cybersecurity

Ukrainian hackers claim to have destroyed servers of Russian drone maker

Ukrainian hacktivist group BO Team has claimed to have hacked into the network of Russian drone maker Gaskar Group and disrupted its operations. In a post on its Telegram channel, BO Team announced the breach, saying it carried out the attack along with the Ukrainian Cyber Alliance, another hacktivist group that operates in Ukraine, as […]

Ukrainian hackers claim to have destroyed servers of Russian drone maker Read More »

Episource is notifying millions of people that their health data was stolen

Medical billing giant Episource is notifying millions of people across the United States that their personal and health information was stolen in a cyberattack earlier this year. The breach affects more than 5.4 million people, according to a listing with the U.S. Department of Health and Human Services, making it one of the largest healthcare

Episource is notifying millions of people that their health data was stolen Read More »

Trump administration to spend $1 billion on ‘offensive’ hacking operations

The Trump administration, through the Department of Defense, plans to spend $1 billion over the next four years on what it calls “offensive cyber operations.”  The provision in Trump’s landmark One Big Beautiful Bill does not say what those “offensive cyber operations” are, nor what specific tools or software would qualify. The budget does note

Trump administration to spend $1 billion on ‘offensive’ hacking operations Read More »

Elmo’s X account hacked to publish racist and antisemetic posts

In case it wasn’t obvious, no, that’s not the real Elmo that posted racist and antisemetic posts on Elon Musk’s X. Someone had hacked into the Sesame Street character’s X account. On Sunday, Elmo’s official account published several abusive posts, since removed. It’s not clear how the account was compromised, but the nonprofit Sesame Workshop

Elmo’s X account hacked to publish racist and antisemetic posts Read More »

CISA warns hackers are actively exploiting critical ‘Citrix Bleed 2’ security flaw

U.S. cybersecurity agency CISA says hackers are actively exploiting a critical-rated security flaw in a widely used Citrix product, and has given other federal government departments just one day to patch their systems. Security researchers have dubbed the bug “Citrix Bleed 2” for its similarity to a 2023 security flaw in Citrix NetScaler, a networking

CISA warns hackers are actively exploiting critical ‘Citrix Bleed 2’ security flaw Read More »

AI chatbot’s simple ‘123456’ password risked exposing personal data of millions of McDonald’s job applicants

Security researchers found that they could access the personal information of 64 million people who had applied for a job at McDonald’s, in large part by logging into the company’s AI job hiring chatbot with the username and password “123456.” Ian Carroll and Sam Curry wrote in a blog post that “during a cursory security

AI chatbot’s simple ‘123456’ password risked exposing personal data of millions of McDonald’s job applicants Read More »

Authorities arrest four hackers linked to UK retail hacking spree

U.K. authorities confirmed on Thursday they had arrested four individuals for allegedly carrying out a series of hacks earlier this year targeting the British retail sector, including Marks & Spencer, Harrods, and the Co-op. The National Crime Agency said a woman aged 20, two men aged 19, and a youth aged 17, were arrested on

Authorities arrest four hackers linked to UK retail hacking spree Read More »

US government confirms arrest of Chinese national accused of stealing COVID research and mass-hacking email servers

The U.S. Justice Department has confirmed the arrest of Chinese national Xu Zewei, an alleged prolific contract hacker who carried out cyberattacks for China. Xu was arrested in Italy at the request of U.S. prosecutors. Xu and another Chinese national Zhang Yu, who remains at large, are accused in a nine-charge indictment of “hacking and

US government confirms arrest of Chinese national accused of stealing COVID research and mass-hacking email servers Read More »

Marks & Spencer chair refuses to say if retailer paid hackers after ransomware attack

The chairman of U.K. retail giant Marks & Spencer declined to tell a panel of lawmakers whether the company paid a hacking group following a ransomware attack earlier this year.   “We’ve said that we are not discussing any of the details of our interaction with the threat actor,” said chairman Archie Norman, referring to the

Marks & Spencer chair refuses to say if retailer paid hackers after ransomware attack Read More »