SecurityWeek reports that China-made devices in U.S. networks have increased by 40% year-over-year to nearly 300,000 in February, accounting for 4% of all U.S.-located devices, despite federal government efforts to curtail the utilization of Chinese products in the country, including a recent executive order emphasizing the security risks of China-made cranes, cars, and energy-storage batteries.
Google has warned of ongoing attacks targeting a pair of high-severity zero-day vulnerabilities impacting its Pixel smartphones, including the bootloader information disclosure bug, tracked as CVE-2024-29745, and firmware privilege escalation flaw, tracked as CVE-2024-29748, reports The Hacker News.
CyberScoop reports that Chinese advanced persistent threat group Storm-0558's compromise of email accounts belonging to Commerce Secretary Gina Raimondo and other high-level officials was blamed by the Cyber Safety Review Board on Microsoft's inadequate enterprise security and risk management efforts.
Operational Technology (OT) security is concerned with protecting embedded, purpose-built technologies enabling our industrial processes. You also may have heard “adjacent” buzzwords like Internet of Things (IOT) and Fog (like “cloud” but close to the ground). OT security has significant challenges in terms of cost/size/weight, capability, ability ...
Almost 30 malicious VPN apps with proxyware enabled by a Golang library allowed Android devices to perform as residential proxies that could be leveraged for illicit cyber activity as part of the PROXYLIB operation, reports The Hacker News.
BleepingComputer reports that the U.S. was noted by the Federal Trade Commission to have incurred more than $1.1 billion in losses from impersonation scams last year, a threefold increase from 2020.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.