Solomon Klappholz

News Sellafield, which houses the largest store of plutonium in the world, was found to have left staggering cyber vulnerabilities unaddressed for four years

Analysis Africa has become a major battleground for state-affiliated cyber criminals, with firms in the region frequently targeted by sophisticated attacks before they reach Europe and the US

News The Royal ransomware group has rebranded under the BlackSuit name after two years operating as one of the most prolific threat groups in the world

News Users are having their accounts overwritten by the Microsoft Authenticator service – and it's an issue that's been happening for years

News SonicWall has found another major flaw in the Apache OFBiz enterprise resource planning software, marking the latest in a slew of vulnerabilities over the last year

News The GitHub access token with administrator level privileges could have been used to great effect by threat actors

News CrowdStrike has responded to strong criticism from the CEO at Delta Air Lines, rejecting claims of gross negligence

News KnowBe4 revealed it inadvertently hired a North Korean hacker pretending to be a remote worker based in the US

News The NCSC plans to update its Active Cyber Defence program, introducing a refresh to keep the initiative up to date with the current threat landscape

News Threat actors are actively exploiting vulnerabilities in the ServiceNow platform, with reports of hackers already posting personal data on the dark web

News CISA’s Secure by Design Pledge is picking up momentum, adding a further 100 companies to its list of signees since May

News The VMware ESXi hypervisor has become a favorite target in the digital extortion community, according to researchers

News US tech startups are a prime target for foreign intelligence agencies and threat groups, offering a chance to steal IP and state secrets

News Zscaler’s ThreatLabz identified a new record for the largest ransomware payment ever recorded, which is almost twice the size of the previous record holder

News Data breach costs continued to rise, according to IBM, and they’re taking longer to recover from

Analysis CISOs still cite remote work as one of their major security sticking points four years on from the widespread shift at the beginning of COVID

News The costs associated with the CrowdStrike IT outage could surge in weeks to come, analysis suggests

News US law enforcement after information on the identification or location of a leading affiliate of a North Korean hacking gang, as the NCSC issues warning of its increased focus on critical infrastructure

News Hackers have reportedly dumped internal documents from Leidos Holdings on the dark web, raising questions about how organizations are securing their supply chains

A flood of ghost accounts are manipulating GitHub to promote malicious repositories and accounts – and this could be just the tip of the iceberg

News Social media giant reveals its most powerful open source model yet, but stakeholders continue to question its credibility in the field

News Security firm cites antitrust and investor concerns as it backs out of Google deal, but experts note there are other cloud security specialists the search giant could turn to

A joint operation led by the National Crime Agency to infiltrate the Digitalstress.su criminal marketplace and take control of its infrastructure and domains

Businesses urged to exercise caution and look out for the file named ‘result.txt in %TMP%’ that could indicate a “Daolpu” infection

News A red team assessment performed by CISA on an unnamed federal agency found a series of critical security weaknesses