Security News > 2024 > June

Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests. Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services, possible interests and personal aspects.

An unnamed high-profile government organization in Southeast Asia emerged as the target of a "complex, long-running" Chinese state-sponsored cyber espionage operation codenamed Crimson Palace....

In the mid-20th century, scientists began noticing that the number of fish in the ocean-so vast as to underlie the phrase "There are plenty of fish in the sea"-had started declining rapidly due to overfishing. Just as certain fish populations in the world's oceans have fallen 80 percent, from previously having fallen 80 percent, from previously having fallen 80 percent, our expectations of privacy have similarly fallen precipitously.

Early in 2024, Wing Security released its State of SaaS Security report, offering surprising insights into emerging threats and best practices in the SaaS domain. Now, halfway through the year,...

Ethical hacker Alexander Hagenah has created TotalRecall, a tool that demonstrates how malicious individuals could abuse Windows' newly announced Recall feature to steal sensitive information. Copilot+ Recall takes snapshots of the computer's screen ever few seconds, encrypts and stores the snapshots locally, uses optical character recognition to extract relevant information that users may search for later, and and stores this data locally in an SQLite database, in plain text.

An analysis of a nascent ransomware strain called RansomHub has revealed it to be an updated and rebranded version of Knight ransomware, itself an evolution of another ransomware known as Cyclops....

Zyxel has released security updates to address critical flaws impacting two of its network-attached storage (NAS) devices that have currently reached end-of-life (EoL) status. Successful...

Tenable thinks these tags can be abused by a rogue Azure customer to access other customers' stuff - a cross-tenant attack - if those victims rely on Service Tags in their firewall rules. "We appreciate the collaboration with Tenable to responsibly disclose the inherent risk in using Service Tags as a single mechanism for vetting secure network traffic," a Microsoft spokesperson told The Register.

Popular video-sharing platform TikTok has acknowledged a security issue that has been exploited by threat actors to take control of high-profile accounts on the platform. The development was first...

I'm not just talking about cybersecurity education in schools shaping the technical workforce of the future - America's schools themselves are prime targets for cybercrime today. With risks such as student data getting leaked on the dark web, school districts' reputations getting tarnished by ransomware mishandlings, and the potential of any single attack to not only disrupt classes for days or weeks but also threaten the livelihoods of our youth, the stakes are too high to ignore the cyber resiliency of our school system.