Security news aggregator

Latest coverage for Admission

The Admission tag covers security disclosures and statements that clarify how breaches or unauthorized access occurred.

133 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Admission is the decision to allow or deny a user, device, application, or service access to a resource. In information security, it usually combines authentication—checking who or what is requesting access—with authorization—determining which actions and resources are permitted. The term can also describe network or application admission controls that assess a device’s identity, configuration, or security state before allowing it to connect.

Weak admission controls can expose systems through stolen credentials, missing multi-factor authentication, misconfigured access-control lists, or roles that grant more privilege than necessary. Effective controls apply least privilege, restrict access by context where appropriate, and review permissions as people, devices, and services change. Recording both successful and rejected admission decisions supports detection and investigation of suspicious access, while periodic testing helps identify bypasses and unsafe defaults.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 133 Filtered view

Oleksii Lytvynenko, a 44-year-old Ukrainian national, admitted to joining the prolific cybercrime group in 2021. Officials said he engaged in cybercrime up until his arrest in Ireland in 2023. The post Conti ransomware group member pleads guilty, faces up to 20 years in prison appeared first on CyberScoop.

Krebs on Security 2 months, 3 weeks ago

‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty

A 24-year-old British national and senior member of the cybercrime group "Scattered Spider" has pleaded guilty to wire fraud conspiracy and aggravated identity theft. Tyler Robert Buchanan admitted his role in a series of text-message phishing attacks in the summer of 2022 that allowed the group to hack into at least a dozen major technology companies and steal tens of millions of dollars worth of cryptocurrency from investors.

Attackers slipped into the process and redirected funds, leaving the company scrambling to recover the cash UK-listed oil and gas outfit Zephyr Energy plc has admitted a cyber incident siphoned off roughly £700,000 after a single payment to a contractor was quietly redirected to an attacker-controlled account.…

Vulns in Dutch football club's systems didn't just expose data – they let outsiders play with accounts, and even lift stadium bans Dutch football giant AFC Ajax has admitted to a data breach after an attacker gained access to its internal systems, in an incident that looks less like a stray pass and more like the gates left wide open.…

Epic v. Health Gorilla Lawsuit Spurs New Claims Over Alleged Patient Records MisuseA telehealth firm has admitted that it gained access to patient medical records via a health information exchange network under the guise of treatment purposes when it actually provided the records to law firms. But the legal dispute involving Epic and Health Gorilla is growing more complicated.

Contact details were accessed in an intrusion that went undetected for months, the blogging outfit says Newsletter platform Substack has admitted that an intruder swiped user contact details months before the company noticed, forcing it to warn writers and readers that their email addresses and other account metadata were accessed without permission.…

The Hacker News 5 months, 3 weeks ago

Exposure Assessment Platforms Signal a Shift in Focus

Gartner® doesn’t create new categories lightly. Generally speaking, a new acronym only emerges when the industry's collective "to-do list" has become mathematically impossible to complete. And so it seems that the introduction of the Exposure Assessment Platforms (EAP) category is a formal admission that traditional Vulnerability Management (VM) is no longer a viable way to secure a modern

Loading more headlines...