Companies critical to U.S. national interests will now have to report when they’re hacked or they pay ransomware, according to new rules approved by Congress.
Hacked US Companies to Face New Reporting Requirements
Google Attempts to Explain Surge in Chrome Zero-Day Exploitation
14 Chrome Zero-Day Vulnerabilities Exploited in Attacks in 2021
The number of Chrome vulnerabilities exploited in malicious attacks has been increasing over the past years and Google believes several factors have contributed to this trend.
Russian Cyber Restraint in Ukraine Puzzles Experts
The absence of any crippling Russian cyberattacks against Ukraine is puzzling experts, but they warn that low-level assaults may be coming, including against the West in retaliation for sanctions.
High-Severity Vulnerabilities Patched in Omron PLC Programming Software
Several high-severity vulnerabilities that can be exploited for remote code execution were patched recently in the CX-Programmer software of Japanese electronics giant Omron.
Meta Releases Open Source Browser Extension for Checking Code Authenticity
Facebook parent company Meta this week announced the release of Code Verify, an open source browser extension meant to verify the authenticity of code served to the browser.
Canadian NetWalker Ransomware Operator Extradited to U.S.
A former Canadian government employee has been extradited to the United States to face charges related to dozens of NetWalker ransomware attacks.
EU Lawmakers to Probe ‘Political’ Pegasus Spyware Use
The European Parliament on Thursday created a “committee of inquiry” to probe accusations over the use of Pegasus spyware by governments in the bloc, notably in Hungary and Poland.
U.S. Warns of Conti Ransomware Attacks as Gang Deals With Leak Fallout
The U.S. government has reissued an alert warning organizations about Conti ransomware attacks as the cybercrime group deals with the recent leaks.
1Password Increases Top Bug Bounty Reward to $1 Million
Password management software vendor 1Password today announced that it is willing to pay up to $1 million to researchers able to steal secrets from its vault.
The top reward is offered as part of the company’s bug bounty program that has been running on Bugcrowd for years.
Vodafone Investigating Source Code Theft Claims
Vodafone has launched an investigation after a cybercrime group claimed to have stolen hundreds of gigabytes of source code from the telecoms giant.
The hacker group, calling itself “Lapsus$,” claims to have obtained roughly 200 Gb of source code files, allegedly representing approximately 5,000 GitHub repositories.
