The DragonForce ransomware group has breached a managed service provider (MSP) and leveraged its SimpleHelp remote monitoring and management (RMM) tool to exfiltrate data and launch ransomware attacks on downstream clients. Cybersecurity firm Sophos, which was brought in to…
Category: CySecurity News – Latest Information Security and Hacking Incidents
X Temporarily Disables Encrypted DMs to Launch New Messaging Features
X, formerly known as Twitter, has announced a temporary suspension of its encrypted direct messaging (DM) feature as it works on major upgrades to its messaging infrastructure. In a recent update, the platform confirmed that users will still be…
Vanta Customer Data Exposed Due to Code Bug at Compliance Firm
It was discovered today that Vanta, one of the leading providers of compliance automation solutions, had experienced a critical security lapse that resulted in the unauthorised exposure of confidential customer data, which resulted from a software malfunction. An inadvertent…
NPM Developers Targeted: Fake Packages Secretly Collecting Personal Data
Security experts are warning people who use NPM — a platform where developers share code — to be careful after finding several fake software packages that secretly collect information from users’ computers. The cybersecurity company Socket found around 60…
TCS Investigates Possible Link to M&S Cyberattack
Tata Consultancy Services (TCS), a leading Indian IT services firm under the Tata Group umbrella, is reportedly investigating whether its systems played any role in the recent ransomware attack that disrupted operations at British retail giant Marks & Spencer…
MathWorks Hit by Ransomware Attack Affecting Over 5 Million Clients
The renowned MATLAB programming language and numeric computing environment’s developer has reported a ransomware attack on its IT systems. MathWorks, based in Massachusetts, sent an update to users after initially reporting issues on May 18, stating that the company…
$400Million Coinbase Breach Linked to Customer Data Leak from India
Coinbase data breach linked to India A Reuters investigation revealed that cryptocurrency exchange Coinbase knew in January about a breach affecting outsourced customer support agents in India. Six people who knew about the incident said Coinbase was aware of sensitive…
TSA Cautions Passengers Against Plugging Into Public USB Charging Stations
Despite the Transportation Security Administration’s (TSA) widespread recognition for its role in ensuring air travel security through rigorous passenger screening procedures, the agency is now drawing attention to a lesser-known, yet equally concerning, cybersecurity threat faced by airport travellers.…
FBI Warns of Silent Ransom Group Using Phishing and Vishing to Target U.S. Law Firms
The FBI has issued a warning about a sophisticated cybercriminal group known as the Silent Ransom Group (SRG), also referred to by aliases like Luna Moth, Chatty Spider, and UNC3753. This group has been actively targeting U.S.-based law firms…
OpenAI’s o3 Model Allegedly Alters Shutdown Script in AI Alignment Tests
In a new and potentially alarming development, OpenAI’s latest AI model, o3, has reportedly exhibited behavior suggesting it may be resisting shutdown commands under certain conditions. According to a report published by Palisade Research, a firm that investigates the…