Security News

US newspaper publisher uses linguistic gymnastics to avoid saying its outage was due to ransomware
2025-02-18 17:00

Called it an 'incident' in SEC filing, but encrypted apps and data exfiltration suggest Lee just can’t say the R word US newspaper publisher Lee Enterprises is blaming its recent service...

A PostgreSQL zero-day was also exploited in US Treasury hack (CVE-2025-1094)
2025-02-17 13:48

The suspected Chinese state-sponsored hackers who breached workstations of several US Treasury employees in December 2024 did so by leveraging not one, but two zero-days, according to Rapid7...

Fujitsu worries US tariffs will see its clients slow digital spend
2025-02-16 23:59

PLUS: Pacific islands targeted by Chinese APT; China’s new rocket soars; DeepSeek puts Korea in a pickle; and more Asia In Brief The head of Fujitsu’s North American operations has warned that the...

Critical PostgreSQL bug tied to zero-day attack on US Treasury
2025-02-14 14:19

High-complexity bug unearthed by infoseccers, as Rapid7 probes exploit further A high-severity SQL injection bug in the PostgreSQL interactive tool was exploited alongside the zero-day used to...

Chinese hackers breach more US telecoms via unpatched Cisco routers
2025-02-14 12:56

China's Salt Typhoon hackers are still actively targeting telecoms worldwide and have breached more U.S. telecommunications providers via unpatched Cisco IOS XE network devices. [...]

US lawmakers press Trump admin to oppose UK's order for Apple iCloud backdoor
2025-02-13 16:58

Senator, Congressman tell DNI to threaten infosec agreements if Blighty won't back down US lawmakers want newly confirmed Director of National Intelligence Tulsi Gabbard to back up her tough talk...

Probe finds US Coast Guard has left maritime cybersecurity adrift
2025-02-11 23:44

Numerous systemic vulnerabilities could scuttle $5.4T industry Despite the escalating cyber threats targeting America's maritime transportation system, the US Coast Guard still lacks a...

UK, US, Oz blast holes in LockBit's bulletproof hosting provider Zservers
2025-02-11 18:26

UK foreign secretary says Putin is running a 'corrupt mafia state' One of the bulletproof hosting (BPH) providers used by the LockBit ransomware operation has been hit with sanctions in the US,...

US indicts 8Base ransomware operators for Phobos encryption attacks
2025-02-11 15:42

The U.S. Justice Department announced the names of two Phobos ransomware affiliates arrested yesterday in Thailand, charging them on 11 counts due to their involvement in more than a thousand...

US sanctions LockBit ransomware’s bulletproof hosting provider
2025-02-11 14:24

​The United States, Australia, and the United Kingdom have sanctioned Zservers, a Russia-based bulletproof hosting (BPH) services provider, for supplying essential attack infrastructure for the...