Security Architecture

T-Mobile has had the source code for various projects stolen in various breaches by the Lapsus$ hacking group last month.

Trend Micro Monday relaunched its flagship software-as-a-service offering as a unified security platform, making it the latest vendor to emphasize the complexity of competing consoles in the security operations center.

By combining the cloud with modern backup and recovery technologies, companies can potentially bring an end to ransomware.

SecurityWeek reports that Facebook parent firm Meta has expanded its bug bounty program to include rewards for flaws that could be abuse to evade Facebook integrity checks, including two-factor authentication for some business manager accounts, as well as the platform's feature restrictions and application verification processes.

The Hacker News reports that SonarSource has identified a high-severity vulnerability in the open-source RainLoop web-based email client which could be leveraged for email exfiltration.

The LemonDuck botnet tried to monetize its efforts via simultaneous campaigns to mine cryptocurrency like Monero on Linux machines.

Mandiant researchers said state-sponsored groups are the primary actors exploiting zero-day vulnerabilities, led by Chinese threat groups.

Cue Health announced it had patched unsecured Bluetooth communications in its smart Cue Health Home COVID-19 Test allowing the user or an attacker to change the results.