T-Mobile Says Hackers Used API to Steal Data on 37 Million Accounts
Wireless carrier T-Mobile on Thursday fessed up to another massive data breach affecting approximately 37 million current postpaid and prepaid customer accounts.
read more
incident response
How to succeed in cyber crisis management and avoid a Tower of Babel
Although cyberattacks have become more common, handling them remains extremely challenging for organizations. Even if things go well on the technical level, incident response (IR) is still a stressful and hectic process across the company; this is the …
Researchers: Brace for Zoho ManageEngine ‘Spray and Pray’ Attacks
Security researchers tracking a known pre-authentication remote code execution vulnerability in Zoho’s ManageEngine products are warning organizations to brace for “spray and pray” attacks across the internet.
read more
CircleCI Hacked via Malware on Employee Laptop
Software development service CircleCI has revealed that a recently disclosed data breach was the result of information stealer malware being deployed on an engineer’s laptop.
The incident was initially disclosed on January 4, when CircleCI urged custom…
Cyber Incident Hits UK Postal Service, Halts Overseas Mail
Britain’s postal service said it was hit Wednesday by a “cyber incident” that is temporarily preventing it from sending letters or parcels to other countries.
read more
Microsoft Flags Ransomware Problems on Apple macOS Platform
Security researchers at Microsoft are flagging ransomware attacks on Apple’s flagship macOS platform, warning that financially motivated cybercriminals are abusing legitimate macOS functionalities to exploit vulnerabilities, evade defenses, or coerce u…
FCC Proposes Tighter Data Breach Reporting Rules for Wireless Carriers
The Federal Communications Commission (FCC) is proposing tighter rules on the reporting of data breaches by wireless carriers.
The updated rules, the FCC says, will fall in line with recent changes in federal and state laws regarding data breaches in o…
How to improve your incident response plan for 2023
You may already have an IR plan but regardless of how thorough you might feel it is at this moment, the evolving cyber threat landscape and shifting circumstances within your organization demand regular changes and improvements. What are the attack vec…
Rackspace Completes Investigation Into Ransomware Attack
Cloud company Rackspace has completed its investigation into the recent ransomware attack and found that the hackers did access some customer resources.
read more
Predictions 2023: Big Tech’s Coming Security Shopping Spree
The SecurityWeek editorial team huddled over the holidays to look back at the stories that shaped 2022 and, more importantly, to stare into a shiny crystal ball to find the cybersecurity narratives that will dominate this year’s headlines.
read more