Bleeping Computer

Northern Ireland's COVID-19 Certification Service Suspended After Data Leak Incident

This week, Northern Ireland's Department of Health (DoH) has temporarily suspended their COVIDCert online vaccination certification service after a data security incident.

CISA, FBI, NCSC, and ACSC Reveal Top Targeted Vulnerabilities of the Last Two Years

A joint security advisory issued today by several cybersecurity agencies from the US, the UK, and Australia reveals the top 30 most targeted security vulnerabilities of the last two years.

UC San Diego Health Discloses Data Breach After Unauthorized Access to Employee Email Accounts

UC San Diego Health, the academic health system of the University of California, San Diego, has disclosed a data breach after the compromise of some employees' email accounts.

LockBit ransomware now encrypts Windows domains using group policies

The LockBit ransomware operation was first launched in September 2019 as a ransomware-as-a-service, where threat actors are recruited to breach networks and encrypt devices.

Google launches new Bug Hunters vulnerability rewards platform

Since launching its first VRP more than ten years ago, Google has rewarded 2,022 security researchers from 84 different countries worldwide for reporting over 11,000 bugs.

Signal fixes bug that sent random images to wrong contacts

Although the issue was reported in December 2020, given the difficulty of reproducing the bug, it isn't until this month that a fix was rolled out to the Android users of the encrypted messaging app.

No More Ransom saves almost $1.18 billion in ransomware payments in 5 years

The No More Ransom project celebrates its fifth anniversary today after helping over six million ransomware victims recover their files and saving them almost €1B ($1.18B) in ransomware payments.

Apple fixes bug that breaks iPhone WiFi when joining rogue hotspots

Apple has rolled out security updates to address dozens of iOS and macOS vulnerabilities, including a severe iOS bug dubbed WiFiDemon that could lead to denial of service or arbitrary code execution.

New PetitPotam attack allows take over of Windows domains

A French security researcher GILLES Lionel, aka Topotam, disclosed a new technique called 'PetitPotam' that performs an NTLM relay attack that does not rely on the MS-RPRN API but instead uses the EfsRpcOpenFileRaw function of the MS-EFSRPC API.

MacOS malware steals Telegram accounts, Google Chrome data

Security researchers have published details about the method used by a strain of macOS malware to steal login information from multiple apps, enabling its operators to steal accounts.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags