Cloudflare’s ‘pages.dev’ and ‘workers.dev’ domains, used for deploying web pages and facilitating serverless computing, are being increasingly abused by cybercriminals for phishing and other malicious activities. […]
US shares tips to block hackers behind recent telecom breaches
CISA released guidance today to help network defenders harden their systems against attacks coordinated by the Salt Typhoon Chinese threat group that breached multiple major global telecommunications providers earlier this year. […]
Exploit released for critical WhatsUp Gold RCE flaw, patch now
A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it critical to install the latest security updates as soon as possible. […]
Veeam warns of critical RCE bug in Service Provider Console
Veeam released security updates today to address two Service Provider Console (VSPC) vulnerabilities, including a critical remote code execution (RCE) discovered during internal testing. […]
New EU Regulation Establishes European ‘Cybersecurity Shield’
The European Union has adopted new legislation to establish a cybersecurity shield and ensure adequate security standards for managed security services.
The post New EU Regulation Establishes European ‘Cybersecurity Shield’ appeared first on SecurityWeek.
Police seizes largest German online crime marketplace, arrests admin
Germany has taken down the largest online cybercrime marketplace in the country, named “Crimenetwork,” and arrested its administrator for facilitating the sale of drugs, stolen data, and illegal services. […]
FTC bans data brokers from selling Americans’ sensitive location data
Today, the FTC banned data brokers Mobilewalla and Gravy Analytics from harvesting and selling Americans’ location tracking data linked to sensitive locations, like churches, healthcare facilities, military installations, and schools. […]
US Expands List of Chinese Technology Companies Under Export Controls
Commerce Department expanded the list of Chinese technology companies subject to export controls to include many that make equipment used to make computer chips, chipmaking tools and software.
The post US Expands List of Chinese Technology Companies Under Export Controls appeared first on SecurityWeek.
Police seize Matrix encrypted chat service after spying on criminals
An international law enforcement operation codenamed ‘Operation Passionflower’ has shut down MATRIX, an encrypted messaging platform used by cybercriminals to coordinate illegal activities while evading police. […]
Hacker Conversations: Dan McInerney and Puzzle-Driven Hacking
McInerney’s path to becoming a hacker is subtly different to many other hackers. He started as a 22-year old psychology graduate rather than a computer-obsessed 9-year old kid.
The post Hacker Conversations: Dan McInerney and Puzzle-Driven Hacking appeared first on SecurityWeek.