Автор: Kristina Beek, Associate Editor, Dark Reading

Though Windows, iOS, and macOS users won’t need to make any changes, Android users are advised to remove their Defender VPN profiles.

The CHC remains operational, but a host of personal data is now in the hands of a "skilled cybercriminal," it said.

No ransomware groups have yet to claim responsibility for either attack, and both institutions have yet to reveal what may have been stolen.

VulnCheck initially disclosed the critical command-injection vulnerability (CVE-2024-40891) six months ago, but Zyxel has yet to mention its existence or offer users a patch to mitigate threats.

The ransomware group provides everything an affiliate could want to breach and attack victims, including a quality controlled recruitment system to engage even more criminals.

In their discovery, researchers found 31 PDF files linking to these phishing websites, none of which have been yet submitted to VirusTotal.

The Apple iOS 18.3 update fixes 28 other vulnerabilities identified by the tech company, though there is little information on them.

CISOs are planning to adjust their budgets this year to reflect their growing concerns for cybersecurity preparedness in the event of a cyberattack.

The bug has been given a 9.9 CVSS score, and could allow authenticated threat actors to escalate their privileges to admin-level if exploited.

The first team to successfully hack the electric vehicle maker’s charger won $50,000 for their ingenuity.