hacking
Why the Belarus Railways Hack Marks a First for Ransomware
The politically motivated attack represents a new frontier for hacktivists—and won’t be the last of its kind.
Crypto.com Finally Admits It Lost $30 Million in a Hack
Plus: Scammer arrests, the NSA plays defense, and more of the week's top security news.
‘Zero-Click’ Zoom Vulnerabilities Could Have Exposed Calls
The flaws are now fixed, but they speak to the growing concerns around interactionless attacks.
Destructive Hacks Against Ukraine Echo Its Last Cyberwar
A data wiper posing as ransomware bears a discomfiting resemblance to the earlier wave of Russian cyberattacks that ended with NotPetya.
Russia Takes Down REvil Hackers—as Ukraine Tensions Mount
Over a dozen alleged members of the notorious ransomware group have been arrested, but the Kremlin's critics are wary of the underlying motivation.
North Korean Hackers Stole Nearly $400M in Crypto Last Year
The regime had a “banner year,” thanks to skyrocketing cryptocurrency values and a new generation of vulnerable startups.
The FTC Wants Companies to Find Log4j Fast. It Won't Be Easy
The critical vulnerability is buried among endless open source code, and many cyber experts are stumped.
Hackers Are Exploiting a Flaw Microsoft Fixed 9 Years Ago
Unless you go out of your way to install the patch, your system could be exposed.
The Worst Hacks of 2021
It was a year of ransomware, surveillance, data breaches, and yes, more ransomware.
Buckle Up for More Log4j Madness
Plus: An alleged spy, a ransomware arrest, and more of the week's top security news.
The Next Wave of Log4J Attacks Will Be Brutal
So far, Log4Shell has resulted mostly in cryptomining and a little espionage. The really bad stuff is just around the corner.
Google Warns That NSO Hacking Is On Par With Elite Spy Groups
ForcedEntry is “one of the most technically sophisticated exploits” Project Zero security researchers have ever seen.
The Log4J Vulnerability Will Haunt the Internet for Years
Hundreds of millions of devices are likely affected.
US Wins Appeal to Extradite Julian Assange
Plus: Bluetooth security, a Brazil hack, and more of the week's top security news.
‘The Internet Is on Fire’
A vulnerability in the Log4j logging framework has security teams scrambling to put in a fix.
A Year After SolarWinds, Supply Chain Threats Still Loom
The Russia-led campaign was a wake-up call to the industry, but there's no one solution to the threat.
Microsoft Seizes Domains Used by a Chinese Hacking Group
The move delivers a blow to the hackers behind sophisticated attacks on government agencies, think tanks, and other organizations.
A Planned Parenthood LA Hack Affects 400,000 Patients
Plus: A Ubiquiti hack revelation, predictive policing, and more of the week's top security news.
NSO Group Spyware Hits at Least 9 US State Department Phones
The incident lays bare how hollow the surveillance company’s reassurances about the limits of its hacking tools have always been.
A Software Bug Let Hackers Drain $31M From a Crypto Service
An attacker exploited a vulnerability in MonoX Finance's smart contract to inflate the price of its digital token and then cash out.
A Bunch of Malicious Google Play Apps Stole User Banking Info
Using tricks to sidestep the app store’s restrictions, malware operators pillaged passwords, keystrokes, and other data.
.jpg)
A Hacking Spree Against Iran Spills Out Into the Real World
Hackers have targeted the country's trains, gas stations, and airline infrastructure, as cyber conflict with Israel continues to escalate.
What Is a Watering Hole Attack?
It's a technique that can hit thousands of victims—through no fault of their own.
The Pentagon Has Set Up a UFO Office
Plus: An Apple lawsuit, a GoDaddy breach, and more of the week's top security news.