A Canadian minister says the government plans to ban devices that copy wireless signals for remote keyless entry, like the Flipper Zero, to combat auto theft
A Canadian minister says the government plans to ban devices that copy wireless signals for remote keyless entry, like the Flipper Zero, to combat auto theft
🤨 — https://www.bleepingcomputer.com/ ... #security #pentesting #flipperzero #canada Matti Aleve / @maleve@zeroes.ca : Sigh where to even begin with this. — The subhead pretty...
Atlassian raises the severity rating of a vulnerability in its Confluence Data Center and Server to maximum, and confirms the flaw is being actively exploited
Connor Jones / The Register :
Okta's stock closed down 11.57% on October 20 after the cybersecurity firm said a hacker used a stolen credential to access its support system and client files
- Cybersecurity firm Okta said an unidentified hacker had accessed the company's support system and viewed client files.
Okta's stock closes down 11.57% after the cybersecurity company said a hacker accessed its support system using a stolen credential and viewed client files
- Cybersecurity firm Okta said an unidentified hacker had accessed the company's support system and viewed client files.
Some hackers are impersonating cybersecurity researchers on Twitter and GitHub to post fake zero-day proof-of-concept exploits that push Windows/Linux malware
Hackers are impersonating cybersecurity researchers on Twitter and GitHub to publish fake proof-of-concept exploits for zero …
The French government bans TikTok and all other recreational apps from staff phones, claiming none have sufficiently robust security for government devices
Meanwhile the US contemplates drastic action — The government of France has banned TikTok - and all other recreational apps - from phones issued to its employees.
Microsoft patches an Outlook zero-day, exploitable without user interaction, and says Russian hackers used the flaw to target European organizations in 2022
Sergiu Gatlan / BleepingComputer :
LastPass says hackers stole password vault data in 2022 by exploiting an RCE flaw in third-party software to install a keylogger on a DevOps engineer's computer
LastPass revealed more information on a “coordinated second attack,” where a threat actor accessed and stole data …
GoDaddy discovered a multiyear security breach in early December 2022 in which unknown attackers stole some source code and installed malware on its servers
Web hosting giant GoDaddy says they suffered a breach where unknown attackers have stolen source code and installed malware …
A former employee of IoT manufacturer Ubiquiti pleaded guilty to stealing gigabytes of confidential data in December 2020 and extorting the company for ransom
Nickolas Sharp, a former Ubiquiti employee who managed the networking device maker's cloud team, pled guilty today …
Mailchimp says a hacker accessed data on 133 accounts via a staff social engineering attack, first detected on January 11, its second breach in six months
Email marketing and newsletter giant Mailchimp says it was hacked and that dozens of customers' data was exposed.
LastPass says hackers stole a backup copy of users' encrypted and unencrypted vault data using cloud storage keys stolen from a LastPass employee in August 2022
If you have a LastPass account you should have received … Camila Foster / Sammy Fans : Samsung fans using LastPass should know, hackers stolen cloud data Fabian A. Scherschel / The...
LastPass says hackers stole a backup copy of users' encrypted and unencrypted vault data using cloud storage keys stolen from a LastPass employee in August 2022
Password manager giant LastPass has confirmed that cybercriminals stole its customers' encrypted password vaults …
Okta tells customers its GitHub repositories were hacked this month and its source code was stolen, but says hackers did not access service or customer data
Okta, a leading provider of authentication services and Identity and Access Management (IAM) solutions, says that its private GitHub …
Apple plans to launch Advanced Data Protection, offering E2EE on iCloud backups, Notes, Photos, and more, in the US in 2022 and globally including China in 2023
‘Advanced Data Protection’ will offer end-to-end encryption on iCloud backups, Notes, Photos and other services—a step that may draw ire from law enforcement
Apple announces an iMessage feature letting users “verify they are messaging only with the people they intend” and Apple ID support for hardware security keys
Chance Miller / 9to5Mac :
Lookout: almost 50% of Android phones used by US state and local government staff run outdated versions of the OS, exposing them to hundreds of vulnerabilities
Bill Toulas / BleepingComputer :
Dropbox says hackers stole code and some API keys from 130 GitHub repositories via a phishing campaign, but its core apps and infrastructure were unaffected
Sergiu Gatlan / BleepingComputer :
LastPass says a hacker had access to its systems for four days in August 2022 but there is no evidence they accessed customer data or encrypted password vaults
LastPass says the attacker behind the August security breach had internal access to the company's systems for four days until they were detected and evicted.