Microsoft 365 Copilot: New Zero-Click AI Vulnerability Allows Corporate Data Theft
Researchers have found a flaw in Microsoft 365 Copilot that allows the exfiltration of sensitive corporate data with a simple email
Information Security Magazine
Palo Alto Networks Patches Series of Vulnerabilities
2 weeks ago
The cybersecurity provider also implemented recent fixes in Chromium that affected its Prisma Access Browser
NIST Publishes New Zero Trust Implementation Guidance
2 weeks ago
The new NIST guidance sets out 19 example implementations of zero trust using commercial, off-the-shelf technologies
Europol Says Criminal Demand for Data is “Skyrocketing”
2 weeks ago
Europol warns of “vicious circle” of data breaches and cybercrime
Phishing Alert as Erie Insurance Reveals Cyber “Event”
2 weeks ago
Erie Insurance reveals suspected network breach and ongoing outage
Congress Introduces Bill to Strengthen Healthcare Cybersecurity
2 weeks 1 day ago
The legislation aims to expand the federal government’s role in helping healthcare providers protect and respond to cyber-attacks
20,000 Asian IPs and Domains Dismantled in Infostealer Crackdown
2 weeks 1 day ago
Interpol-coordinated Operation Secure led to 32 arrests, including the suspected ringleader of a cybercriminal organization
Hands-On Skills Now Key to Landing Your First Cyber Role
2 weeks 1 day ago
An ISC2 study found that 90% of security hiring managers would consider entry-level candidates with only previous IT work experience
Researcher Finds Five Zero-Days and 20+ Misconfigurations in Salesforce Cloud
2 weeks 1 day ago
The products affected by the issues are part of the Salesforce OmniStudio suite, including FlexCards and Data Mappers
Half of Mobile Users Now Face Daily Scams
2 weeks 1 day ago
Malwarebytes claims 44% of mobile users are exposed to scams every day
Two Microsoft Zero-Days for Admins to Fix in June Patch Tuesday
2 weeks 1 day ago
Microsoft has patched two zero days this month, one of which is being exploited in the wild
Android Enterprise Rolls Out Security and Productivity Updates
2 weeks 2 days ago
Android Enterprise has introduced features for mobile security, device management and user productivity in its latest update
Mastery Schools Notifies 37,031 of Major Data Breach
2 weeks 2 days ago
A ransomware attack on Mastery Schools, Philadelphia, has compromised personal information of 37,031 individuals, exposing sensitive data
DDoS Attacks on Financial Sector Surge in Scale and Sophistication
2 weeks 2 days ago
The financial sector was the industry most targeted by distributed denial-of-service (DDoS) attacks in 2024, with a peak in October
SentinelOne Warns Cybersecurity Vendors of Chinese Attacks
2 weeks 2 days ago
SentinelOne revealed details of two new intrusion attempts by China-nexus actors
Wholesale Food Giant UNFI Admits Security Breach
2 weeks 2 days ago
UNFI says it is investigating unauthorized network activity, and that some operations are affected
PayU Plugin Flaw Allows Account Takeover on 5000 WordPress Sites
2 weeks 3 days ago
Vulnerability in PayU CommercePro plugin allows account hijacking on thousands of WordPress sites
New Wiper Malware Targets Ukrainian Infrastructure
2 weeks 3 days ago
New PathWiper malware targeted Ukrainian critical infrastructure, using legitimate tools for cyber-attacks
Trump Administration Revises Cybersecurity Rules, Replaces Biden and Obama Orders
2 weeks 3 days ago
A new Trump Executive Order limits the use of cybersecurity-related sanctions only against foreign malicious actors
US Tries to Claw Back $7m Taken by North Korean IT Workers
2 weeks 3 days ago
The Justice Department has filed a civil forfeiture complaint alleging North Korean IT workers amassed $7m+
Checked
10 hours 26 minutes ago