In a bid to strengthen authentication and security measures against relay attacks and unauthorized network access, Microsoft has confirmed that it will be using Kerberos in place of the NT LAN Manager in Windows 11, The Hacker News reports.
Numerous class action lawsuits have been filed against major U.S. biotechnology and genetic testing firm 23andMe following an alleged data breach of customer data stemming from credential stuffing attacks that compromised information from almost 1 million Ashkenazi Jews, BleepingComputer reports.
Over 800 stores of U.S. convenience store chain Kwik Trip had their services disrupted by a "network incident" during the past week, reports The Record, a news site by cybersecurity firm Recorded Future.
TechCrunch reports that French cloud gaming service Shadow may have downplayed the data breach it confirmed to have stemmed from an "advanced social engineering attack," which CEO Eric Sele said resulted in the compromise of customers' full names, birthdates, billing and email addresses, and credit card expiry dates.
BleepingComputer reports that malicious scripts for compromising WordPress sites have been concealed in the blockchain by the ClearFake threat operation using the new EtherHiding code distribution technique that leverages the Binance Smart Chain in a bid to better evade detection.
Major U.S. pipeline system Colonial Pipeline has denied having its systems or operations affected by a ransomware attack claimed by the RansomedVC operation, saying that stolen files exposed by the ransomware group were from an unrelated third-party data breach, according to The Record, a news site by cybersecurity firm Recorded Future.
In the leadership and communications section, Is Your Board Cyber-Ready?, Chief security officers' salary growth slowing, The Secret to Making Difficult Decisions, and more!
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
