Comcast's Xfinity says hackers breached one of its Citrix servers in October 2023, two weeks after Citrix issued a patch, and stole data on 35,879,455 people
what we know Laura French / SC Media : 35 million Xfinity customers have data leaked in breach tied to Citrix Bleed bug Helga Labus / Help Net Security : Citrix Bleed leveraged to steal data of 35+ mi...
Cisco plans to acquire cybersecurity company Splunk in cash for $157 per share, a 31% premium on Splunk's September 20 closing price, in a deal valued at ~$28B
https://www.reuters.com/... Chris Merkel / @chrismerkel@infosec.exchange : Scoop: Anonymous has hacked the neuralinks of the leadership teams at Splunk and Cisco. While I can't identify the specific ...
Twilio discloses “unauthorized access” on August 4 by a “sophisticated” unknown actor using an SMS-based phishing attack on staff to gain info on some accounts
Leaks Private Data via Phishing Jose Montes de Oca / Newslit Daily : 🗞 Axios to Sell to Cox Enterprises for $525MM Pierluigi Paganini / Security Affairs : Twilio discloses data breach that impacted cu...
Microsoft says an attacker gained access to one of its customer service agents and launched attacks against customers in a probe of suspected SolarWinds hackers
The Microsoft Threat Intelligence Center is tracking new activity from the NOBELIUM threat actor. Tom Warren / The Verge : Why Windows 11 is forcing everyone to use TPM chips Malcolm Owen / AppleInsid...
Source: Treasury's hackers used a flaw in a SolarWinds product; SolarWinds, which touts 300K+ customers, says the flaw was the result of a “supply chain attack”
and it has the Kremlin's fingerprints all over it. https://www.bloomberg.com/... Thomas Brewster / @iblametom : New - A review of contract records shows DOD, FBI, DHS, Veterans Affairs and many other ...
Researchers: Zoom sometimes uses encryption keys issued by servers in China, uses a flawed encryption method, and hence is not suited to communicate secrets
but it can be fixed Stephen Warwick / iMore : Today on Zoom: ‘Not suited for secrets’, encryption issues and more Mercury News : Zoombombing: FBI warns video calls are getting hijacked Tweets: Glenn F...
Zoom apologizes for security failures, says it has 200M+ DAUs vs. 10M in Dec., and plans to freeze development of new features to focus on security and privacy
And An FBI Warning Brian Krebs / Krebs on Security : ‘War Dialing’ Tool Exposes Zoom's Password Problems Kari Paul / The Guardian : ‘Zoom is malware’: why experts worry about the video conferencing pl...
Marriott International says 500M records from the guest reservation database of Starwood Hotels were stolen in a massive data breach dating as far back as 2014
you ruined my credit card, hotels, loyalty program and then your shitty IT means you lost my personal data. Andrea Matwyshyn / @amatwyshyn : “In its quarterly filing dated Nov. 6, Marriott added a war...
Sources: hackers stole NSA data on US offensive and defensive cyber capabilities from a contractor's laptop in 2015, likely via Kaspersky software
This Time with Kaspersky's Help Associated Press : Report: Russian hackers target secrets taken by NSA worker Steven Musil / CNET : Russian hackers reportedly stole NSA cyber secrets in 2015 Gareth Ha...
Ransomware attack spreads to orgs in Britain, US, and Europe, including ad firm WPP, Chernobyl power plant, shipping giant Maersk, US hospital, Merck, more
what's happening and how to protect yourself Zeljka Zorz / Help Net Security : NotPetya outbreak: What we know so far Nandini Yadav / bgr.in : Petya ransomware spreads globally; social media is gracef...