Dutch grocery giant Ahold Delhaize revealed last week that the ransomware attack targeting its systems last year resulted in a data breach impacting more than 2.2 million individuals. The cybersecurity incident came to light in November 2024, when several US pharmacies and supermarket chains owned by Ahold Delhaize reported suffering network issues. The incident impacted Giant Food pharmacies and Hannaford supermarkets, as well as Food Lion, The Giant Company, and Stop & Shop. READ MORE...
On my daily rounds, I encountered a phishing attempt that used a not completely unusual, yet clever delivery method. What began as a seemingly routine DocuSign notification turned into a multi-layered deception involving Webflow, a shady redirect, and a legitimate Google login page. Webflow is a visual website builder that allows designers and developers to create custom, responsive websites. READ MORE...
Ahacker working on behalf of the Sinaloa drug cartel infiltrated cameras and phones to track an FBI official in Mexico investigating the drug lord El Chapo, then used data from that surveillance to kill and intimidate potential sources and witnesses the agent was meeting with, a Justice Department watchdog report revealed. An FBI case agent learned about the hacker from someone affiliated with the cartel in 2018, according to the inspector general report released Friday. READ MORE...
An Amnesty International investigation uncovered 53 scamming compounds in Cambodia where people, including children and human trafficking victims, were forced to work and tortured or threatened with violence if they didn't comply. Those forced into criminal activity in the compounds by gangs carried out "pig butchering" schemes and other online scams, such as using fraudulent websites to steal information or sell products that weren't delivered. READ MORE...
Multiple vulnerabilities in Airoha Bluetooth chips could be exploited to take over headphone and earbud products from multiple vendors, IT security firm ERNW warns. Airoha provides Bluetooth system on a chip (SoC) products and reference designs and implementations for them, and has become one of the largest suppliers for headphone and earbud vendors, including Beyerdynamic, Marshall, and Sony. READ MORE...
Three out of four companies have building management systems vulnerable to hacking or cyberattack, according to a new research paper by Claroty, a cyber-physical systems protection company. More than half of affected organizations had systems insecurely connected to the internet with known exploited vulnerabilities that were linked to ransomware, it said. The report studied over 467,000 building management systems across 500 organizations. READ MORE...
Researchers have figured out how to simultaneously spy on tens of thousands of smart tractors around the world, and even take full control over any of them. Smart farming is on the rise, in an effort to enhance farming practices by improving efficiency, reducing labor costs, and optimizing resources. Tractors are thus increasingly equipped with advanced technologies like GPS, sensors, and artificial intelligence, which enable them to operate autonomously in some cases, or be controlled remotely. READ MORE...
Vulnerabilities affecting a Bluetooth chipset present in more than two dozen audio devices from ten vendors can be exploited for eavesdropping or stealing sensitive information. Researchers confirmed that 29 devices from Beyerdynamic, Bose, Sony, Marshall, Jabra, JBL, Jlab, EarisMax, MoerLabs, and Teufel are affected. The list of impacted products includes speakers, earbuds, headphones, and wireless microphones. READ MORE...