Information Security newsfeed from around the world in English and French. Find it all in one place… here.
HYAS, a Victoria, Canada-based provider of threat intelligence based on adversary infrastructure, announced this week that it has closed a $16 million Series B round of funding led by S3 Ventures. read more Source: Security Week
Continue ReadingHaving trouble scoring a COVID-19 vaccine appointment? You’re not alone. To cope, some people are turning to bots that scan overwhelmed websites and send alerts on social media when slots open up. read more Source: Security Week
Continue ReadingIn early 2021, a Chinese threat actor tracked as TA413 attempted to hack into the Gmail accounts of Tibetan organizations using a malicious browser extension, researchers with cybersecurity firm Proofpoint have discovered. read more Source: Security Week
Continue ReadingAn analysis of 40 COVID-19 contact tracing applications for Android has led to the discovery of numerous security and privacy issues, according to a new research paper. Contact tracing applications have been created to help authorities automate the process of identifying those who have been in close contact with infected individuals. read more Source: Security […]
Continue ReadingMicrosoft on Thursday announced the open source availability of CodeQL queries that it used during its investigation into the SolarWinds attack. read more Source: Security Week
Continue ReadingIndustrial organizations have been warned this week that a critical authentication bypass vulnerability can allow hackers to remotely compromise programmable logic controllers (PLCs) made by industrial automation giant Rockwell Automation. read more Source: Security Week
Continue ReadingTikTok’s Chinese parent company ByteDance has agreed to pay $92 million in a settlement to U.S. users who are part of a class-action lawsuit alleging that the video-sharing app failed to get their consent to collect data in violation of a strict Illinois privacy law. read more Source: Security Week
Continue ReadingDuring an attack on the defense industry, the North Korea-linked threat group known as Lazarus was able to exfiltrate data from a restricted network segment by taking control of a router and setting it up as a proxy server. read more Source: Security Week
Continue Reading
read more Source: Security Week
Continue ReadingCisco this week released patches for over a dozen vulnerabilities affecting multiple products, including three critical bugs impacting its ACI Multi-Site Orchestrator, Application Services Engine, and NX-OS software. read more Source: Security Week
Continue Reading