A hacker is offering to sell data allegedly stolen from Swedish vehicle manufacturer Volvo Cars following a ransomware attack carried out in late December.
Hacker Selling Data Allegedly Stolen From Volvo Cars Following Ransomware Attack
Researcher Says Google Paid $100k Bug Bounty for Smart Speaker Vulnerabilities
Security researcher Matt Kunze says Google paid him a $107,500 bug bounty reward for responsibly reporting vulnerabilities in the Google Home Mini smart speaker.
The issues, the researcher says, could have been exploited by an attacker within wireless proximity to create a rogue account on the device and then perform various actions.
Critical Vulnerabilities Patched in Synology Routers
Taiwan-based networking and storage solutions provider Synology has informed customers about the availability of patches for several critical vulnerabilities, including flaws likely exploited recently at the Pwn2Own hacking contest.
Malware Delivered to PyTorch Users in Supply Chain Attack
Last week’s nightly builds of the open source machine learning framework PyTorch were injected with malware following a supply chain attack.
Now part of the Linux Foundation umbrella, PyTorch is based on the Torch library and is used for applications in computer vision and natural language processing fields.
Nearly 300 Vulnerabilities Patched in Huawei’s HarmonyOS in 2022
Chinese tech giant Huawei patched nearly 300 vulnerabilities in its HarmonyOS operating system in 2022.
Cybersecurity M&A Roundup: 16 Deals Announced in December 2022
Ransomware Attack Forces Canadian Mining Company to Shut Down Mill
Canadian Copper Mountain Mining Corporation (CMMC) last week shut down its mill after falling victim to a ransomware attack.
Listed on the Toronto Stock Exchange, the firm owns most of the Copper Mountain mine. Located in southern British Columbia, the mine produces an average of 100 million pounds of copper equivalent per year.
Google to Pay Indiana $20 Million to Resolve Privacy Suit
CISA Says Two Old JasperReports Vulnerabilities Exploited in Attacks
The US Cybersecurity and Infrastructure Security Agency (CISA) has added two JasperReports flaws to its Known Exploited Vulnerabilities Catalog.
Several DoS, Code Execution Vulnerabilities Found in Rockwell Automation Controllers
Organizations using controllers made by Rockwell Automation have been informed recently about several potentially serious vulnerabilities.
