Google 2FA Syncing Feature Could Put Your Privacy at Risk
Researchers find that the encryption of a user's 2FA secrets are stripped after transportation to the cloud.
Shields Health Breach Exposes 2.3M Users’ Data
The medical imaging firm's systems were compromised by a threat actor, exposing patients' driver's licenses and other identifying information.
‘EvilExtractor’ All-in-One Stealer Campaign Targets Windows User Data
An uptick in EvilExtractor activity aims to compromise endpoints to steal browser from targets across Europe and the US, researchers…
Western Digital Hackers Demand 8-Figure Ransom Payment for Data
Western Digital has yet to comment on claims that the breach reported earlier this month led to data being stolen.
Money Ransomware Group Enters Double-Extortion Fray
Ransomware group uses API calls to spread throughout shared network resources, researchers say.
CrowdStrike Expands Falcon to Include IoT
CrowdStrike Falcon Insight for IoT covers Internet of Things, Industrial IoT, Operations Technology, as well as medical devices.
Microsoft Azure Shared Key Misconfiguration Could Lead to RCE
Azure admins are urged to disable shared key access and implement Azure Active Directory authentication.
Almost Half of Former Employees Say Their Passwords Still Work
It's not hacking if organizations fail to terminate password access after employees leave.
Microsoft, Fortra & Health-ISAC Team Up to Remove Illicit Cobalt Strike Tools
The effort aims to disrupt the use of altered Cobalt Strike software by cybercriminals in ransomware and other attacks.
Garage Door Openers Open to Hijacking, Thanks to Unpatched Security Vulns
CISA is advising Nexx customers to unplug impacted devices until the security issues are addressed — but so far, it's…