht Club and Otherside Metaverse Discord servers were compromised to post a phishing scam. Earlier this morning, the Discord account for a Yuga Labs community…

Microsoft Blocks Iran-linked Lebanese Hackers Targeting Israeli Companies

Microsoft on Thursday said it took steps to disable malicious activity stemming from abuse of OneDrive by a previously undocumented threat actor it tracks under the chemical element-themed moniker Polonium. In addition to removing the offending accounts created by the…

Louisiana authorities investigating ransomware attack on city of Alexandria

Louisiana state officials are investigating a ransomware attack affecting Alexandria, a 50,000-person city about two hours outside of Baton Rouge. On Thursday, the AlphV ransomware gang added the city to its list of victims. City officials initially confirmed that there was a…

CISA Warns of Critical Vulnerabilities in Illumina Genetic Analysis Devices

The US Cybersecurity and Infrastructure Security Agency (CISA) this week issued an advisory to warn of critical vulnerabilities in Illumina genetic analysis devices that could allow a remote, unauthenticated attacker to take over an impacted product. The flaws affect…

Novartis says no sensitive data was compromised in cyberattack

Pharmaceutical giant Novartis says no sensitive data was compromised in a recent cyberattack by the Industrial Spy data-extortion gang. Industrial Spy is a hacking group that runs an extortion marketplace where they sell data stolen from compromised organizations…

Report: Clipminer Botnet Operators Rake in $1.7 Million

Cybercriminals operating the Clipminer botnet have raked in at least $1.7 million in illicit gains to date, according to an estimate by security researchers at Symantec. Spreading via trojanized cracked or pirated software, the Clipminer trojan shows similarities with the…

WatchDog hacking group launches new Docker cryptojacking campaign

​The WatchDog hacking group is conducting a new cryptojacking campaign with advanced techniques for intrusion, worm-like propagation, and evasion of security software. The hacking group targets exposed Docker Engine API endpoints and Redis servers and can…

CISA issues vulnerability advisory for select Dominion voting equipment, urges updates

Vulnerabilities within some Dominion voting machines used in roughly a dozen states should be mitigated “as soon as possible,” the U.S. government’s top cybersecurity officials said in advisory issued Friday afternoon. The Department of Homeland Security…