The company says the Nobelium hacking group compromised a support agent’s computer and levied brute-force attacks against some of its customers.
vulnerabilities
How to Make Sure Your Browser Extensions Are Safe
As useful as all those add-ons can be, don’t get complacent when it comes to making sure they’re also secure.
Hackers Are Erasing Western Digital Hard Drives Remotely
Amazon acquires Wickr, the Senate holds up CISA, and more of the week’s top security news.
NFC Flaws Let Researchers Hack ATMs by Waving a Phone
Flaws in card reader technology let a security firm consultant wreak havoc with point-of-sale systems and more.
A Well-Meaning Feature Leaves Millions of Dell PCs Vulnerable
Flaws in a firmware security tool affect as many as 30 million desktops, laptops, and tablets.
A New Tool Wants to Save Open Source from Supply Chain Hacks
Sigstore will make code signing free and easy for software developers, providing an important first line of defense.
Microsoft’s new security tool will discover firmware vulnerabilities, and more, in PCs and IoT devices
Devices have multiple OSs and firmware running, and most organisations don’t know what they have or if it’s secure. Microsoft will use ReFirm to make it easier to find out without being an expert.
Microsoft product vulnerabilities reached a new high of 1,268 in 2020
56% of all Microsoft critical vulnerabilities could have been mitigated by removing admin rights, according to the 2021 BeyondTrust Microsoft Vulnerabilities Report.
Microsoft Exchange Server vulnerabilities, ransomware lead spring 2021 cyberattack trends
Cisco’s Talos team said 35% of incidents led back to Microsoft Exchange Server vulnerabilities reported early in 2021, but new ransomware families have been appearing to fill the Emotet hole, too.
Ransomware Hit Another Pipeline Firm—and 70GB of Data Leaked
LineStar Integrity Services was hacked around the same time as Colonial Pipeline, but radical transparency activists have brought the attack to light.