-
Auditors blame massive $4 million cryptocurrency heist on leaky logging technologyNews Investigators raised concern over the thousands of vulnerable wallets containing Solana, USDC and other tokens
News -
Over 200,000 DrayTek routers vulnerable to total device takeoverNews The routers are popular with small and medium businesses, but are easily exploitable by threat actors seeking to steal data or launch ransomware
News -
Tory party delays leadership selection over hacking fearsNews The Conservatives have also been forced to abandon plans to allow members to change their vote later in the contest
News -
Nomad crypto bridge drained of $190 million through “chaotic” exploitNews The Nomad team has notified law enforcement and retained leading firms for blockchain intelligence and forensics, it said in a statement on Twitter
News -
Twitter API keys found leaked in over 3,200 apps, raising concerns for linked accountsNews Business and verified Twitter accounts linked to affected apps are at risk of takeover, use in malicious campaigns
News -
Cyber attack on US court system being investigated, DoJ confirmsNews The early 2020 attack, publicly disclosed for the first time this week, is thought to have had a "staggering effect" on the department and other agencies
News -
GPS tracker exploit puts the world's most high-value individuals in real-world dangerNews Vulnerabilities in a GPS tracker used by governments, militaries, and Fortune 50 companies could be used to track the locations of high-value targets and disable emergency service vehicles
News -
Roblox hacker posts stolen documents onlineNews The company said that it has been investigating a phishing incident in which an employee was targeted through social engineering
News -
Will FIDO passwordless authentication save cyber security?In-depth Plans to eradicate passwords from the business landscape are underway, but there are significant hurdles to overcome
In-depth -
SHI malware attack causes major disruption and forces staff offlineNews IT supplier says there's no evidence to suggest customer data was exfiltrated during the "security incident" attack
News -
HackerOne employee fired for using position to steal bug bountiesNews The threat actor was identified by their duplicate data, which they were trying to pass off as their own for financial gain
News -
Businesses urged to abandon Microsoft Exchange legacy authentication earlier than plannedNews Basic Auth will be turned off by Microsoft in October, but CISA wants all organisations to migrate from the vulnerable method as soon as possible
News
