International Cyber Expo International Cyber Expo

Hacking

We report on the latest Hacking News in the UK, US and the world. Follow IT Security Guru for regular news, updates and interviews in hacking from our team of editors. Read our latest articles relating to computer and cyber hacking from a team of IT security experts, including ethical hackers and penetration testing. For any queries relating to Hacking News, please contact our editorial team at [email protected]

Data breach

BreachForums, one of the most well-known English-language cybercrime forums, has reportedly suffered a data breach, exposing user information after the site was taken offline once again. As reported by The Register, a database linked to the forum was leaked online, potentially revealing account details, private messages and metadata on close to 325,000 accounts. However, security researchers caution that while the leak may attract attention, its intelligence value and authenticity remain uncertain. Michael Tigges, Senior Security...

Read moreDetails
UK Government Data Stolen in Cyberattack

Government data has been stolen in a cyberattack, though officials say the risk to individuals remains low, according to a UK minister. The incident has prompted an ongoing investigation and renewed warnings from cybersecurity experts about the long-term risks of state-linked digital espionage. Trade Minister Chris Bryant confirmed the breach in an interview with BBC Breakfast, saying officials moved quickly once the issue was identified. “An investigation is ongoing,” Bryant said, adding that the security...

Read moreDetails
Salt Security Announces Industry First Solution to Secure API Actions Taken by AI Agents

Forescout Vedere Labs published a report exposing how a pro-Russian hacktivist group was duped into thinking they had hacked a European water facility, unaware their target was in fact a carefully crafted honeypot.   This “hack” provided Forescout researchers the rare opportunity to see first-hand how these groups look for and exploit weaknesses in critical infrastructure. Attackers were able to break in with default credentials, deface the human-machine interface and tamper with PLC settings. The group,...

Read moreDetails
crypto

We have witnessed cryptocurrency's rise from speculation to popularity because of the many benefits it offers and the financial gaps it has managed to fill in many industries, including finance, retail, entertainment, and many more. Some of the most commended benefits are the increased security and privacy that cryptocurrency use offers as compared to traditional forms of payment.  In this article, we will look at the ways in which cryptocurrency transactions can protect your sensitive...

Read moreDetails
Programme for International Cyber Expo’s Global Cyber Summit 2023 Announced

International Cyber Expo has announced its programme for the annual Global Cyber Summit, sponsored by Sonatype, OpenText, and Infoblox, and hosted at Olympia London on the 26th and 27th of September 2023. The summit returns with greater international appeal. Among other topics of discussion, guest speakers will provide the Ukrainian perspective on cyber security, in light of recent geopolitical events. With opening remarks by Professor Ciaran Martin CB, Chair of International Cyber Expo’s Advisory Council,...

Read moreDetails
Ransomware

This week, it was discovered that cybercriminals had exploited an ongoing vulnerability in Progress Software’s MOVEit file transfer app to infiltrate the systems of payroll company, Zellis. According to its website, 42% of the FTSE 100 are Zellis customers and over £28bn is paid each year through its Managed Services. This eventually led to a widespread ransomware attack impacting at least eight customers including the BBC, British Airways, Aer Lingus and Boots; all of whom...

Read moreDetails

There's never a dull day in cybersecurity...Below, we round-up some of top stories that hit the headlines this week! A Rough Day for Colonel Sanders While many of us in the UK hit send on our final work email and tucked away our laptops to enjoy a well-deserved long weekend break, Yum! Brands - owner of the world-renown fast food triad of KFC, Pizza Hut, and Taco Bell - were in the midst of sending...

Read moreDetails
Synopsys discover new vulnerability in Pluck Content Management System

Software security company Synopsys have discovered a new remote code execution vulnerability (RCE) in the Pluck CMS system. Pluck is a content management system (CMS) implemented in PHP designed for setting up and managing your own website. Devised with ease of use and simplicity in mind, Pluck is best suited for running a small website. Pluck CMS features an “albums” module. Albums are used to create collections of images that can be inserted into web...

Read moreDetails
Ferrari Data Breach: The Industry has its say

Apparently, the team at Ferrari may not have been up to speed with the latest ways to ensure your security is top priority. It was announced on Monday via a statement uploaded to their website that Ferrari was “recently contacted by a threat actor with a ransom demand related to certain client contact details”. Ferrari then went on to say that it “will not be held to ransom” and that the best course of action...

Read moreDetails
Serious API security flaws now fixed in Booking.com could affect many more websites

Salt Security, the API security company, has released new threat research from Salt Labs highlighting several critical security flaws in Booking.com. The now remediated flaws were found in the implementation of the Open Authorization (OAuth) social-login functionality utilised by Booking.com, which had the potential to affect any users logging into the site through their Facebook accounts.   The OAuth misconfigurations could have allowed for both large-scale account takeover (ATO) on customers’ accounts and server compromise,...

Read moreDetails
Page 1 of 4 1 2 4