Кибербезопасность
HHS announces voluntary cybersecurity goals for healthcare
The U.S. Department of Health and Human Services has released a set of voluntary cybersecurity performance goals aimed at bolstering protections in the healthcare sector. These goals address the rising tide of cyberattacks targeting patient data and critical infrastructure. Developed in collaboration with federal partners, they provide a framework for organizations to enhance their defenses.
Salesforce refuses extortion demand over 1 billion records breach
Salesforce has announced it will not pay a ransom demanded by a cybercrime group claiming to have stolen around 1 billion records from its customers. The group, known as Scattered LAPSUS$ Hunters, set a deadline of Friday for payment to avoid data leaks. This stance comes amid rising global ransomware incidents and expert warnings against funding criminals.
Kali Linux 2025.3 releases Gemini CLI for automated pentesting
7 октября 2025 Сообщено ИИ
The latest Kali Linux update, version 2025.3, introduces Gemini CLI, an open-source tool that integrates Google's Gemini AI into the terminal. This innovation automates penetration testing tasks like reconnaissance and vulnerability scanning using natural language prompts. Security professionals can now streamline workflows while maintaining control over assessments.
Microsoft warns of payroll pirate scam targeting university employees
11 октября 2025 Сообщено ИИ
Microsoft has alerted organizations to a phishing campaign dubbed 'Payroll Pirate' that compromises Workday accounts to divert employee paychecks. The scam, active since March 2025, has affected accounts at multiple universities. Attackers use sophisticated tactics to bypass multi-factor authentication and hide their changes.
Microsoft announces premium 365 features and security store
4 октября 2025 Сообщено ИИ
Microsoft has unveiled Microsoft 365 Premium, a new subscription tier with advanced AI capabilities, alongside the launch of the Microsoft Security Store, an online marketplace for security solutions. These announcements aim to enhance productivity and cybersecurity for businesses. The moves come as part of Microsoft's ongoing push into AI-integrated services.
Power plant in Karlskrona hit by cyberattack
4 октября 2025 Сообщено ИИ
A combined heat and power plant in Karlskrona, known as Mältan, suffered a cyberattack that disrupted operations overnight. Police are investigating the incident as a suspected IT crime. The plant supplies district heating and electricity to the area.
FDD Issues Overnight Brief on September 15, 2025
The Foundation for Defense of Democracies (FDD) released its overnight brief on September 15, 2025, summarizing key global security developments, including updates on Middle East conflicts, cyber threats, and international diplomacy. The brief provides analysis on escalating tensions in the region and potential implications for U.S. foreign policy. It aims to inform policymakers and the public on emerging threats and strategic responses.
UK tribunal orders Apple to hand over iCloud data
4 октября 2025 Сообщено ИИ
A UK tribunal has ruled that Apple must provide access to iCloud data for law enforcement purposes, prompting strong disapproval from the company. The decision revives concerns over encryption backdoors and user privacy in the digital age. Apple has described the order as a significant setback for data protection.
Cl0p ransomware group claims breach of Oracle E-Business Suite
3 октября 2025 Сообщено ИИ
The Cl0p ransomware group has claimed responsibility for hacking Oracle's E-Business Suite, asserting that it stole sensitive data from companies using the application. The hackers are now notifying affected victims and demanding ransoms to prevent data leaks. Oracle has not yet confirmed the breach.