Hack DHS: Homeland Security's first bug bounty turns up 122 vulnerabilities

The US Department of Homeland Security (DHS)’s first bug bounty with external researchers called “Hack DHS” helped discover 122 vulnerabilities.  DHS announced the Hack DHS bounty in December and in…

Lapsus$ Hackers Target T-Mobile

No government and customer data was accessed. T-Mobile confirmed that the extortion group Lapsus$ gains access to their system “several weeks ago”. The telecom giant responded to a report by…

Brazil sees improvement in data breaches

Written by Angelica Mari, Contributing Editor Angelica Mari Contributing Editor Angelica Mari is a Brazil-based technology journalist. She started working at age 15 as a computer instructor and started writing…

ATT&CK Goes to v11

Crooks Spoofing Credit Unions to Steal Funds and Login Credentials

Email security provider Avanan revealed in a Thursday report that a new phishing campaign exploits local credit unions to steal money and data. According to Avanan’s research, phishing emails are…

Researcher Spotlight: Liz Waddell, CTIR practice lead

How this Talos team member’s love of true crime led to a life in cybersecurity  By Jon Munshaw.  Liz Waddell is usually there on someone’s worst day of their professional…

This sneaky phishing attack tries to steal your Facebook password

A sneaky phishing campaign aims to steal passwords from Facebook users – including administrators of company Facebook Pages.  Detailed by cybersecurity researchers at Abnormal Security, the attack begins with a…

FBI: This ransomware written in the Rust programming language has hit at least 60 targets

The BlackCat ransomware gang, known for being the first to use ransomware written in the Rust programming language, has compromised at least 60 organizations worldwide since March 2022, the Federal…

Deep Dive into the Elephant Framework – A New Cyber Threat in Ukraine

At the beginning of the invasion of Ukraine, we released a security advisory with recommendations based on different risk tiers. Since then, our Threat Intelligence (TI) and Managed Detection and…

Spanish Ombudsman to Probe Pegasus Spyware Claims

Allegations are government snooped on Catalan politicians