Security News

Sports venues must vet their vendors to maintain security
2024-08-07 04:30

The sports and entertainment sectors are distinct from other industries and continue to face numerous threats and challenges. In our highly connected world, the rise of digital twins and collaboration across various platforms is transforming the sports landscape into an interconnected business network.

MDM vendor Mobile Guardian attacked, leading to remote wiping of 13,000 devices
2024-08-06 04:25

UK-based mobile device management vendor Mobile Guardian has admitted that on August 4 it suffered a security incident that involved unauthorized access to iOS and ChromeOS devices managed by its tools. Mobile Guardian focuses on the education sector - offering device management, web filtering, and classroom management tools.

Secure Boot useless on hundreds of PCs from major vendors after key leak
2024-07-29 01:58

Infosec in brief Protecting computers' BIOS and the boot process is essential for modern security - but knowing it's important isn't the same as actually taking steps to do it. Take the research published last week by security boffins at firmware security vendor Binarily.

Roblox vendor data breach exposes dev conference attendee info
2024-07-08 13:56

Roblox announced late last week that it suffered a data breach impacting attendees of the 2022, 2023, and 2024 Roblox Developer Conference attendees. [...]

South Korean ERP Vendor's Server Hacked to Spread Xctdoor Malware
2024-07-03 03:33

An unnamed South Korean enterprise resource planning (ERP) vendor's product update server has been found to be compromised to deliver a Go-based backdoor dubbed Xctdoor. The AhnLab Security...

Baddies hijack Korean ERP vendor's update systems to spew malware
2024-07-02 05:31

Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests. Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services, possible interests and personal aspects.

T-Mobile denies it was hacked, links leaked data to vendor breach
2024-06-20 00:43

IntelBroker describes the data they're selling as "Source code, SQL files, Images, Terraform data, t-mobile.com certifications, Siloprograms." Recently, IntelBroker has been rapidly releasing new data breaches, and if they all used this cloud provider, it could explain where all the data is coming from.

Crooks crack customer info at tracking device vendor Tile, issue 'extortion' demands
2024-06-13 01:15

Advertising presented to you on this service can be based on limited data, such as the website or app you are using, your non-precise location, your device type or which content you are interacting with. Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests.

Third-party vendors pose serious cybersecurity threat to national security
2024-06-04 04:00

In this Help Net Security video, Paul Prudhomme, Principal Security Analyst at SecurityScorecard, discusses the findings of the 2024 Redefining Resilience: Concentrated Cyber Risk in a Global...

Compromised courtroom recording software was served from vendor’s official site
2024-05-23 14:54

Legitimate recording software JAVS Viewer has been saddled with loader malware and has been served from the developer's site since at least April 2, a threat researcher has warned last month. The downloaded malicious installer - JAVS Viewer Setup 8.3.7.250-1.exe, signed by an Authenticode certificate issued to "Vanguard Tech Limited", and downloaded from the official JAVS site on March 5th - contains and executes a binary named fffmpeg.