The Department of Homeland Security (DHS) has announced the results of the first phase of its “Hack DHS” bug bounty program.
‘Hack DHS’ Participants Awarded $125,000 for Over 100 Vulnerabilities
Lapsus$ Hackers Gained Access to T-Mobile Systems, Source Code
T-Mobile has admitted that its systems were breached recently, but the telecoms giant claimed the hackers did not steal anything of value.
T-Mobile is another high-profile victim of the hacker group named Lapsus$. The gang has targeted several major companies, in many cases leaking large amounts of source code and other data stolen from their systems.
Spain Vows to be Transparent in Probe of Pegasus Spyware Use
Spanish authorities are pledging full transparency as they launch inquiries into allegations that the phones of dozens of supporters of Catalan independence were hacked with powerful and controversial spyware only sold to government agencies.
Cyberattack Causes Chaos in Costa Rica Government Systems
Nearly a week into a ransomware attack that has crippled Costa Rican government computer systems, the country refused to pay a ransom as it struggled to implement workarounds and braced itself as hackers began publishing stolen information.
Strike Security Scores Funding for ‘Perpetual Pentesting’ for SMBs
South American startup Strike Security has secured $5.4 million to fund an ambitious plan to disrupt the penetration testing and attack surface management business.
Motorola Launches Cyber Threat Information Sharing Hub for Public Safety
Motorola Solutions announced this week the creation of the Public Safety Threat Alliance, a cyber threat intelligence sharing hub for the public safety community.
Several Critical Vulnerabilities Affect SmartPPT, SmartICS Industrial Products
A security researcher has discovered several vulnerabilities, including ones rated critical- and high-severity, in industrial products made by Elcomplus, a Russian company specializing in professional radio communications and industrial automation.
Unpatched Vulnerability Allows Hackers to Steal Emails of RainLoop Users
An unpatched vulnerability affecting the RainLoop webmail client can be exploited to hijack a user’s session and steal their emails, according to application security firm Sonar.
VMware’s Head of Cybersecurity Strategy Discusses Modern Bank Heists
Digital Bank Heists – Because That’s Where the Money Is Today
The financial sector is in the crosshairs of criminal cartels and nation-state actors. Criminals seek a lucrative market, and nation-states treat profit as a form of sanctions-busting.
Audio Codec Made by Apple Introduced Serious Vulnerabilities in Millions of Android Phones
An open source audio codec developed by Apple is affected by serious vulnerabilities that have been pushed to millions of Android devices by some of the world’s largest mobile chipset manufacturers.
