Similar Posts
UK Domain Leader Nominet Reports Cybersecurity Breach Tied to Ivanti VPN Vulnerabilities
Nominet, the U.K. domain registry managing .co.uk domains, is dealing with a significant cybersecurity incident linked to a vulnerability in Ivanti’s VPN software. Hackers accessed Nominet’s systems via this third-party VPN, exploiting a zero-day vulnerability before Nominet could implement security patches. Although Ivanti has not disclosed the number of affected customers, cybersecurity experts report widespread compromises among various organizations. Nominet has restricted VPN access and is investigating the incident while assuring customers that there is currently no evidence of data breaches. They are monitoring their systems and updating stakeholders throughout the investigation.
Ukraine’s Defense Tech Revolution: Europe’s Strategic Focus Three Years On
Today marks the third anniversary of Russia’s invasion of Ukraine, showcasing the resilience and innovation of the Ukrainian people despite ongoing conflict. Ukraine’s defense initiatives, such as BRAVE1, aim to enhance military capabilities and foster technological advancement, particularly in AI-enabled drone technology. European investment in defense startups has surged, with over $1 billion allocated in 2024, highlighting a shift towards military innovation. Startups like Technary and Dropla are developing solutions for drone reporting and de-mining. As Europe reassesses its security, collaboration with Ukraine’s tech sector will be vital for future preparedness against threats.
Cloudflare’s VPN App Among Six Popular Apps Removed from Indian App Stores
In a recent crackdown on virtual private network (VPN) applications, over six VPN apps, including the popular Cloudflare 1.1.1.1, have been removed from India’s Apple App Store and Google Play Store due to government intervention. This significant action highlights the increasing regulatory scrutiny in the Indian digital landscape. Government Intervention in VPN Apps The Indian…
Grubhub Data Breach: Impact on Customers and Drivers Revealed
Grubhub has confirmed a significant data breach affecting the personal information of customers and drivers. Unauthorized access occurred through a compromised third-party service provider, prompting Grubhub to launch an investigation and terminate the provider’s access. The breach exposed names, email addresses, phone numbers, partial payment card information, and hashed passwords, while bank account details and Social Security numbers remained secure. Grubhub’s response underscores the need for enhanced data security in the food delivery industry. The company has not disclosed the number of affected individuals or the breach’s timing, and inquiries about further details remain unanswered.
US Justice Department Unveils Cybercrime Forum Impacting 17 Million Americans
An international coalition of law enforcement agencies has dismantled two major hacking forums, Cracked and Nulled, in a significant anti-cybercrime operation involving multiple countries. Announced by Europol and Germany’s BKA, the takedown revealed that Cracked had over four million users and generated around $4 million in revenue since 2018, facilitating cyberstalking and sextortion. Nulled, launched in 2016, had five million users and produced over 43 million posts, advertising sensitive personal data. The U.S. Department of Justice has charged Lucas Sohn, an administrator of Nulled, with multiple offenses, marking a critical step in combatting cybercrime.
Major Breach of Gravy Analytics’ Location Data Poses Privacy Risks for Millions
A data breach involving Gravy Analytics, a major location data broker, has compromised the privacy of millions globally by exposing sensitive location data from various smartphone apps. A hacker leaked a significant amount of this data on a Russian cybercrime forum, claiming to have stolen several terabytes of information. Unacast, Gravy Analytics’ parent company, notified data protection authorities in Norway and the UK about the breach, which was traced back to a misappropriated access key. Privacy advocates warn that the leaked data could enable the deanonymization of individuals, posing risks, especially for vulnerable groups. The FTC recently prohibited Gravy Analytics from collecting location data without consent.