- Trump administration fires over 400 DHS employees as mass firings continue
February 14, 2025
The Trump administration on Friday moved to fire more than 400 employees at the Department of Homeland Security, the latest effort in a government-wide campaign to dramatically reduce the federal workforce. Officials at DHS said they had fired hundreds of employees across several of its agencies after supervisors identified “non-mission critical personnel in probationary status” within ...
- Active Exploitation of Critical Vulnerability Chain in SimpleHelp
February 14, 2025
SimpleHelp has released security updates to address one critical and two high severity vulnerabilities in SimpleHelp. SimpleHelp is a remote monitoring and management (RMM) tool that allows administrators and service desk technicians to provide remote support and monitor devices on the network. The three vulnerabilities can be used in an exploit chain, which could allow a ...
- China’s Salt Typhoon hackers continue to breach telecom firms despite US sanctions
February 13, 2025
Security researchers say the Chinese government-linked hacking group, Salt Typhoon, is continuing to compromise telecommunications providers, despite the recent sanctions imposed by the U.S. government on the group. In a report shared with TechCrunch, threat intelligence firm Recorded Future said it had observed Salt Typhoon — which the company tracks as “RedMike” — breaching five telecommunications ...
- Storm-2372 conducts device code phishing campaign
February 13, 2025
Microsoft discovered cyberattacks being launched by a group they call Storm-2372, who they assess with medium confidence aligns with Russia’s interests and tradecraft. The attacks appear to have been ongoing since August 2024 and have targeted governments, NGOs, and a wide range of industries in multiple regions. The attacks use a specific phishing technique called “device ...
- Spyware maker caught distributing malicious Android apps for years
February 13, 2025
Italian spyware maker SIO, known to sell its products to government customers, is behind a series of malicious Android apps that masquerade as WhatsApp and other popular apps but steal private data from a target’s device, TechCrunch has exclusively learned. Late last year, a security researcher shared three Android apps with TechCrunch, claiming they were likely ...
- Northern Ireland: Two people charged over alleged New IRA activity after PSNI data breach
February 13, 2025
Two men have appeared in court charged with terrorism offences linked to a major PSNI data breach. Brian Francis Cavlan, 49, from Coronation Park, Aughnacloy and Rory Martin Logan, 43, with an address given as HMP Maghaberry, appeared before court on Thursday. They were arrested on Tuesday as part of an ongoing police investigation into the ...
- Upper Michigan: Cyber attack hits Sault Tribe offices
February 13, 2025
A ransomware attack that shut down gaming at all five Kewadin Casino locations also impacted other offices at an eastern Upper Peninsula tribe. The tribe made the announcement Monday and said it could be a week or more before regular operations can resume. “On Sunday morning, the Sault Ste. Marie Tribe of Chippewa Indians suffered a ...
- Italian government denies Paragon has cut spyware contract
February 12, 2025
Italy denied on Wednesday that Israeli spyware maker Paragon had cut ties with Rome following allegations that the Italian government had illegally used its technology to hack the phones of critics instead of criminals. “Paragon has never suspended the service and has not terminated its contract,” the cabinet undersecretary for intelligence matters, Alfredo Mantovano, told reporters. ...
- Gambling firms are secretly sharing your data with Facebook
February 12, 2025
While you might think you’re hitting the jackpot, whether you’ve consented to it or not, online gambling sites are playing with your data. Users’ data, including details of webpages they visited and buttons they clicked, are being shared with Meta, Facebook’s parent company. The Observer reports that over 150 UK gambling websites have been extracting visitor ...
- Ivanti Releases February 2025 Security Updates
February 12, 2025
Ivanti has released three security advisories in the February Security Update, which addresses vulnerabilities in Ivanti products. In the first advisory, two vulnerabilities were identified in Ivanti Cloud Services Application (CSA). The Ivanti CSA is an Internet appliance that provides secure communication and functionality over the Internet. It falls under the primary product of Ivanti Endpoint ...
- Critical Infrastructure Protection & Resilience North America, March 11-13, 2025, Houston TX
February 12, 2025
Bringing together leading stakeholders from industry, operators, agencies, and governments to collaborate on securing North America See full speaker line-up here: https://ciprna-expo.com/speakers2025/ Register with promo code ‘CSR20’ to save 20% on delegate fees: https://ciprna-expo.com/buy-tickets/ There are 16 critical infrastructure sectors whose assets, systems, and networks, whether physical or virtual, are considered so vital to the United States that their ...