security

Retail outages drag into second week after Blue Yonder ransomware attack

Security /

A ransomware attack on supply chain software giant Blue Yonder continues to cause disruption to the company’s customers, almost two weeks after the outage first began. In a brief update to its cybersecurity incident page on Sunday, Arizona-based Blue Yonder said it is making “good progress” in its recovery from the attack, which hit its […]

Retail outages drag into second week after Blue Yonder ransomware attack Read More »

AWS launches an incident response service to combat cybersecurity threats

Enterprise /

Companies often struggle with how to respond to cybersecurity incidents. According to one recent poll, only three out of five organizations have an incident response plan in place, and only around a third do regular drills to ensure that their plans remain effective. The consequences of poor incident response are costly. The International Monetary Fund

AWS launches an incident response service to combat cybersecurity threats Read More »

Russia-linked hackers exploited Firefox and Windows zero-day bugs in ‘widespread’ hacking campaign

Security /

Security researchers have uncovered two previously unknown zero-day vulnerabilities that are being actively exploited by RomCom, a Russian-linked hacking group, to target Firefox browser users and Windows device owners across Europe and North America. RomCom is a cybercrime group that is known to carry out cyberattacks and other digital intrusions for the Russian government. The

Russia-linked hackers exploited Firefox and Windows zero-day bugs in ‘widespread’ hacking campaign Read More »

Major UK, US stores face ongoing disruption after ransomware attack hits supply chain giant Blue Yonder

Security /

A ransomware attack on Blue Yonder, one of the world’s largest supply chain software providers, is causing ongoing disruption to operations at a number of major U.S. and U.K. stores and retailers.  Arizona-based Blue Yonder, which was acquired by Panasonic in 2021, said in a statement on its website on Friday that it had experienced

Major UK, US stores face ongoing disruption after ransomware attack hits supply chain giant Blue Yonder Read More »

Palo Alto Networks warns hackers are breaking into its customers’ firewalls — again

Security /

Malicious hackers have compromised potentially thousands of organizations by exploiting two new zero-day vulnerabilities found in widely used software made by cybersecurity giant Palo Alto Networks. Security researchers at Palo Alto Networks said Wednesday that they have observed a “limited set of exploitation activity” related to the two vulnerabilities in PAN-OS, the operating system that

Palo Alto Networks warns hackers are breaking into its customers’ firewalls — again Read More »

Fintech giant Finastra confirms it’s investigating a data breach

Security /

Finastra, a London-based financial software company that serves most of the world’s top banks, has confirmed it’s investigating a data breach after a hacker claimed a compromise of the company’s internal file-transfer platform.  In a statement given to TechCrunch, Finastra spokesperson Sofia Romano confirmed the fintech giant detected what it calls “suspicious activity” related to

Fintech giant Finastra confirms it’s investigating a data breach Read More »

US extradites Russian accused of extorting millions in Phobos ransomware payments 

Security /

The U.S. government has secured the extradition of an alleged Russian hacker who allegedly served as a key administrator of the prolific Phobos ransomware operation.  Prosecutors said Monday that Evgenii Ptitsyn, 42, was recently extradited from South Korea to appear in a Maryland federal court on November 4. Ptitsyn is accused of administering the sale,

US extradites Russian accused of extorting millions in Phobos ransomware payments  Read More »

Microsoft beefs up Windows security with new recovery and patching features

Enterprise /

In the aftermath of the devastating CrowdStrike outage this July, Microsoft vowed to do better even though it insisted that the event was an aberration. Evidently unwilling to take chances (or risk further hits to its credibility), the company on Tuesday, during Microsoft Ignite 2024, shared how it’s making changes to Windows to prevent similar

Microsoft beefs up Windows security with new recovery and patching features Read More »

AI training software firm iLearningEngines says it lost $250,000 in recent cyberattack

Security /

U.S.-based iLearningEngines, a provider of AI training software for enterprises, has alerted regulators to a cyberattack that allowed hackers to break into its network and steal $250,000 worth of company funds.  In an 8-K regulatory filing on Monday with the U.S. Securities and Exchange Commission, iLearningEngines said it had experienced a “cybersecurity incident” that saw

AI training software firm iLearningEngines says it lost $250,000 in recent cyberattack Read More »

Space tech giant Maxar confirms hacker accessed employees’ personal data

Security /

U.S. space technology and satellite giant Maxar has confirmed a data breach involving the personal information of its employees, according to a filing with state regulators. The Colorado-headquartered Maxar operates imaging satellites and manufactures spacecraft, and claims to operate one of the largest commercial satellite constellations on orbit. Maxar has long been a significant provider

Space tech giant Maxar confirms hacker accessed employees’ personal data Read More »