Telerik Bug Exploited to Steal Federal Agency Data, CISA Warns
An unpatched Microsoft Web server allowed multiple cybersecurity threat groups to steal data from a federal civilian executive branch.
Google Proposes Reducing TLS Cert Life Span to 90 Days
Organizations will likely have until the end of 2024 to gain visibility and control over their keys and certificates.
LockBit Threatens to Leak Stolen SpaceX Schematics
The ransomware group sent a message directly to Elon Musk: Pay or the confidential SpaceX information goes up for grabs…
CISA Trials Ransomware Warning System for Critical Infrastructure Orgs
An agency team will identify vulnerabilities being exploited by ransomware groups and alert organizations ahead of attacks, CISA says.
And the Cyberattack Goes To … Oscar-Nominated Film Fans
With the rise of cybercriminals targeting online piracy, this year's Oscar-nom fans need to be especially careful not to download…
Make Sure Your Cybersecurity Budget Stays Flexible
CISOs' ability to pivot tight budgets is key to defense plans that can stand up to attackers.
Medusa Gang Video Shows Minneapolis School District’s Ransomed Data
Much like a hostage's proof-of-life video, the ransomware gang offers the film as verification that it has the goods, and…
Critical RCE Bug Opens Fortinet’s Secure Web Gateway to Takeover
Users should patch an unauthenticated remote code execution bug impacting FortiOS and FortiProxy administrative interfaces ASAP, Fortinet says.
Shein Shopping App Glitch Copies Android Clipboard Contents
The Android app unnecessarily accessed clipboard device contents, which often includes passwords and other sensitive data.
Indigo Books Refuses LockBit Ransomware Demand
Canada's largest bookseller rejected the pressure of the ransomware gang's countdown timer, despite data threats.