A school district in North Carolina disclosed a data breach after having unencrypted files stolen during a SunCrypt Ransomware attack. The Haywood County School district in North Carolina has suffered a data breach after having unencrypted files stolen during a

America’s Cybersecurity and Infrastructure Security Agency (CISA) has issued a binding operational directive (BOD) requiring the development and publication of vulnerability disclosure policies (VDPs). A BOD is a compulsory direction to federal executive branch departments and agencies for purposes of

CyberNews researchers discovered an unsecured data bucket that belongs to View Media containing close to 39 million US citizen records. The CyberNews research team discovered an unsecured data bucket that belongs to View Media, an online marketing company. The bucket

Online service providers, app developers and other relevant businesses have one year to comply with a new statutory code introduced on Wednesday to help protect children’s privacy. The Age Appropriate Design Code or Children’s Code will apply to any business

Northumbria University is still reeling from a cyber-attack which forced it to reschedule exams and close its entire campus in Newcastle-Upon-Tyne. Deputy vice chancellor, Peter Francis, told students on Monday that the “cyber incident” had caused “significant operational disruption” and

Security experts are warning of a new global DDoS-related extortion campaign targeting businesses operating in the e-commerce, finance and travel sectors. Radware said it had been tracking the threat actors since mid-August, with victims in North America, APAC and EMEA.

The Twitter account of the Indian Prime Minister Modi was hacked, attackers sent a series of tweets asking followers to donate cryptocurrency to a relief fund. The Twitter account for the personal website of the Indian Prime Minister Narendra Modi

Researchers observed a new tactic adopted by Magecart groups, the hackers used Telegram to exfiltrate stolen payment details from compromised websites. Researchers from Malwarebytes reported that Magecart groups are using the encrypted messaging service Telegram to exfiltrate stolen payment details

It was announced today that state, local, tribal, and territorial (SLTT) government organizations in the United States are to receive extra support to improve their cybersecurity. Help is coming in the form of a 12-month project funded by CISA that

The UK’s National Cyber Security Centre (NCSC) has teamed up with international allies to issue guidelines on how organizations can stay safe from malicious cyber-actors. The joint cybersecurity advisory “Technical Approaches to Uncovering and Remediating Malicious Activity” was published today

A third (33%) of companies in the digital supply chain expose unsafe network services to the internet, putting sensitive data at risk, according to a new report published today by RiskRecon and the Cyentia Institute. Following an assessment of millions

As of September, all publicly trusted TLS certificates must have a lifespan of 398 days or fewer. According to a statement from Apple from March, where it announced it was “reducing the maximum allowed lifetimes of TLS server certificates” as

Corporate CEOs could soon be personally liable if they fail to adequately secure IT systems connected to the physical world, Gartner has warned. The analyst firm predicted that as many as 75% of business leaders could be held liable by

Researchers discovered multiple vulnerabilities in the MAGMI Magento plugin that could lead to remote code execution on a vulnerable Magento site. Tenable published a research advisory for two vulnerabilities impacting the Magento Mass Import (MAGMI) plugin. The flaws were discovered

Although often relegated to the sidelines, the use of log files and the implementation of a strong log management strategy is vital for ensuring the performance and stability of business applications while also adding an additional layer of security through

The head of the US Cybersecurity and Infrastructure Security Agency (CISA) has been forced to deny Russian reports that US voter registration information has been circulating on the dark web. Russian newspaper Kommersant claimed in a story yesterday that a