Security News

In the ever-evolving landscape of cybersecurity, cloud security has emerged as a critical concern for organizations worldwide for a few years now. Cloud security is sometimes misunderstood or underestimated.

AT&T has admitted that cyberattackers grabbed a load of its data for the second time this year, and if you think the first haul was big, you haven't seen anything: This latest one includes data on "Nearly all" AT&T wireless customers - and those served by mobile virtual network operators running on AT&T's network. Some customers could be at risk because "a subset" of records contained in that online storage included one or more cell tower identification numbers, allowing snoops to potentially roughly geolocate a customer whose data was stolen in the attack.

Snowflake? Snowflake AT&T has admitted that cyberattackers grabbed a load of its data for the second time this year, and if you think the first haul was big you haven't seen anything: This one...

A BlastRADIUS attack involves the attacker intercepting network traffic between a client, such as a router, and the RADIUS server. While MD5 is well-known to have weaknesses that allow attackers to generate collisions or reverse the hash, the researchers say that the BlastRADIUS attack "Is more complex than simply applying an old MD5 collision attack" and more advanced in terms of speed and scale.

A new advanced persistent threat (APT) group named CloudSorcerer abuses public cloud services to steal data from Russian government organizations in cyberespionage attacks. [...]

As the use of the cloud continues to be strategically vital to many organizations, cloud resources have become the biggest targets for cyberattacks, with SaaS applications (31%), cloud storage...

Across various tasks, from predictive analytics to code generation, organizations in all sectors are exploring how AI can add value and increase efficiency. In this Help Net Security video, Ryan Booz, PostgreSQL Advocate at Redgate, discusses the key findings of Redgate's State of the Database Landscape Report.

VMware has released updates to address critical flaws impacting Cloud Foundation, vCenter Server, and vSphere ESXi that could be exploited to achieve privilege escalation and remote code...

Cloud adoption is not slowing down, and neither is the cloud threat landscape. Despite delivering many goodies, API endpoints hosted in the cloud can be susceptible to at least 12 security issues.

The Scattered Spider gang has started to steal data from software-as-a-service applications and establish persistence through creating new virtual machines. While there are reports about Scattered Spider being an organized gang with specific members, the group is actually a loose knit collective of English-speaking individuals that work together to carry out breaches, steal data, and extort their targets.