News

Critical security vulnerabilities have been disclosed in six different Automatic Tank Gauge (ATG) systems from five manufacturers that could expose them to remote attacks. "These vulnerabilities pose significant real-world risks, as they could be exploited by malicious actors to cause widespread damage, including physical damage, environmental hazards, and economic losses," Bitsight researcher Pedro Umbelino said in a report published last week.

Hold onto your hats, folks, because the cybersecurity world is anything but quiet! Last week, we dodged a bullet when we discovered vulnerabilities in CUPS that could've opened the door to remote attacks. Google's switch to Rust is paying off big time, slashing memory-related vulnerabilities in Android. But it wasn't all good news – Kaspersky's forced exit from the US market left users with more questions than answers. And don't even get us started on the Kia cars that could've been hijacked with just a license plate! Let's unpack these stories and more, and arm ourselves with the knowledge to stay safe in this ever-evolving digital landscape.

The U.S. Department of Justice (DoJ) has charged a 39-year-old U.K. national for perpetrating a hack-to-trade fraud scheme that netted him nearly $3.75 million in illegal profits.

The FBI has confirmed that Iranian hackers were responsible for a cyberattack on the Trump campaign. The attack aimed to influence the 2020 U.S. presidential election by stealing sensitive data​

Critical WordPress Plugin Vulnerability:

Zero-Trust Adoption Misconceptions:

With the Kingdom’s strategic goal of being one of the most digitally forward and advanced economies, the increasingly sophisticated and pervasive nature of cyberthreats are pushing organizations to adopt newer concepts known as “hyper-resilient cybersecurity.” That will protect their digital assets in the push toward digitization. This new paradigm in cybersecurity leverages a combination of advanced technologies, along with artificial intelligence and machine learning at the forefront, in order to create a robust defense against evolving cyber adversaries.

IntelBroker and EnergyWeaponUser, known for their illegal activities, have announced a new data breach targeting the large technology company AMD. This breach is said to have occurred on August 25, 2024, and is separate from a previous breach in June. According to a post on the dark web marketplace BreachForums, the attackers have obtained internal communications from various AMD sources, including “idmprod.xilinx.com” and “amdsso.okta.com.” The compromised data reportedly contains sensitive information such as user credentials, case numbers, descriptions, and internal resolutions.

The financial and government sectors have come under increasing attacks in India, with the Reserve Bank of India (RBI) warning banks to double down on cybersecurity.

Scammers hacked the official McDonald’s Instagram account to promote a sham memecoin based on the fast food giant’s mascot Grimace.