Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

28 headlines in this view

Refine the feed

Search across headline titles and summaries.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 28 Filtered view

Threat actors associated with the DragonForce ransomware have been observed using a custom Go-based remote access trojan (RAT) called Backdoor.Turn to conceal command-and-control (C2) traffic inside Microsoft Teams relay infrastructure

Series C Funding Round Focuses on Secrets Remediation, Agent Governance ExpansionBacked by a $50 million Series C, GitGuardian plans to accelerate U.S. expansion and enhance secrets detection remediation and non-human identity controls as AI agents multiply across enterprises, increasing exposure to credential abuse and lateral movement.

Bank Info Security 7 months, 3 weeks ago

Spyware Abuse of Signal and WhatsApp Targeting US Officials

Cyber Advisory Cites Abuse of Linked Devices to Monitor Sensitive CommunicationsThe U.S cyber defense agency issued an alert outlining how commercial spyware and state-aligned groups are abusing messaging-app features through malicious QR-based linking and zero-click exploitation to monitor U.S. government, military and other high-profile figures.

Bank Info Security 10 months, 2 weeks ago

Tiny US Agency to Enforce Substance Abuse Regs - and HIPAA

HHS Shifts 42 CFR Enforcement Duties to Office of Civil Rights Amid Massive ReorgThe U.S. Department of Health and Human Services has put its Office for Civil Rights in charge of investigating and penalizing organizations that breach the confidentiality of substance abuse disorder records. Some fear the agency doesn't have the bandwidth to enforce both HIPAA and 42 CFR Part 2.

Bank Info Security 1 year, 5 months ago

Trump Frees Silk Road Founder From Life in Federal Prison

President Fulfills Campaign Promise to Pardon 'Dread Pirate Roberts,' Blames DOJ AbuseOn his second day in office, U.S. President Donald Trump pardoned Ross Ulbricht, founder of Silk Road, an online marketplace tied to over $200 million in illegal bitcoin transactions. Ulbricht has been in federal prison since 2015, sentenced to life with no possibility of parole.

Bank Info Security 1 year, 6 months ago

Ransomware Group Hits Substance Abuse Treatment Service

American Addiction Centers Says 422,424 Individuals' Private Details ExposedSubstance abuse treatment company American Addiction Centers is warning nearly half a million patients that ransomware-wielding attackers stole their personal details, including names and Social Security numbers. The Rhysida ransomware operation claimed to perpetrate the attack.

Microsoft and the U.S. Department of Justice (DoJ) on Thursday announced the seizure of 107 internet domains used by state-sponsored threat actors with ties to Russia to facilitate computer fraud and abuse in the country

Bank Info Security 1 year, 9 months ago

ISMG Editors: Can Microsoft Regain Trust in Its Security?

Also: CrowdStrike Grilled by Congress; Coalition Against Spyware Abuse Is GrowingIn the latest weekly update, ISMG editors discussed Microsoft's major cybersecurity overhaul in the wake of some high-profile breaches, the latest developments from CrowdStrike's global outage hearing and the expanding U.S.-led coalition against spyware abuse in the EU.

Bank Info Security 1 year, 10 months ago

US Law Enforcement Cracks Down on AI-Led Child Abuse Content

Police, Prosecutors Say CSAM Generated by AI Is the Same as Traditional CSAMU.S. law enforcement is cracking down on users who use artificial intelligence to generate child sexual abuse material, stating there is no difference between material made by a computer and material from real life. "Put simply, CSAM generated by AI is still CSAM," said a U.S. attorney.

Bank Info Security 2 years, 3 months ago

Feds Seek Secure-by-Design Armageddon for SQL Injection Bugs

Hackers Continue to Abuse Easily Preventable Vulnerability to Cause Massive DamageWhat will it take to rid the world of SQL injection vulnerabilities, which remain too easily exploitable by attackers for ransacking databases and worse, despite having been classified as "unforgivable" for nearly two decades? U.S. government cybersecurity officials have thoughts.

Krebs on Security 4 years, 1 month ago

What Counts as “Good Faith Security Research?”

The U.S. Department of Justice (DOJ) recently revised its policy on charging violations of the Computer Fraud and Abuse Act (CFAA), a 1986 law that remains the primary statute by which federal prosecutors pursue cybercrime cases. The new guidelines state that prosecutors should avoid charging security researchers who operate in “good faith” when finding and reporting vulnerabilities. But legal experts continue to advise researchers to proceed with caution, noting the new guidelines can’t be used as a defense in court, nor are they any kind of shield against civil prosecution.

Loading more headlines...