In a recently uncovered phishing campaign, threat actors are employing malicious PDF files to target mobile device users in potentially more than fifty nations. Dubbed as the “PDF Mishing Attack,” the effort exposes new vulnerabilities in mobile platforms by…
Category: CySecurity News – Latest Information Security and Hacking Incidents
North Korea’s Lazarus Group Launches Global Supply Chain Attack Targeting Developers
North Korea’s notorious hacking collective, Lazarus Group, has orchestrated a large-scale supply chain attack, compromising hundreds of victims worldwide, according to cybersecurity researchers. The operation, named Phantom Circuit, remains active as of this month. The group injected malicious backdoors…
FDA Warns of Cybersecurity Risks in Contec and Epsimed Patient Monitors
The U.S. Food and Drug Administration (FDA) has issued a safety communication highlighting cybersecurity vulnerabilities in certain patient monitors manufactured by Contec and relabeled by Epsimed. The FDA’s notice, published on Thursday, identifies three critical security flaws that could…
Generative AI in Cybersecurity: A Double-Edged Sword
Generative AI (GenAI) is transforming the cybersecurity landscape, with 52% of CISOs prioritizing innovation using emerging technologies. However, a significant disconnect exists, as only 33% of board members view these technologies as a top priority. This gap underscores the challenge…
The Evolving Role of Multi-Factor Authentication in Cybersecurity
< p style=”text-align: justify;”>In recent years, the cybersecurity landscape has faced an unprecedented wave of threats. State-sponsored cybercriminals and less experienced attackers armed with sophisticated tools from the dark web are relentlessly targeting weak links in global cybersecurity systems.…
Hackers Exploit WordPress Sites to Attack Mac and Windows Users
According to security experts, threat actors are abusing out-of-date versions of WordPress and plug-ins to modify thousands of sites to trap visitors into downloading and installing malware. In a conversation with cybersecurity news portal TechCrunch, Simon Wijckmans, founder and CEO…
ENGlobal Corporation Hit by Ransomware Attack: Sensitive Data Exposed
< p style=”text-align: justify;”>ENGlobal Corporation, a prominent contractor in the energy sector, has disclosed that a ransomware attack in November 2024 led to the exposure of sensitive personal data. The incident, which occurred on November 25, forced the company…
Subaru Starlink Security Flaw Exposes Risks of Connected Cars
As vehicles become increasingly connected to the internet, cybersecurity threats pose growing risks to drivers. A recent security flaw in Subaru’s Starlink system highlights the potential dangers, allowing hackers to remotely control vehicles and access sensitive data. This incident…
North Korean Hackers Exploit RID Hijacking to Gain Full Control Over Windows Systems
< p style=”text-align: justify;”> A North Korean cybercriminal group, Andariel, has been found using a stealthy hacking technique called RID hijacking to gain full control over Windows systems. This method allows attackers to manipulate a computer’s security settings, turning…
BitLocker Vulnerability Exposes Encryption Flaws: A New Challenge for Cybersecurity
< p style=”text-align: justify;”>Password theft has recently dominated headlines, with billions of credentials compromised. Amid this crisis, Microsoft has been pushing to replace traditional passwords with more secure authentication methods. However, a new vulnerability in the Windows BitLocker full-disk…