Important: BreachAware does not operate under any other brand name and will never provide unauthorised access to compromised credentials. We ask our users to beware of illegitimate websites imitating BreachAware.

Infosec News Feed

An aggregated list of cybersecurity publications
2022-05-25 12:45:00 UTC
ThreatPost
ThreatPost
Verizon Report: Ransomware, Human Error Among Top Security Risks

2022’s DBIR also highlighted the far-reaching impact of supply-chain breaches and how organizations and their employees are the reasons why incidents occur.

Breach Critical Infrastructure Malware Vulnerabilities
2022-05-25 11:48:00 UTC
HackRead
HackRead
Pro-Iran Group ALtahrea Hit Port of London Website by DDoS Attack

By Waqas

A seemingly ‘politically motivated’ DDoS attack knocked down the Port of London authority’s website. The Port of London…

This is a post from HackRead.com Read the original post: Pro-Iran Group ALtahrea Hit Port of London Website by DDoS Attack

Cyber Attacks Security Cyber Attack Cyber War DDOS London Security TURKEY
2022-05-25 11:48:00 UTC
HackRead
HackRead
Pro-Iran Group ALtahrea Hits Port of London Website by DDoS Attack

By Waqas

A seemingly ‘politically motivated’ DDoS attack knocked down the Port of London authority’s website. The Port of London…

This is a post from HackRead.com Read the original post: Pro-Iran Group ALtahrea Hits Port of London Website by DDoS Attack

Cyber Attacks Security Cyber Attack Cyber War DDOS London Security TURKEY
2022-05-25 10:32:00 UTC
The Daily Swig
The Daily Swig
Malicious Python library CTX removed from PyPI repo

A suspicious developer appears to have performed a domain hijack to take over the original project

2022-05-24 23:21:00 UTC
Dark Reading
Dark Reading
DBIR Makes a Case for Passwordless

Verizon's "2022 Data Breach Investigations Report" repeatedly makes the point that criminals are stealing credentials to carry out their attacks.

2022-05-24 23:04:00 UTC
Naked Security | Sophos
Naked Security | Sophos
Poisoned Python and PHP packages purloin passwords for AWS access

More supply chain trouble - this time with clear examples so you can learn how to spot this stuff yourself.

Malware Vulnerability Exfiltration PHP Python Secops Supply Chain XDR
2022-05-24 22:44:00 UTC
Dark Reading
Dark Reading
'There's No Ceiling': Ransomware's Alarming Growth Signals a New Era, Verizon DBIR Finds

Ransomware has become so efficient, and the underground economy so professional, that traditional monetization of stolen data may be on its way out.

2022-05-24 21:43:00 UTC
Dark Reading
Dark Reading
Microsoft Elevation-of-Privilege Vulnerabilities Spiked Again in 2021

But there was a substantial drop in the overall number of critical vulnerabilities that the company disclosed last year, new analysis shows.

2022-05-24 21:13:00 UTC
Dark Reading
Dark Reading
New Attack Shows Weaponized PDF Files Remain a Threat

Notable new infection chain uses PDF to embed malicious files, load remote exploits, shellcode encryption, and more, new research shows.

2022-05-24 20:15:00 UTC
Dark Reading
Dark Reading
DeFi Is Getting Pummeled by Cybercriminals

Decentralized finance lost $1.8 billion to cyberattacks last year — and 80% of those events were the result of vulnerable code, analysts say.