A group tracked as UNC6395 engaged in “widespread data theft” via compromised OAuth tokens from a third-party app called Salesloft Drift. ​ ​ ​Read More

African nations work with Interpol and private-sector partners to disrupt cybercriminal operations on the continent, but more work needs to be done. ​ ​ ​Read More

Though the company is informing its customers of the breach, Farmers isn’t publicly divulging what kinds of personal data were affected. ​ ​ ​Read More

The flaw is one of three that the company disclosed affecting its NetScaler ADC and NetScaler Gateway technologies. ​ ​ ​Read More

Researchers say the huge spike of coordinated scanning for Microsoft RDP services could indicate the existence of a new, as-yet-undisclosed vulnerability. ​ ​ ​Read More

The “incident” led to outages affecting a variety of the tech company’s operations, though the full scope of the breach is unknown. ​ ​ ​Read More

Lab-Dookhtegen claims major attack on more than 60 cargo ships and oil tankers belonging to two Iranian companies on US sanctions list. ​ ​ ​Read More

The chairman sent letters out to companies like Apple, Meta, and Microsoft, advising them not to adhere to the demands of foreign governments to weaken their encryption. ​ ​ ​Read More

Because instructions appear to come from AI-generated content summaries and not an external source, the victim is more likely to follow them without suspicion. ​ ​ ​Read More

A China-nexus threat actor known as UNC6384 has been attributed to a set of attacks targeting diplomats in Southeast Asia and other entities across the globe to advance Beijing’s strategic interests. “This multi-stage attack chain leverages advanced social engineering including valid code signing certificates, an adversary-in-the-middle (AitM) attack, and indirect execution techniques to evade ​…