Cybersecurity News, Awards, Webinars, eSummits, Research
A Google spokesperson said the company was “aware of the issue affecting a number of ChromeOS device return merchandise authorization (RMA) shims and are working with our hardware partners to address it." (Photo by John Moore/Getty Images)
While not a stark enterprise threat, security experts warn that if an unenrolled Chromebook at a school district or a retailer does not get detected, a hacker could potentially install malware on the network.
The FBI's response to disrupting Hive ransomware operations shows it may be internalizing some of the hard lessons from the 2021 Kaseya hack, where it withheld decryptors from victims for weeks.
The FTC levied a $1.5 million civil penalty to resolve claims it failed to report the unauthorized disclosure of consumer health data with social media giants like Facebook and Google.
Horizon3.ai researchers say security teams should prioritize the patch or the workarounds for the VMware vRealize vulnerabilities to prevent remote code execution.
This week’s healthcare data breach roundup includes a patient notice sent far outside of the 60 day-timeline required by HIPAA and is led by an ongoing outage at Atlantic General Hospital in Maryland.
An HC3 alert discloses that global health and personal data was found on the Killnet hacktivist group’s dark web list, serving as a warning for hospitals to review DDoS attack defenses.
The campaign involves a number of OAuth apps impersonating credible brands to gain verified status from Microsoft. According to researchers, a user who clicked on a consent prompt would hand malicious actors the ability to read their emails, adjust mailbox settings and gain access to other parts of their Microsoft account.
