I don’t know whether this is a slow news week or things are getting bad but check out all of these items this week: I could have easily listed twice as many hacks, but I stopped after a dozen. So you tell me – is this just a bad week or are the hackers winning? […]
Continue reading → [DISPLAY_ACURAX_ICONS]Drug Cartels Use IT to Kill FBI Informants According to a newly published report, a Sinaloa cartel/El Chapo insider contacted the FBI in 2018 and told it of all the ways in which the cybercrook hired by the cartel helped it track down those who could give up key details about its operation and eliminate […]
Continue reading → [DISPLAY_ACURAX_ICONS]I can’t say this enough. Supply chains are the weak spot and hackers know it and abuse it. Scattered Spider, the group responsible for attacks on US insurance firms Aflac, Philadelphia and Erie and British retailers like Marks & Spencer and others, uses supply chain attacks as their favorite method. After they use social engineering […]
Continue reading → [DISPLAY_ACURAX_ICONS]AI is Great – But Is It Secure? MCP (Model Context Protocol) servers are the backbone of agentic AI. But researchers say that authentication is optional and nearly all of the nearly 2,000 MCP servers exposed to the Internet today do not require authentication or have access controls. What could possibly go wrong? To test […]
Continue reading → [DISPLAY_ACURAX_ICONS]The FBI released a warning yesterday about a loosely-organized cybercriminal organization called The Com. The Com launches cyberattacks to steal money and information. The FBI released 3 security bulletins about The Com, a group made up of English-speaking minors, but which has expanded to include THOUSANDS of people who commit a variety of crimes. The crimes include ransomware, […]
Continue reading → [DISPLAY_ACURAX_ICONS]The program’s director at Lawrence Livermore National Laboratory (LLNL) told Congress today that government funding for a program that hunts for threats on America’s critical infrastructure networks expired on Sunday, shutting down all work on the program. CyberSentry is a public-private partnership, managed by CISA, that looks for malicious activity on IT and operational technology […]
Continue reading → [DISPLAY_ACURAX_ICONS]