NSO Group announced Friedman’s appointment on Sunday, saying that NSO’s three founders no longer have any stake in the firm. | Continue reading
Emergency blackouts lasting up to 12 hours were introduced following the attack, with Kyiv and other regions facing widespread internet and communication outages, according to internet watchdog NetBlocks. | Continue reading
An expired 2015 law that gives companies liability protection when they share cyberthreat information with the federal government would be renewed through January 30 under Senate legislation to end the government shutdown. | Continue reading
The latest model for improving U.S. Cyber Command is circulating at the Pentagon. Some of the initiatives will spill into the next decade — an approach that is sure to create friction on Capitol Hill and beyond. | Continue reading
A spokesperson for the CBO confirmed the security incident and said the agency has taken immediate action to contain it while also implementing “additional monitoring and new security controls to further protect the agency’s systems going forward.” | Continue reading
Researchers spotted a 9-month-long campaign involving previously undiscovered spyware they call LANDFALL, which leveraged a zero-day bug in Samsung Galaxy phones. | Continue reading
The ed tech firm also allegedly failed to monitor its systems for suspicious activity and did not separately secure backup and active databases. | Continue reading
The state government of Nevada did not pay a ransom to cybercriminals who took down critical government systems in August, the state said in a post-mortem review of the attack. | Continue reading
Privacy and civil liberties advocates have decried the proposed expansion for how it will allegedly facilitate mass surveillance and large scale data privacy violations. | Continue reading
A prominent Italian communications executive and political adviser has revealed that he was targeted with Paragon spyware, making him the fifth Italian to come forward in a scandal that has rocked the Italian government. | Continue reading
The Russian state-backed hacking unit Sandworm has been targeting Ukraine's grain industry with wiper malware amid Moscow's ongoing efforts to undermine Kyiv's wartime economy. | Continue reading
Five others were handed life sentences, while nine of the accused were handed prison sentences of three to 20 years. | Continue reading
Japanese media giant Nikkei said hackers gained unauthorized access to its internal Slack communication system, potentially exposing data linked to more than 17,000 people. | Continue reading
British retailer Marks & Spencer (M&S) said a cyberattack earlier this year was an "extraordinary" moment for the company, nearly wiping out profits. | Continue reading
Rep. Jim Himes said things have changed for House Democrats when it comes to their potential to back legislation to renew Section 702 of the Foreign Intelligence Surveillance Act. | Continue reading
The cross-border investigation led to more than 60 house searches and 18 arrests across Germany, the U.S., Canada, Singapore, Luxembourg, Cyprus, Spain, Italy and the Netherlands. | Continue reading
Researchers at Google said Wednesday that they recently observed malware "that employed AI capabilities mid-execution to dynamically alter the malware's behavior." | Continue reading
A cyber-espionage operation installed lightweight virtual machines to evade detection, researchers said, in the latest sign of Russia-linked hackers adapting their tactics. | Continue reading
As several high-profile companies responded to cyberattacks, Polish Digital Affairs Minister Krzysztof Gawkowski said incidents involving Poland’s public and private infrastructure are becoming “commonplace.” | Continue reading
A spokesperson for the European Commission told the journalists that officials are “concerned with the trade of geolocation data from citizens and Commission officials.“ | Continue reading
An IT company, a financial institution and eight men accused of aiding cybercrime and IT worker scams are now on the U.S. government's list of sanctioned North Korean entities. | Continue reading
A multinational operation in late October targeted a network that “created dozens of fake cryptocurrency investment platforms that looked like legitimate websites and promised high returns,” but simply took the money and laundered it, Eurojust said. | Continue reading
Sen. Bill Cassidy (R-LA) on Tuesday introduced legislation that would add new privacy protections to health data gathered by smartwatches, health apps and other new technologies. | Continue reading
Hackers pilfered millions of dollars worth of cryptocurrency on Monday from the decentralized finance protocol Balancer. | Continue reading
