11 Apr LastPass: Hackers targeted employee in failed deepfake CEO callLastPass revealed this week that threat actors targeted one of its employees in a voice phishing attack, using deepfake audio to impersonate Karim Toubba, the company’s Chief Executive Officer. […]
11 Apr Optics giant Hoya hit with $10 million ransomware demandA recent cyberattack on Hoya Corporation was conducted by the ‘Hunters International’ ransomware operation, which demanded a $10 million ransom for a file decryptor and not to release files stolen during the attack. […]
11 Apr CISA orders agencies impacted by Microsoft hack to mitigate risksCISA has issued a new emergency directive ordering U.S. federal agencies to address risks resulting from the breach of multiple Microsoft corporate email accounts by the Russian APT29 hacking group. […]
11 Apr DuckDuckGo launches a premium Privacy Pro VPN serviceDuckDuckGo has launched a new paid-for 3-in-1 subscription service called ‘Privacy Pro,’ which includes a virtual private network (VPN), a personal data removal service, and an identity theft restoration solution. […]
10 Apr Chrome Enterprise gets Premium security but you have to pay for itGoogle has announced a new version of its browser for organizations, Chrome Enterprise Premium, which comes with extended security controls for a monthly fee per user. […]
10 Apr Google Workspace rolls out multi-admin approval feature for risky changesGoogle is rolling out a new Workspace feature that requires multiple admins to approve high-risk setting changes to prevent unauthorized or accidental modifications that could reduce security. […]
10 Apr New Spectre v2 attack impacts Linux systems on Intel CPUsResearchers have demonstrated the “first native Spectre v2 exploit” for a new speculative execution side-channel flaw that impacts Linux systems running on many modern Intel processors. […]
10 Apr Malicious PowerShell script pushing malware looks AI-writtenA threat actor is using a PowerShell script that was likely created with the help of an artificial intelligence system such as OpenAI’s ChatGPT, Google’s Gemini, or Microsoft’s CoPilot. […]
09 Apr Microsoft fixes two Windows zero-days exploited in malware attacksMicrosoft has fixed two actively exploited zero-day vulnerabilities during the April 2024 Patch Tuesday, although the company failed to initially tag them as such. […]
09 Apr Critical Rust flaw enables Windows command injection attacksThreat actors can exploit a security vulnerability in the Rust standard library to target Windows systems in command injection attacks. […]