Security News

Friday Squid Blogging: Two-Man Giant Squid
2025-04-04 21:03

The Brooklyn indie art-punk group, Two-Man Giant Squid, just released a new album. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.

Trump fires NSA boss, deputy
2025-04-04 19:26

Intelligence chief booted after less than two years on the job President Trump today fired the head of the NSA and US Cyber Command and his deputy.…

Port of Seattle says ransomware breach impacts 90,000 people
2025-04-04 17:26

​Port of Seattle, the U.S. government agency overseeing Seattle's seaport and airport, is notifying roughly 90,000 individuals of a data breach after their personal information was stolen in an...

PoisonSeed phishing campaign behind emails with wallet seed phrases
2025-04-04 16:49

A large-scale phishing campaign dubbed 'PoisonSeed' compromises corporate email marketing accounts to distribute emails containing crypto seed phrases used to drain cryptocurrency wallets. [...]

Australian pension funds hit by wave of credential stuffing attacks
2025-04-04 16:12

Over the weekend, a massive wave of credential stuffing attacks hit multiple large Australian super funds, compromising thousands of members' accounts. [...]

DDoS Attacks Now Key Weapons in Geopolitical Conflicts, NETSCOUT Warns
2025-04-04 16:04

Hackers now use AI and botnets to launch powerful DDoS attacks, bypassing security and overwhelming servers as law enforcement struggles to keep up.

Europcar GitLab breach exposes data of up to 200,000 customers
2025-04-04 14:07

A hacker breached the GitLab repositories of multinational car-rental company Europcar Mobility Group and stole source code for Android and iOS applications, as well as some personal information...

OpenAI's $20 ChatGPT Plus is now free for students until the end of May
2025-04-04 13:50

ChatGPT Plus subscription is now free, but only if you're a student based out of the United States of America and Canada. [...]

SpotBugs Access Token Theft Identified as Root Cause of GitHub Supply Chain Attack
2025-04-04 12:28

The cascading supply chain attack that initially targeted Coinbase before becoming more widespread to single out users of the "tj-actions/changed-files" GitHub Action has been traced further back...

30 minutes to pwn town: Are speedy responses more important than backups for recovery?
2025-04-04 11:29

The industry’s approach to keeping quality backups may be masking the importance of other recovery mainstays Maintaining good-quality backups is often seen as the spine of any organization's...