Justice Dept. charges Russian hacker behind the Dridex malware

Justice Dept. charges Russian hacker behind the Dridex malware

U.S. prosecutors have brought computer hacking and fraud charges against a Russian citizen, Maksim Yakubets, who is accused of developing and distributing Dridex, a notorious banking malware used to allegedly steal more than $100 million from hundreds of banks over a multi-year operation. Per the unsealed 10-count indictment, Yakubets is Read more…

Most of the largest US voting districts are vulnerable to email spoofing

Most of the largest US voting districts are vulnerable to email spoofing

Only 5% of the largest voting counties in the U.S. are protected against email impersonation and phishing attacks, seen as a key attack method by hackers who officials say want to disrupt the upcoming presidential election. The findings come less than a year before millions of Americans are set to Read more…

GitGuardian raises $12M to help developers write more secure code and ‘fix’GitHub leaks

GitGuardian raises $12M to help developers write more secure code and ‘fix’GitHub leaks

Data breaches that could cause millions of dollars in potential damages have been the bane of the life of many a company. What’s required is a great deal of real-time monitoring. The problem is that this world has become incredibly complex. A SANS Institute survey found half of company data Read more…

Top Israeli VC talks cybersecurity, diversity and ‘no go’ investments

Top Israeli VC talks cybersecurity, diversity and ‘no go’ investments

It’s no secret that Israel is second only to the U.S. for its leading cybersecurity acumen, talent, startups and successful exits. Israel is a powerhouse in both offensive and defensive cyber operations, with cybersecurity giants CyberArk, Check Point, Radware, and Illusive Networks all founded in the country in recent years. Read more…

A bug in Microsoft’s login system put users at risk of account hijacks

A bug in Microsoft’s login system put users at risk of account hijacks

Microsoft has fixed a vulnerability in its login system, which security researchers say could have been used to trick unsuspecting victims into giving over complete access to their online accounts. The bug allowed attackers to quietly steal account tokens, which websites and apps use to grant users access to their Read more…

Mixcloud data breach exposes over 20 million user records

Mixcloud data breach exposes over 20 million user records

A data breach at Mixcloud, a U.K.-based audio streaming platform, has left more than 20 million user accounts exposed after the data was put on sale on the dark web. The data breach happened earlier in November, according to a dark web seller who supplied a portion of the data Read more…

Jeanette Manfra, senior DHS cybersecurity official, to leave government

Jeanette Manfra, senior DHS cybersecurity official, to leave government

Jeanette Manfra, one of the most senior and experienced U.S. cybersecurity officials, is leaving government after more than a decade in the public sector. Manfra, who served as assistant director for cybersecurity at the Cybersecurity and Infrastructure Security Agency (CISA), will join the private sector in the New Year. CISA Read more…

Macy’s said hackers stole customer credit cards — again

Macy’s said hackers stole customer credit cards — again

For the second time in as many years, Macy’s customers have been hit by a data breach involving countless numbers of credit cards. In a filing with the California attorney general, the retail giant said hackers siphoned off customers’ names, addresses, and phone numbers, but also credit card numbers, card Read more…

Cybersecurity startup CyCognito raises $23M in Series A funding

Cybersecurity startup CyCognito raises $23M in Series A funding

CyCognito, a cybersecurity platform that aims to give visibility into a company’s security weak spots, has raised $23 million in its Series A round of funding. Lightspeed Partners led the fundraise, putting in $18 million, which included a personal investment from Lightspeed venture partner and former Microsoft chairperson John Thompson, Read more…

‘Magic: The Gathering’ game maker exposed 452,000 players’ account data

‘Magic: The Gathering’ game maker exposed 452,000 players’ account data

The maker of Magic: The Gathering has confirmed that a security lapse exposed the data on hundreds of thousands of game players. The game’s developer, the Washington-based Wizards of the Coast, left a database backup file in a public Amazon Web Services storage bucket. The database file contained user account Read more…