Vendors
-
Cyber Attack on UK Retailers Marks & Spencer and Co-op Attributed to Scattered Spider Group
The recent cyber attacks targeting UK retailers Marks & Spencer and Co-op have been linked to the Scattered Spider cybercrime group, with financial impacts estimated at up to £440 million. The UK’s Cyber Monitoring Centre described the incidents as a single combined cyber event, prompting heightened concerns in the insurance sector as the group shifts…
-
New Campaign Uncovers 67 Trojanized GitHub Repositories Targeting Python Users
Cybersecurity experts have revealed a new campaign identifying 67 trojanized GitHub repositories that falsely advertise Python hacking tools, delivering malicious software instead. This campaign highlights the significant risks of using open-source repositories for developers.
-
Viasat Falls Victim to Chinese Salt Typhoon Hackers Amid Ongoing Cyber Threats
Satellite communications company Viasat has been targeted by the cyber-espionage group Salt Typhoon. The company is collaborating with federal authorities to investigate the breach, which has raised concerns about ongoing cybersecurity threats faced by telecom providers.
-
Cloudflare Outage Not Linked to Security Incident, Data Remains Safe
Cloudflare has confirmed that a recent service outage was not caused by a security incident. The outage, which lasted 2.5 hours, stemmed from a failure in the underlying storage infrastructure affecting its crucial Workers KV system. The company assures that all user data remains safe and plans to enhance system resilience moving forward.
-
GitLab Issues Security Patches Addressing High-Severity Vulnerabilities
GitLab has released vital security updates addressing multiple high-severity vulnerabilities that allow account takeovers and malicious job injections in its DevSecOps platform. The company urges immediate upgrades to mitigate these risks.
-
Widespread Service Outages Affect Google Cloud and Cloudflare
Google Cloud and Cloudflare have reported widespread service outages affecting various services and platforms. Both companies are investigating the issues that began on June 12, with users experiencing significant access problems.
-
Microsoft Addresses Critical Zero-Day Vulnerability in June Security Update
Microsoft’s June security update addresses 66 vulnerabilities, including a critical zero-day exploit in WebDAV linked to the Stealth Falcon espionage group, posing risks to organizations worldwide.
-
EU Launches DNS4EU to Enhance Digital Sovereignty and Security
The European Union has introduced DNS4EU, a privacy-focused DNS resolution service aimed at enhancing digital sovereignty and security across Europe. This new initiative offers a viable alternative to existing non-European DNS providers and emphasizes user privacy and local regulations.
-
Germany Imposes €45 Million Fine on Vodafone for Privacy Violations
Germany’s BfDI has fined Vodafone GmbH €45 million for privacy breaches linked to fraudulent contracts and security vulnerabilities, prompting the telecom giant to enhance its operational procedures and commit to future data protection efforts.
-
Cisco Issues Urgent Patches for Critical Vulnerabilities in Cloud Services
Cisco has issued patches for critical vulnerabilities in its Identity Services Engine (ISE) and Customer Collaboration Platform (CCP), warning of potential exploits that could allow unauthorized access and disruption of services in cloud deployments.
