Use of XMRig Cryptominer by Threat Actors Expanding: Expel
XMRig is a legitimate open-source cryptocurrency mining tool available on GitHub that hackers for years have been deploying in...
Industry Spotlight
Malware Campaign Abuses Booking.com Against Hospitality Sector
An evolving multi-stage campaign likely run by Russian threat actors that uses a fake Booking.com reservation cancellation message for...
Google Chrome Extension is Intercepting Millions of Users’ AI Chats
A Chrome extension that promises security and privacy, has received good ratings from users and a “Featured” badge from Google,...
Hackers Steal Personal Data in 700Credit Breach Affecting 5.6 Million
A data breach at a company that offers credit reports, identity verification, and other services for about 18,000 auto dealerships...
Cybersecurity Coalition to Government: Shutdown is Over, Get to Work
A cybersecurity industry group comprising almost two dozen tech heavyweights – including Google, Cisco, CrowdStrike, and Microsoft – are...
Google Uses Courts, Congress to Counter Massive Smishing Campaign
Google is taking a multi-pronged approach to stopping a widespread global smishing operation that targeted more than a million...
Intel Sues Ex-Employee It Claims Stole 18,000 Company Files
IT giant Intel is reportedly suing a former employee who allegedly downloaded about 18,000 files days before leaving the...
Hackers Targeting Freight Operators to Steal Cargo: Proofpoint
Hackers are working with organized crime groups to target trucking and logistics companies with remote access tools to steal...
FCC Chair Carr Looks to Eliminate Telecom Cybersecurity Ruling
In the waning days of the Biden Administration in January, the Federal Communications Commission (FCC) made a declaratory ruling...
US Defense Contractor Boss Sold Zero Days to Russia — Cops a Plea
Peter Williams admits to selling unpatched iPhone bugs to a shady Russian broker.The former head of L3Harris’s Trenchant “offensive cyber”...
Obsidian: SaaS Vendors Must Adopt Security Standards as Threats Grow
Obsidian Security, a specialist in SaaS security, is one of the vendors that worked with the Cloud Security Alliance...
FCC Tightens the Squeeze on Banned Chinese Telecom Companies
The Federal Communications Commission (FCC) is continuing to clamp down on telecom gear imported into the United States by...
House Democrats Push Back at Reassignments, Firings of CISA Employees
Democrats in Congress continue to try to pressure Trump Administration officials to stop cutting or reassigning the workforce of...
Russia’s Coldriver Ramps Up Malware Development After LostKeys Exposure
Google threat researchers in May disclosed LostKeys, a malware used by the Russia state-sponsored cyber-espionage group Coldriver, which has...
October Patch Tuesday Fails Hard — Windows Update Considered Harmful?
Showstopper bugs with security certificates—plus failing USB keyboards and mice—cause QA questions.Microsoft’s Windows security update rollup is badly buggy this...
