Microsoft disables phishing campaign after researchers flag OAuth app abuse

Proofpoint researchers uncovered a malicious campaign where threat actors abused Microsoft’s “verified publisher” status and tricked executives into granting permissions.

By David Jones • Feb. 1, 2023

GitHub resets code signing certificates following breach

The incident closely follows a series of indirect source code repository breaches impacting Slack and Okta.

By Matt Kapko • Feb. 1, 2023

Most data breach notices lacked detail in 2022

Organizations were not forthright with the causes or potential risks stemming from disclosed incidents.

By Matt Kapko • Jan. 30, 2023

Almost half of critical manufacturing organizations face significant risk of data breach

A report presented at the World Economic Forum shows key sectors are under pressure from rising vulnerabilities and a slower rate of patching.

By David Jones • Jan. 23, 2023

Experts question T-Mobile’s security culture as breach cycle churns

The gap between the threat actor’s intrusion and T-Mobile’s detection underscores multiple unresolved challenges.

By Matt Kapko • Jan. 20, 2023

Ransomware attack against Yum! Brands follows several incidents targeting restaurant industry

Criminals see restaurants and mobile ordering apps as ripe targets for credential stuffing and financial fraud.

By David Jones • Jan. 20, 2023

Mailchimp hit by second cyberattack in 6 months, 133 customers impacted

The social engineering incident is similar to an August cyberattack that targeted customers in the crypto industry.

By David Jones • Jan. 19, 2023

Cyber, business interruption remain top global corporate risks

Risk management leaders remain highly concerned about the threat of malicious attacks and data breaches, according to Allianz Global.

By David Jones • Jan. 18, 2023

CircleCI probe links malware placed on engineer’s laptop to larger breach

An unauthorized actor, after stealing a valid SSO session, was able to exfiltrate data, including customer environment variables, tokens and keys.

By David Jones • Jan. 13, 2023

CircleCI working with AWS to identify, revoke keys impacted by security incident

The company assured customers there is no indication that AWS accounts were accessed. CircleCI has scheduled an incident report for Jan. 17.

By David Jones • Jan. 12, 2023

FCC revives push to speed up telecom incident disclosures

Telecom operators are a primary target for threat actors. A change to breach reporting rules is long overdue, one analyst said.

By Matt Kapko • Jan. 10, 2023

Five Guys says breach may have compromised applicant data

The fast food chain said in letters to consumers that it first became aware of the breach in September 2022.

By Ryan Golden • Jan. 10, 2023

CircleCI incident raises further concerns about security of software development

Customers expressed frustration after an apparent breach with few details forced engineers to rotate secrets stored on the CI/CD platform. 

By David Jones • Jan. 9, 2023

What’s at stake for 33M compromised LastPass users?

Cybersecurity professionals criticized the password manager's response to an incident that escalated to alarming levels. “This is about as bad as it gets,” one researcher said.

By Matt Kapko • Jan. 6, 2023

6 security experts on what cyberthreats they expect in 2023

Organizations will keep a close eye on geopolitical tension and supply chain attacks. But at the core, the biggest threats are built on mistakes.

By Naomi Eide , Matt Kapko , David Jones • Jan. 6, 2023

What we know about the LastPass breach (so far)

The blast radius from a breach at LastPass grew from bad to worse during a four-month period. Most of the data held by the password manager is now compromised.

By Matt Kapko • Jan. 5, 2023

Slack employee tokens stolen, GitHub repository breached

The firm said the threat actor downloaded private code repositories, but none had customer data or the company’s code base.   

By David Jones • Jan. 5, 2023

After LastPass hack, only its master passwords remain uncompromised

The password manager warned customers to lookout for brute force attacks, phishing or credential stuffing.

By Matt Kapko • Dec. 27, 2022

Okta’s GitHub source code stolen, company downplays impact

The identity and access management platform has been hit by three major security incidents this year.

By Matt Kapko • Dec. 22, 2022

Remote, third-party workers raise security risks for enterprises: report

A study on behalf of Talon shows third-party contractors are often engaged in risky behavior, using unmanaged devices or high-risk desktop technologies. 

By David Jones • Dec. 21, 2022

CommonSpirit ransomware attack exposed personal information of 623K people, system says

This is the first time that the health system has disclosed the number of people potentially affected by the cyberattack.

By Samantha Liss • Dec. 12, 2022

Rackspace says ransomware disrupted its Hosted Exchange business

The incident could lead to further interruptions and a loss of revenue at its Hosted Exchange business, the company warned. 

By David Jones • Dec. 6, 2022

7 of this year’s biggest cybersecurity stories

From vendor evolution to the long-term effects of high-profile attacks, the cybersecurity industry is rapidly evolving. Take a look at our top stories to understand just how much has changed.

By Naomi Eide • Dec. 5, 2022

LastPass breach fallout spreads to expose customer data

Details are scant but since the breach is a continuation from an attack on the company’s development system, “the keys to the kingdom” might be in the wrong hands, one expert said.

By Matt Kapko • Dec. 1, 2022

Nokia warns 5G security ‘breaches are the rule, not the exception’

A majority of 5G network operators experienced up to six cyber incidents in the past year. Defenses are especially lacking for ransomware and phishing attacks.

By Matt Kapko • Nov. 16, 2022