Uncategorized Archives

On Dec. 27, VulnCheck detailed the vulnerability, tracked as CVE-2024-12856, wherein an attacker can leverage default credentials in Four-Faith F3x24 and F3x36 routers to remotely inject commands into the operating system. (Getty Images)

Thousands of industrial routers vulnerable to command injection flaw

The vulnerability, found in versions of Four-Faith routers, appears to have been exploited in the wild and has been connected to attempted infections of Mirai.

Dec 30, 2024 By Derek B. Johnson

The Department of Justice seal is seen on a lectern ahead of a press conference announcing efforts against computer hacking and extortion at the Department of Justice in Washington, DC on November 28, 2018. (Photo by MANDEL NGAN/AFP via Getty Images)

Justice Department unveils charges against alleged LockBit developer

The U.S. Department of Justice revealed charges Friday against Rostislav Panev, a dual Russian and Israeli national, for his alleged role as a developer in the notorious…

Dec 20, 2024 By Greg Otto

dark web, hacker, transaction — (Getty Images)

Exclusive: Feds are probing 764, The Com’s use of cybercriminal tactics to carry out violent crimes

Documents reviewed by CyberScoop show that law enforcement is tracking these violent criminal groups’ use of malicious cyber tools to cause harm to children.

Dec 5, 2024 By Greg Otto Jana Winter

How a Russian man’s harrowing tale shows the physical dangers of spyware

Citizen Lab and a Russian exile-led human rights group investigated spyware implanted on his phone after he was detained, beaten up and released.

Dec 5, 2024 By Tim Starks

Microsoft launches ‘Zero Day Quest’ competition to enhance cloud and AI security

The tech giant is upping the bounties attached to several popular systems.

Nov 19, 2024 By Greg Otto

CyberScoop canvassed a wide range of officials, experts and observers about the post-election scenarios they are most concerned about and why. (Source: PM Images via Getty Images)

The post-election threats you need to prepare for, according to experts

The pre-election period was busy for foreign and domestic actors looking to undermine confidence in U.S. elections. Election observers are expecting an even bumpier ride between election…

Nov 4, 2024 By Derek B. Johnson

U.S. President Joe Biden departs after speaking to the media on July 1. (Photo by Andrew Harnik/Getty Images)

Biden administration nears completion of second cybersecurity executive order with plethora of agenda items

Federal agencies would have to address everything from AI to cloud security to access management, sources told CyberScoop.

Oct 31, 2024 By Tim Starks

The cybersecurity executive Kevin Mandia speaks against a backdrop depicting a stylized version of the U.S. Capitol.

Exclusive: Kevin Mandia joins SpecterOps as chair of the board

The Mandiant founder and Google Cloud adviser tells CyberScoop that he sees a lot of similarities between SpecterOps and the early days of his cybersecurity powerhouse company.

Oct 1, 2024 By Greg Otto

The flag of Iran is seen in front of the building of the International Atomic Energy Agency (IAEA) on May 24, 2021 in Vienna, Austria. (Photo by Michael Gruber/Getty Images)

Krebs: Iranian outreach to Biden campaign was ‘late breaking’ news to U.S. gov

The former CISA director said Iran's operation was "not something" the government had "been tracking for months."

Sep 19, 2024 By AJ Vicens

SonicWall pushes patch for critical vulnerability in SonicOS platform

The flaw can be exploited to gain unauthorized access, and in certain conditions, cause the company’s firewalls to crash.

Aug 26, 2024 By Greg Otto