New York Blood Center (NYBC), one of the largest nonprofit blood centers in the United States, says it is experiencing service disruptions after being hit by a ransomware attack. NYBC said in a statement on Wednesday that the organization detected suspicious activity on its IT systems on January 26, which it has since confirmed was […]
US blood donation giant warns of disruption after ransomware attack Read More »
Hackers are exploiting outdated versions of WordPress and plug-ins to alter thousands of websites in an attempt to trick visitors to download and install malware, security researchers have found. The hacking campaign is still “very much live,” Simon Wijckmans, the founder and CEO of web security company c/side, which discovered the attacks, told TechCrunch on
Hackers are hijacking WordPress sites to push Windows and Mac malware Read More »
Hotel and casino giant MGM Resorts has agreed to pay $45 million to settle more than a dozen class action lawsuits after hackers stole personal data on millions of customers in two separate cyberattacks. MGM agreed to the settlement on January 21, according to a recent court filing, as first reported by The Record. A
MGM Resorts settles lawsuits after millions of customer records stolen in data breaches Read More »
U.K.-based engineering giant Smiths Group has confirmed a cybersecurity incident involving “unauthorized access” to its systems. The London-listed company, which operates across multiple sectors including energy, security, aerospace and defense, said Tuesday that it is currently “managing” the incident. The company said it isolated affected systems and activated its business continuity plans, implying a disruptive
Engineering giant Smiths Group says hackers accessed its systems during cyberattack Read More »
Apple released the latest updates for its iPhone, iPad and Mac operating systems on Monday, which included switching on Apple Intelligence by default for newer devices. As part of this batch of software updates, Apple also released several patches fixing security bugs, including a zero-day bug that “may have been actively exploited” — meaning hackers
Apple fixes zero-day flaw affecting all devices Read More »
U.S. edtech giant PowerSchool has begun notifying individuals affected by a December 2024 data breach that likely affects millions of students and teachers across North America. PowerSchool said in a brief update on Monday that it had started the process of filing legally required regulatory notifications following the breach, which saw attackers use a stolen
PowerSchool begins notifying students and teachers after massive data breach Read More »
U.S. engineering firm ENGlobal has confirmed that hackers accessed “sensitive personal information” from its systems during a November 2024 cyberattack. ENGlobal, which provides engineering and automation services to the federal government and critical infrastructure organizations, said in an updated 8-K filing with the U.S. securities regulator on Monday that hackers subsequently “encrypted some of its
ENGlobal says hackers accessed ‘sensitive personal’ data during cyberattack Read More »
Cybersecurity company SonicWall says hackers are exploiting a newly discovered vulnerability in one of its enterprise products to break into its customers’ corporate networks. SonicWall said in an advisory that the vulnerability in its SMA1000 remote access appliance, which companies use to allow their employees to remotely log in to their corporate networks as if
SonicWall says hackers are exploiting a new zero-day bug to breach customer networks Read More »
The number of machine identities is booming thanks to the growth of cloud and AI – and it’s posing real security problems by giving hackers way more entry points than ever before. For example, a 2023 hack of authentication app Okta was caused by exploiting a service account while in 2024, Microsoft disclosed a major
Hackers are targeting machine identities. Token Security just raised $20M to stop them Read More »
A February 2024 ransomware attack on UnitedHealth-owned health tech company Change Healthcare stands as the largest data breach of health and medical data in U.S. history. Change Healthcare confirmed in January 2025 that its data breach affects approximately 190 million people in America, almost double the company’s previous estimate. The company said it has notified
How the ransomware attack at Change Healthcare went down: A timeline Read More »
