June 1, 2023
The Week in Security: Barracuda email flaw left open for months, calls for AI governance turn existential
This week: Barracuda’s appliances had an undetected flaw, which was abused by hackers for months. Also: Could AI bring on an ‘extinction event?’
May 25, 2023
This week: North Korean APT Lazarus uses Microsoft IIS servers to carry out espionage. Also: What’s the future of PyPI amidst continuing attacks?
May 18, 2023
This week: An unsecured AWS bucket exposed English citizen’s data. Also: A data breach on Toyota leaked the data of more than 2 million customers.
May 11, 2023
U.S. and other countries take down Russia’s Snake malware, used to conduct global espionage. Also: GitHub auto-blocks API key and token leaks for all repos.
May 4, 2023
The DOJ detected the SolarWinds Orion breach six months prior to public disclosure. Also: anxiety, fear, depression - the life of a ransomware criminal.
April 27, 2023
The Week in Security: A possible Colonial Pipeline 2.0, ransomware takes bite out of American eateries
This week: Canadian gas pipeline explosion could have been caused by a cyber attack. Also: Financial services firm NCR hit with a ransomware attack.
April 20, 2023
This week: One software supply chain attack caused another, making it a first for the industry. Also: Malware spreads via apps in the Google Play Store.
April 13, 2023
The attackers behind the 3CX software supply chain attack have been identified as North Korean. Also: CISA aims to shift the cybersecurity burden to tech.
April 6, 2023
The Week in Security: Social engineering-attacks up with the rise of AI tools, Genesis Market seized
This week: Research connects the rise of AI tools and an increase in social engineering attacks. Also: A stolen credentials site is seized by the FBI.
March 30, 2023
This week: GitHub is issued a subpoena by Twitter over leaked source code. Also: 3CX software supply chain attack leaves millions at risk.
March 23, 2023
This week: NuGet is hit with a malicious typosquatting campaign. Also: A malicious ChatGPT Chrome extension is hijacking Facebook accounts.
March 16, 2023
A Russian-speaking threat actor has breached several European organizations. Also: AI-created videos on YouTube are spreading infostealer malware.