The federal government is putting pressure on software makers to ensure that their products don’t include SQL injection vulnerabilities, a longtime and ongoing threat that was put in the spotlight with last year’s far-reaching hack of Progress Software’s MOVEit managed file transfer tool. CISA and the FBI this week issued an alert urging tech manufacturer..

The post CISA, FBI Push Software Developers to Eliminate SQL Injection Flaws appeared first on Security Boulevard.

The investigative technique goes back years. Court orders that were issued in 2019 to Apple and Google demanded that the companies hand over information on accounts identified by push tokens linked to alleged supporters of the Islamic State terrorist group.

But the practice was not widely understood until December, when Sen. Ron Wyden (D-Ore.), in a ...

The post Surveillance through Push Notifications appeared first on Security Boulevard.

The LockBit ransomware group is swinging back days after U.S. and UK law enforcement agencies announced they had disrupted the operations of the prolific cybercrime gang.

The post LockBit Ransomware Group Returns After Law Enforcement Operation appeared first on Security Boulevard.

A day after U.S. and international law enforcement agencies disrupted the operations of notorious ransomware group LockBit, the State Department is offering up to $15 million in rewards for information about the gang’s leaders or its affiliates The bounties – up to $10 million for information that leads to the arrest or conviction of the..

The post State Department Puts Up $10 Million for Info on LockBit Leaders appeared first on Security Boulevard.

The post Volt Typhoon Malware: US Critical Infrastructure Breached appeared first on TuxCare.

The post Volt Typhoon Malware: US Critical Infrastructure Breached appeared first on Security Boulevard.

Federal law enforcement kicked Russian state hackers off a botnet comprising at least hundreds of home office and small office routers that had been pulled together by a cybercriminal group and co-opted by the state-sponsored spies. APT28, an high-profile advanced persistent threat group linked to Russia’s GRU military intelligence group, used the network of Ubiquiti..

The post Feds Disrupt Botnet Used by Russian APT28 Hackers appeared first on Security Boulevard.

The U.S. government appears eager to finish off what’s left of the notorious Hive ransomware group, offering a $10 million reward for information that leads to the identification and location of any of the leaders of the gang. The State Department on top of that is offering another $5 million for information that results in..

The post US Offers $10 Million Reward for Info About Hive Ransomware Leaders appeared first on Security Boulevard.

After some stops and starts, U.S. federal agencies have issued guidance to help water and wastewater system operators better respond to cyberattacks, an important step as threat actors are increasingly targeting the sector. The document was put together by the Environmental Protection Agency (EPA), FBI, and Cybersecurity and Infrastructure Security Agency (CISA) and touches on..

The post CISA, FBI, EPA Offer Cybersecurity Guide for Water System Operators appeared first on Security Boulevard.

The post Bitzlato Founder Money Laundering Cryptocurrency Scandal appeared first on TuxCare.

The post Bitzlato Founder Money Laundering Cryptocurrency Scandal appeared first on Security Boulevard.

U.S. law enforcement agencies said they shut down the online operations of the notorious Russia-linked BlackCat ransomware-as-a-service (RaaS) group and developed a decryption tool that will help more than 500 victims regain access to their encrypted data files. However, the threat group – also known as ALPHV – responded soon after with what its operators..

The post DOJ Seizes Ransomware Site as BlackCat Threatens More Attacks appeared first on Security Boulevard.