Security News > 2021

Ransomware news is slow this week, with mostly small ransomware variants being released and a small number of attacks reported. Jakub Kroustek found a new Dharma ransomware variant that appends the.

President Brad Smith said that national security is threatened by the industry's inability to learn lessons from the past.

The restaurant chain Wagamama is selling a vegan version of its Chilli Squid side dish made from king oyster mushrooms. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered.

Two major browsers -Microsoft Edge and Google Chrome - are rolling out default features, which they say will better help notify users if their password has been compromised as part of a breach or database exposure. Microsoft on Thursday said that its next version of Edge will generate alerts if a user password is found in an online leak.

Three vulnerabilities in the Amazon Kindle e-reader would have allowed a remote attacker to execute code and run it as root - paving the way for siphoning money from unsuspecting users. Yogev Bar-On, researcher at Realmode Labs, found that it was possible to email malicious e-books to the devices via the "Send to Kindle" feature to start a chain of attack - a discovery that earned him $18,000 from the Amazon bug-bounty program.

According to survey findings, a high percentage of organizations rely on their employees to be the primary data breach detection mechanism-particularly when it comes to email. "Our research found that 62% of organizations rely on people-based reporting to alert management about data breaches," mentions Pepper.

Fully-functional exploit code is now publicly available for a maximum severity pre-auth vulnerability impacting default configurations of an SAP Solution Manager component. SAP SolMan is an application lifecycle manager deployed in almost all SAP environments and designed to help unify the management of all SAP and non-SAP systems within a single interface.

Hidden messages, features or jokes in apps and websites are commonly known in hacker jargon as easter eggs, because they're supposed to be found and enjoyed, but they're not supposed to be immediately obvious. One of the most famous easter eggs in commercial software history - if not the most complex - was the hidden flight simulator in Microsoft Excel 97.

Bonobos men's clothing store has suffered a massive data breach exposing millions of customers' personal information after a cloud backup of their database was downloaded by a threat actor. Bonobos started as an online men's clothing store but later expanded to sixty locations to try on clothes before purchasing them.

Former ADT employee Telesforo Aviles took note when there were attractive women at a home he serviced in the Dallas area. Aviles admitted to regularly adding his own email address to customers' ADT Pulse accounts so he could watch customers in real time without them knowing.