North Dakota has become the first state in the United States of America to approve the cybersecurity education legislation that enables bringing cybersecurity education to schools. Governor Doug Burgum signed the landmark House Bill (HB1398) that outlined the requirement to develop a computer science and cybersecurity integration plan to promote it in …
Read More »
What just happened? Police in Spain have arrested a teenager named José Luis Huertas who they claim stole confidential data on more than half a million taxpayers from the national revenue service. The 19-year-old, who is known by multiple aliases including ‘Alcaseca,’ Mango,’ and ‘chimichurri,’ is also believed to be behind …
Read More »
A popular accounting software provider with over 30 million users leaked their WordPress admins’ credentials, source code, and server backups, risking threat actors hijacking their website. Founded in 2003, FreshBooks is a Canadian-based company providing invoicing, expenses, payments, and financial reporting services. The company claims to have more than 30 …
Read More »
The US Federal Bureau of Investigations (FBI) has taken down its second cybercriminal forum of the year. Known and used by hackers around the world – the notorious Genesis Market has met its end. Cybernews has all the details on the raid – and the infamous market. Now, where the Genesis …
Read More »
Security teams ought to seize on the opportunities of failures of the past to make meaningful change in how we approach incident response, urged Sarah Armstrong-Smith, chief security advisor at Microsoft, during UK Cyber Week 2023. Learning lessons from the past is crucial to developing an effective incident response strategy in …
Read More »
More organizations are emerging to confirm impact from the newly disclosed in-the-wild zero-day exploits hitting Fortra’s GoAnywhere managed file transfer (MFT) software. Tracked as CVE-2023-0669, the vulnerability was publicly disclosed in early February alongside zero-day exploitation and a patch was released a week later. Soon after, attacks targeting the security defect were linked to …
Read More »
Google this week announced plans to increase the control that Android users have over their data by requiring developers to enable data deletion both from the app and online. The initiative, expected to be enforced towards the end of the year, is part of a long-time initiative to improve user …
Read More »
Western Digital has shut down several of its services after detecting a security breach on its network, the digital storage giant announced on Monday. The service outage, announced on April 2, impacts cloud, proxy, web, authentication, email, and push notification services, including My Cloud, My Cloud Home (Duo), My Cloud OS5, …
Read More »
More information has come to light on the recent 3CX supply chain attack, which appears to have been conducted by North Korean hackers with the goal of targeting cryptocurrency companies. Cybersecurity firm Kaspersky has conducted its own analysis of the incident and found links to attacks observed by the company back in …
Read More »
A coordinated international law enforcement operation has dismantled Genesis Market, an illegal online marketplace that specialized in the sale of stolen credentials associated with email, bank accounts, and social media platforms. Coinciding with the infrastructure seizure, the major crackdown, which involved authorities from 17 countries, culminated in 119 arrests and …
Read More »
InfoSecBulletin Cybersecurity for mankind
