News

Google has released Chrome 98.0.4758.102 for Windows, Mac, and Linux, as fix for a high-severity zero-day vulnerability used by cyber-attackers. "Google is aware of reports that an exploit for CVE-2022-0609 exists in the wild," the company said in a security advisory released today. Chrome update will roll out over the coming weeks but it is possible to install the update immediately simply by going into the Chrome menu > Help > About Google Chrome. The vulnerability was detected by Clément...

A data breach at a business services company based in Saginaw, Michigan may have exposed the personal information of 521,00 people. The attack was detected on August 1 last year when data in the company's care became unavailable. The breach comes as a direct result of cyber-criminals targeting Morley Companies.  Michigan attorney general Dana Nessel confirmed on Friday reported "a data security incident that may have impacted data belonging to current employees, former employees and various...

The Security Service of Ukraine (SSU) says that the attacks aim provoke anxiety and undermine Ukrainian society's confidence in the state's ability to defend its citizens. "Ukraine is facing attempts to systemically sow panic, spread fake information and distort the real state of affairs. All this combined is nothing more than another massive wave of hybrid warfare," the SSU said. The SSU has responded to a number of attempts linked to hostile intelligence agencies and...

Following a breach in December, Gloucester City Council has set aside $380k to recover from the incident. The local authority admitted at the time of the attack that it could take up to 6 months fix as servers would need rebuilding. Councillors have admitted, however, that the sum may not be enough to handle the fall out of the incident. One Conservative councillor reportedly claimed that as the situation develops and implications of cost are...

'A1 Hrvatska', a Croatian phone carrier, has disclosed a data breach exposing the personal information of roughly 200,000 of its customers. The organisation has not provided many details outside the fact that they suffered a cybersecurity incident involving the unauthorised access of one of their user databases containing sensitive personal information. The information leaked includes full names, personal identification numbers, physical addresses, and telephone numbers. A1 Hrvatska has stressed that the accessed database did not...

Email spam rates averaged 46% over the year globally, according to a new report by Kaspersky. In its new Spam and Phishing in 2021 report, the Russian AV company revealed that spam rates peaked at 48% in June. The majority came from machines in Russia (25%), followed by Germany (14%), the US (10%) and China (9%). Brazilian (12%), French (12%) and Portuguese (11%) users were the most frequently targeted by attackers. According to Kaspersky, it blocked...

Emil Frey, a Swiss car dealer have released a statement confirming that they were hit with a ransomware attack last month. The company, which is ranked as the number 1 car dealership in Europe, showed up on the list of victims for the Hive ransomware on February 1 later confirming that they were attacked in January. "We have restored and restarted our commercial activity already days after the incident on January 11, 2022," a spokesperson...

The addresses of defence sites, a missile maintenance unit and domestic violence shelters were among the 500,000 addresses leaked by mistake. This is the first major breach of the New South Wales government's huge store of QR code data. Premier Dominic Perrottet said the information was uploaded in error and “shouldn’t have happened”. The mistake has alarmed both privacy advocates and women’s safety advocates. Cybersecurity experts have long warned the huge amount of data being...

Mere hours before the Super Bowl kick off, the San Francisco 49ers confirmed they were the most recent victims of the BlackByte ransomware group. In a statement to ZDNet, the team said it "recently became aware of a network security incident" causing disruption to their corporate IT network. "Upon learning of the incident, we immediately initiated an investigation and took steps to contain the incident. Third-party cybersecurity firms were engaged to assist, and law enforcement was...

Microsoft has addressed in the Microsoft Defender Antivirus that allowed attackers to plant and execute malicious payloads while avoiding Defender's malware detection engine. The flaw affected even the latest Windows 10 versions and threat attackers have been able to exploit it since at least 2014. As BleepingComputer previously reported, the flaw resulted from lax security settings for the "HKLM\Software\Microsoft\Windows Defender\Exclusions" Registry key. This key contains the list of locations (files, folders, extensions, or processes) excluded from...