Chinese Hackers Target Japan: 210 State-Backed Cyberattacks Expose Critical Infrastructure
A Chinese hacking group called Mirror Face has conducted over 200 sophisticated cyberattacks against Japanese government and private organizations between 2019-2024. The attacks, linked to China's Ministry of State Security, targeted aerospace, defense and technology sectors through malware-laden email campaigns.
Cannabis Retailer STIIIZY Hit by Major Customer Data Breach, Exposing ID Documents
Premium cannabis retailer STIIIZY disclosed a significant data breach exposing customer identification documents and transaction records at multiple California locations. The Everest cybercrime group claimed responsibility for compromising hundreds of thousands of records through a vendor's point-of-sale system.
Chinese Hackers Exploit Critical Ivanti Vulnerability in Sophisticated Attack Campaign
UNC5337, a Chinese threat group, has launched a new attack exploiting a critical vulnerability in Ivanti Connect Secure devices, deploying sophisticated malware tools. Over 2,000 ICS instances may be vulnerable across multiple countries, prompting urgent patching and security measures.
Former Disney Employee Faces Charges for Malicious Menu System Hack
A former Disney manager faces federal charges after hacking restaurant menu systems post-termination, dangerously altering allergen information and launching cyberattacks against colleagues. The case highlights cybersecurity vulnerabilities and potential real-world safety impacts of unauthorized system access.
IoT Security Breakthrough: Industry Unites to Combat Cyber Threats
A transformative shift in IoT and edge device security is underway, driven by unprecedented industry collaboration and enhanced standards. Companies are now sharing critical threat intelligence and implementing advanced security measures, marking a departure from past secretive approaches.
Ukrainian Hackers Cripple Major Russian ISP in Unprecedented Cyber Strike
Ukrainian hacking group claims successful attack on St. Petersburg's Nodex internet provider, completely disrupting network infrastructure. The incident marks a significant shift in cyber warfare dynamics as Ukraine demonstrates growing digital offensive capabilities against Russian targets.
UN Aviation Agency ICAO Suffers Data Breach Exposing 42,000 Job Applications
The International Civil Aviation Organization (ICAO) confirmed a cybersecurity breach of its recruitment database, compromising over 42,000 job application records. The incident, claimed by hacker 'Natohub', exposed applicants' personal information but did not affect aviation operations or financial data.
White House Unveils Cyber Trust Mark: A New Security Standard for Smart Devices
The U.S. government introduces a voluntary cybersecurity certification program for IoT devices, similar to EnergyStar, with major retailers already on board. The initiative aims to help consumers identify smart devices meeting federal security standards, with certified products expected to hit shelves by late 2024.
Cybersecurity Visionary and Tenable CEO Amit Yoran Dies at 54
Amit Yoran, the influential CEO of Tenable and former National Cybersecurity Director, passed away at 54 after a brief battle with cancer. His legacy includes transforming Tenable into a cybersecurity powerhouse and shaping national security policy through leadership roles in both private and public sectors.
Critical Nuclei Scanner Vulnerability Enables Command Execution Through Template Bypass
Security researchers uncover a high-severity flaw in the popular Nuclei vulnerability scanner that could allow attackers to bypass signature checks and execute malicious code. The vulnerability affects millions of users across versions 3.0.0 to 3.3.2, highlighting security risks in widely-used security testing tools.