In a recent development, Ivanti has warned of new zero-day vulnerabilities in its Connect Secure VPN appliance, first exploited by Chinese state-backed hackers in early December 2023. Identified as CVE-2023-46805, CVE-2024-21887, CVE-2024-21888, and CVE-2024-21893, these flaws put customer networks
In a significant cybersecurity incident, Keenan & Associates, a subsidiary of AssuredPartners Inc., has reported a data breach impacting approximately 1.5 million individuals. The breach, which was discovered on August 27, 2023, involved unauthorized access to the company's internal systems
The US National Security Agency (NSA) has been buying Americans’ internet browsing data from commercial data brokers without obtaining warrants. This practice, which involves collecting web browsing information, such as the websites visited and apps used by Americans, came to light through
On January 22, 2024, Bob Dyachenko, owner of SecurityDiscovery.com, along with researchers from Cybernews, announced they had discovered a massive leak containing 26 billion records. The data consists of sensitive user information from popular sites like Twitter, Weibo, Tencent, LinkedIn, Dropbox,
The first-ever Pwn2Own Automotive competition has concluded with hackers collectively earning a staggering $1,323,750 by exposing 49 zero-day vulnerabilities, primarily in Tesla vehicles. Organized by Trend Micro's Zero Day Initiative (ZDI) during the Automotive World conference, the event in
The BianLian ransomware group, notorious for its evolving strategies, has now intensified its focus on the healthcare and manufacturing sectors in the United States and Europe. This move signals a significant threat to data security and operational stability in these critical
Microsoft has disclosed that a Russian hacking group, identified under the aliases Midnight Blizzard, APT29, Cozy Bear, and Nobelium, infiltrated the email accounts of several of the company’s senior leaders. The attack was first detected on January 12, 2024. It marks another significant breach by
Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password protected database that contained nearly 1.3 million records, which included COVID-19 testing information and personally identifiable information such as the patient’s name, date of birth, and
Taiwanese semiconductor manufacturer Foxsemicon Integrated Technology Inc., a subsidiary of the renowned Hon Hai Precision Industry Co. Ltd. (also known as Foxconn), has reportedly fallen victim to a ransomware attack orchestrated by the notorious LockBit ransomware gang. The Taipei Times
Texas-based care provider HMG Healthcare recently disclosed a major security breach where hackers accessed and stole unencrypted patient data. Although the company is still investigating the exact nature of the stolen data, it confirmed that it involved sensitive information regarding both patients