hacking

Attack surface management platform RapidFort raises $8.5M seed round

RapidFort, a startup that helps developers reduce the potential attack surface of their applications by automatically removing unused software components from their containers, today announced that it

Microsoft finally fixes Windows zero-day flaw exploited by state-backed hackers

Microsoft has finally released a fix for “Follina,” a zero-day vulnerability in Windows that’s being actively exploited by state-backed hackers. A fix for the high-severity vulnerability — tra

DOJ says it will no longer prosecute good-faith hackers under CFAA

The U.S. Justice Department announced Thursday it will not bring charges under federal hacking laws against security researchers and hackers who act in good faith. The policy for the first time &#8220

Strike Security lands $5.4M seed funding to make pen testing more accessible

Strike Security, a continuous penetration testing platform that combines automation with ethical hackers, has secured a $5.4 million seed investment to make bug hunting more accessible to small busine

Web scraping is legal, US appeals court reaffirms

Good news for archivists, academics, researchers and journalists: Scraping publicly accessible data is legal, according to a U.S. appeals court ruling. The landmark ruling by the U.S. Ninth Circuit of

Microsoft seizes domains used by Russian spies to target Ukraine

Microsoft has successfully seized domains used by APT28, a state-sponsored group operated by Russian military intelligence, to target institutions in Ukraine. The tech giant said in a blog post on Thu

UK police charge 2 teenagers in connection with Lapsus$ hacks

Just a week after arresting seven individuals as part of its investigation into a series of cyberattacks conducted by the Lapsus$ hacking group, U.K. authorities have charged two teenagers with multip

Legendary hackers Charlie Miller and Chris Valasek talk cybersecurity and autonomous vehicles at TC Sessions: Mobility 2022

Security researchers Charlie Miller and Chris Valasek shook the automotive industry in 2015 by remotely hacking a Jeep Cherokee driven by Wired reporter, and willing participant, Andy Greenberg. The n

US charges four Russian spies for hacking Saudi oil facility and US nuclear power plant

The U.S. Department of Justice has announced charges against four Russian government employees for a years-long hacking campaign targeting critical infrastructure, including a U.S. nuclear power oper

OMG, my Facebook was hacked! Here’s what to do

Even technically sophisticated friends are currently getting “hacked” on Facebook — here’s how to avoid it, and how to make sure your hacked account is fully recovered. Usually

Let’s make the teen Tesla hack a teachable moment

EVs are fun. They are superbly connected, constantly updated and offer a great user experience, but they are cars, not mobile phones. Hacking into vehicles endangers driver safety and privacy.

North Korea hacked nearly $400M in cryptocurrency last year 

North Korean hackers launched at least seven attacks on cryptocurrency platforms last year to steal almost $400 million worth of digital assets, according to a report by blockchain analysis firm Chain

China’s next generation of hackers won’t be criminals. That’s a problem.

A spate of policies beginning in 2015 put China in a position to replace contracted criminals with new blood from universities.

Toronto’s transit agency cyberattack exposes 25,000 employees’ data

The Toronto Transit Commission has confirmed that the personal information of tens of thousands of employees may have been compromised as a result of a ransomware attack on its systems last month.  T

F12 isn’t hacking: Missouri governor threatens to prosecute local journalist for finding exposed state data

Missouri governor Mike Parson is facing a monumental backlash after threatening to prosecute a journalist for responsibly reporting a serious security lapse in the state’s website. Earlier this wee

FBI says Chinese authorities are hacking US-based Uyghurs

The FBI has warned that the Chinese government is using both in-person and digital techniques to intimidate, silence and harass U.S.-based Uyghur Muslims.  The Chinese government has long been accuse

A popular smart home security system can be remotely disarmed, researchers say

A cybersecurity company says a popular smart home security system has a pair of vulnerabilities that can be exploited to disarm the system altogether. Rapid7 found the vulnerabilities in the Fortress

To prevent cyberattacks, the government should limit the scope of a software bill of materials

There is no reason to disdain the concept of SBOM outright. Indeed, it’s heartening to see the federal government take cybersecurity so seriously.

A bug in a medical startup’s website put thousands of COVID-19 test results at risk

A California-based medical startup that provides COVID-19 testing across Los Angeles has pulled down a website it used to allow customers to access their test results after a customer found a vulnerab

US blames China for Exchange server hacks and ransomware attacks

The Biden administration and its allies have formally accused China of the mass-hacking of Microsoft Exchange servers earlier this year, which prompted the FBI to intervene as concerns rose that the h
Load More