Questioning how Flock Safety protects sensitive user accounts, Sen. Ron Wyden and Rep. Raja Krishnamoorthi want the FTC to investigate the police surveillance tech provider. | Continue reading
Cybersecurity researchers have been tracking thieves who are using their deep knowledge of trucking and transportation technology to steal cargo. | Continue reading
SK Telecom said the sharp decline stemmed from compensation and recovery costs following a large-scale cyberattack disclosed in April that exposed the personal data of about 27 million customers. | Continue reading
The company said the breach exposed contact information and inquiry details from users of its online stores — Askul, Lohaco and Soloel Arena — as well as supplier data stored on its internal servers. | Continue reading
The U.K.'s water suppliers have reported five cyberattacks since January 2024, according to information reviewed by Recorded Future News. The incidents did not affect the safety of water supplies, but they highlight an increasing threat. | Continue reading
The University of Pennsylvania is investigating an email that was sent out to thousands of current and former students on Friday afternoon containing offensive language and threats of a data breach. | Continue reading
An FCC ruling issued days before Donald Trump took office was an "ineffective response" to the Salt Typhoon intrusions into U.S. telecom networks, the agency's new leadership said in announcing plans to rescind it. | Continue reading
In a report shared with Recorded Future News, Unit 42 attributed the targeting of Cisco ASA devices to Storm-1849 — a China-based threat group that Cisco previously said has been attacking the tools since 2024. | Continue reading
The Consumer Financial Protection Bureau has ended a probe into how Meta obtains and uses consumers’ financial data for targeted advertising. | Continue reading
Streaming service Sling TV will pay a $530,000 civil penalty to the state of California and make changes to how customers can opt-out of the sale of their data. | Continue reading
Russia's Interior Ministry posted a video of raids on suspected developers of the Meduza Stealer malware, which has been sold to cybercriminals since 2023. | Continue reading
Ukrainian national Oleksii Oleksiyovych Lytvynenko faces charges in the U.S. related to his alleged involvement with the Conti cybercrime operation, which attacked hundreds of organizations globally before disbanding in 2022. | Continue reading
Earlier in its European Council presidency, Denmark had brought back a draft law which would have required scanning of electronic messages, sparking an intense backlash. | Continue reading
A cyber-espionage operation attributed to China used the PlugX malware against Belgian and Hungarian diplomatic entities over the last two months, according to a new report. | Continue reading
The comments come roughly a month after the expiration of the 2015 Cybersecurity Information Sharing Act, which incentivized private entities to share threat data with the government with antitrust and liability safeguards. | Continue reading
Available on GitHub and promoted to professional penetration testers, the tool AdaptixC2 has been used to spread loader malware associated with Russian ransomware groups, researchers said. | Continue reading
The move comes after Meta announced that starting on December 16 it will target ads and customize content based on users’ engagement with chatbots. | Continue reading
Canada's cyber agency and the RCMP say they have investigated multiple cases in which unspecified hacktivists compromised industrial control systems. | Continue reading
U.K. clothing retailer Next reported that "competitor disruption” was partly responsible for an an increase in profits earlier this year, after rival M&S faced a cyber incident. | Continue reading
The former executive sold the trade secrets to a Russian cyber-tools broker that “publicly advertises itself as a reseller of cyber exploits to various customers, including the Russian government,” according to the Department of Justice. | Continue reading
Officers from the Army and Air Force are under consideration to lead the NSA, and moves could be happening soon for other top jobs at the spy agency, sources tell Recorded Future News. | Continue reading
The government contractor Conduent informed multiple states this week that a cybersecurity incident in January exposed the information of more than 10 million people. | Continue reading
The attack, which is the second time the group has hit Russia’s agro industrial firms in recent months, coincided with preparations for the Russian agriculture forum scheduled for the end of the month in Moscow. | Continue reading
Following scrutiny over the safety of the technology for kids and teenagers, Character.AI on Wednesday said that as of next month people under 18 will not be able to use its chatbots. | Continue reading