Infosecurity News
Microsoft 365 Copilot Vulnerability Exposes User Data Risks
The flaw in Microsoft 365 Copilot allowed data theft using ASCII smuggling and prompt injection
MOVEit Hack Exposed Personal Data of Half Million TDECU Users
The Texas Dow Employees Credit Union told the Maine Attorney General the MOVEit data breach compromised information of over 500,000 members
FBI Flawed Data Handling Raises Security Concerns
A US Justice Department watchdog has found “significant weaknesses” in the FBI’s physical and online media storage and disposal processes
Suspected Cyber-Attack Causes Travel Chaos at Seattle Airport
The Port of Seattle revealed system outages at the city’s airport may have been caused by a cyber-attack, affecting early Labor Day travel
Uber Hit With €290m GDPR Fine
The Dutch data protection regulator has imposed a €290m GDPR fine on Uber for storing driver data in the US without adequate safeguards
A Third of Organizations Suffer SaaS Data Breaches
AppOmni report claims number of companies suffering SaaS-related data breaches has jumped five percentage points over past year
Newly Discovered Group Offers CAPTCHA-Solving Services to Cybercriminals
Greasy Opal is a Czech Republic-based hacking group selling products that can be used for deploying cyber-attacks
NSA Releases Guide to Combat Living Off the Land Attacks
The National Security Agency has published a guide to help organizations defend against APT attacks that leverage living off the land techniques
Chinese Velvet Ant Uses Cisco Zero-Day to Deploy Custom Malware
The Chinese cyber espionage group was observed jailbreaking a Cisco switch appliance using a zero-day exploit
Georgia Tech Sued Over Cybersecurity Violations
The US government has filed a lawsuit against Georgia Tech for alleged cybersecurity violations as a Department of Defense contractor
Qilin Caught Red-Handed Stealing Credentials in Google Chrome
Browser credential harvesting is an unusual activity for a ransomware group
YouTube Launches AI Tool to Recover Hacked Accounts
YouTube’s new AI troubleshooting tool is designed to help users recover and secure their accounts after they’ve been hacked
Liverpool Fans Lose Big in Premier League Ticket Scams
Liverpool fans were the most frequent and highest-value targets for ticket scams last season, losing over £17,000 to fraudsters
Cthulhu Stealer Malware Targets macOS With Deceptive Tactics
Cthulhu Stealer targets macOS, posing a major threat by disguising as legitimate software via DMG files
FAA Admits Gaps in Aircraft Cybersecurity Rules: New Regulation Proposed
The US FAA has proposed new rules for aircraft to address cyber vulnerabilities caused by the increased interconnectivity of critical systems
Over 3400 High and Critical Cyber Alerts Recorded in First Half of 2024
The United States bore most of these cyber-threats, with a 46.15% rise in attacks compared to 2023
Company Fined $1m for Fake Joe Biden AI Calls
FCC charges Lingo Telecom with $1m fine over voice deepfake during the 2024 New Hampshire primary election
Security Flaws in UK Political Party Donation Platforms Exposed
The donation websites of the UK’s seven major political parties are missing critical security features to protect the accounts of donors, according to DataDome
Novel Android Malware Steals Card NFC Data For ATM Withdrawals
ESET claims new NGate Android malware relays NFC data to steal card details for ATM cash-out
Backdoor in Mifare Smart Cards Could Open Doors Around the World
Quarklabs researchers claim millions of contactless key cards could be cloned via a backdoor
