security

Hackers are exploiting a new Ivanti VPN security bug to hack into company networks

Security /

U.S. software giant Ivanti has warned that a zero-day vulnerability in its widely-used enterprise VPN appliance has been exploited to compromise the networks of its corporate customers. Ivanti said on Wednesday that the critical-rated vulnerability, tracked as  CVE-2025-0282, can be exploited without any authentication to remotely plant malicious code on Ivanti’s Connect Secure, Policy Secure, […]

Hackers are exploiting a new Ivanti VPN security bug to hack into company networks Read More »

The U.S. has a new cybersecurity safety label for smart devices

Security /

The White House this week announced a new label for internet-connected devices, the U.S. Cyber Trust Mark, intended to help consumers make more-informed decisions about the cybersecurity of products they bring into their homes. To earn the U.S. Cyber Trust Mark, which is being administered by the Federal Communications Commission, companies have to test their

The U.S. has a new cybersecurity safety label for smart devices Read More »

Edtech giant PowerSchool says hackers accessed personal data of students and teachers

Security /

Education technology giant PowerSchool has told customers that it experienced a “cybersecurity incident” that allowed hackers to compromise the personal data of students and teachers in K-12 school districts across the United States. The California-based PowerSchool, which was acquired by Bain Capital for $5.6 billion in 2024, is the largest provider of cloud-based education software

Edtech giant PowerSchool says hackers accessed personal data of students and teachers Read More »

Casio says hackers stole personal data of 8,500 people during October ransomware attack

Security /

Japanese electronics giant Casio has confirmed that the personal data of almost 8,500 individuals was stolen during an October ransomware attack. Casio was the target of a ransomware attack on October 5, which saw hackers access sensitive data and render many of the company’s systems unusable. The attack was claimed by the Underground ransomware gang,

Casio says hackers stole personal data of 8,500 people during October ransomware attack Read More »

UN aviation agency confirms hacker breached recruitment database to access thousands of records

Security /

The United Nations’ aviation agency has confirmed that a hacker accessed thousands of records after compromising its internal recruitment database. Over the weekend, an individual using the alias “Natohub” claimed to have accessed 42,000 documents from the International Civil Aviation Organization (ICAO). The agency said it was investigating the incident on Monday and, in an

UN aviation agency confirms hacker breached recruitment database to access thousands of records Read More »

US government set to launch its Cyber Trust Mark cybersecurity labeling program for internet-connected devices in 2025

Security /

The U.S. government announced Tuesday that its long-awaited cybersecurity labeling program for consumer internet-connected devices will launch in 2025. The Biden administration first introduced the U.S. Cyber Trust Mark in June 2023, saying the voluntary labeling program would “raise the bar” for internet-connected devices by enabling Americans to make informed decisions about the security of

US government set to launch its Cyber Trust Mark cybersecurity labeling program for internet-connected devices in 2025 Read More »

UN aviation agency ‘investigating’ security breach after hacker claims theft of personal data 

Security /

The International Civil Aviation Organization (ICAO), a United Nations agency that defines international operating standards for civil aviation, has confirmed it’s investigating a cybersecurity incident. In a statement published on Monday, ICAO said it is “actively investigating reports of a potential information security incident allegedly linked to a threat actor known for targeting international organizations.” 

UN aviation agency ‘investigating’ security breach after hacker claims theft of personal data  Read More »

US sanctions Chinese cyber firm linked to Flax Typhoon hacks

Security /

The U.S. government has sanctioned a Beijing-based cybersecurity company over its alleged links to a China government-backed hacking group, tracked as Flax Typhoon. The Treasury Department’s Office of Foreign Assets Control (OFAC) on Friday announced the sanctions against the Integrity Technology Group for its role in “multiple computer intrusion incidents against U.S. victims,” including U.S.

US sanctions Chinese cyber firm linked to Flax Typhoon hacks Read More »

Chinese government hackers reportedly targeted US Treasury’s sanctions office during December cyberattack

Security /

Chinese government hackers targeted the U.S. Treasury’s highly sensitive sanctions office during a December cyberattack, according to reports. According to The Washington Post, the state-sponsored hackers targeted the Office of Foreign Assets Control (OFAC), a government department that imposes economic and trade sanctions against countries and individuals, to potentially access information on Chinese organizations that

Chinese government hackers reportedly targeted US Treasury’s sanctions office during December cyberattack Read More »

US telco Lumen says its network is now clear of China’s Salt Typhoon hackers

Security /

Lumen, one of at least nine U.S. telecommunications firms reportedly compromised by Salt Typhoon hackers, says the Chinese hacking group is no longer in its network. Lumen spokesperson Mark Molzen told TechCrunch that an independent forensic analysis confirmed the company ejected the Chinese actors from its network, adding that there is “no evidence that customer

US telco Lumen says its network is now clear of China’s Salt Typhoon hackers Read More »