FlightAware
public
–
1 min read
FlightAware, a popular flight-tracking service, experienced a configuration error that led to the exposure of personal customer data, including names,…
Cisco
public
–
1 min read
In April 2024, the China-linked APT group Velvet Ant exploited zero-day vulnerability CVE-2024-20399 in Cisco switches to deploy custom malware,…
Humane Intelligence
public
–
1 min read
At the 2023 Defcon hacker conference, Humane Intelligence in partnership with AI transparency groups and US government support, initiated a…
AnyDesk
public
–
1 min read
The Mad Liberator ransomware group used social engineering to exploit the remote-access application AnyDesk, gaining unauthorized access and exfiltrating data…
Chainalysis
public
–
1 min read
In their analysis, Chainalysis detected a 2% increase in ransomware payments, totaling $459.8 million. The largest payment was $75…
Amazon Web Services
public
–
1 min read
A vulnerability in Amazon Web Services' Application Load Balancer was discovered by security firm Miggo, which could potentially allow…
Emergency Medical Services Authority (EMSA)
public
–
1 min read
The EMSA experienced a cyber attack that resulted in unauthorized network access between February 10 and February 13, 2024, leading…
USPS
public
–
1 min read
A sophisticated smishing campaign using fake USPS package delivery notifications led to significant data compromise. Security researcher Grant Smith unveiled…
CyberCX
public
–
1 min read
CyberCX, a cybersecurity firm, faced severe repercussions due to doxing incidents prevalent within the broader cybersecurity landscape. Predators engaged in…
United States Postal Service
public
–
1 min read
The United States Postal Service (USPS) faced a massive smishing scam where a Chinese-language group tricked users into entering credit…
Microsoft
public
–
1 min read
Microsoft's AI-powered Copilot exposed to security vulnerabilities where a hacker could access sensitive information such as employee salaries…
Russian government and IT organizations
public
–
1 min read
The EastWind campaign utilized sophisticated backdoors to target Russian entities, compromising government and IT organizations' security. Malware delivered via…