Security News

Microsoft plans to boot security vendors out of the Windows kernel
2024-11-19 18:43

Microsoft has announced the Windows Resiliency Initiative, aimed at avoiding a repeat of the prolonged worldwide IT outage caused by a buggy CrowdStrike update that took down millions of Windows...

Amazon confirms employee data breach after vendor hack
2024-11-11 19:10

Amazon confirmed a data breach involving employee information after data allegedly stolen during the May 2023 MOVEit attacks was leaked on a hacking forum. [...]

Vendor Comparison: DIY Home Security Systems
2024-10-17 16:00

Attention remote workers! When it comes to DIY home security, there are many systems and components to consider and many decisions to make. This vendor comparison guide, created by Mark W. Kaelin...

1 in 10 orgs dumping their security vendors after CrowdStrike outage
2024-09-19 16:13

Many left reeling from July's IT meltdown, but not to worry, it was all unavoidable Germany's Federal Office for Information Security (BSI) says one in ten organizations in the country affected by...

US cracks down on spyware vendor Intellexa with more sanctions
2024-09-16 16:33

Today, the U.S. Department of the Treasury has sanctioned five executives and one entity linked to the Intellexa Consortium for developing and distributing Predator commercial spyware. [...]

Russian APT29 hackers use iOS, Chrome exploits created by spyware vendors
2024-08-29 13:04

The Russian state-sponsored APT29 hacking group has been observed using the same iOS and Android exploits created by commercial spyware vendors in a series of cyberattacks between November 2023...

BlackSuit ransomware stole data of 950,000 from software vendor
2024-08-27 21:01

Young Consulting is sending data breach notifications to 954,177 people who had their information exposed in a BlackSuit ransomware attack on April 10, 2024. [...]

Delta vs. CrowdStrike: The duties vendors owe to customers – or do they?
2024-08-14 05:00

In a potentially groundbreaking dispute, Delta Air Lines is threatening to sue CrowdStrike, a leading cybersecurity firm, for alleged negligence and breach of contract. This case brings to the...

UK health services call-handling vendor faces $7.7M fine over 2022 ransomware attack
2024-08-07 08:26

The UK's data protection watchdog says it plans to fine a managed software provider to the NHS £6.09 million for failings that led to a 2022 ransomware attack. Advanced pulled its systems offline on August 4, 2022, in an incident that was eventually attributed to LockBit, back in its heydey which has thankfully now ended.

Sports venues must vet their vendors to maintain security
2024-08-07 04:30

The sports and entertainment sectors are distinct from other industries and continue to face numerous threats and challenges. In our highly connected world, the rise of digital twins and collaboration across various platforms is transforming the sports landscape into an interconnected business network.