thecyberexpress

Master the Defenses: 8 Cybersecurity Best Practices for 2024

The ever-accelerating pace of technological advancement shapes our world, forging a double-edged digital landscape. On one hand, it fuels innovation and fosters connection while simultaneously ...
thecyberexpress

ClickUp Discloses Feature Flag Misconfiguration That Exposed 893 Customer Email Addresses and a Live API Token

A security researcher’s public disclosure on April 27 forced ClickUp to confront a misconfiguration its own engineering review process had missed for months. 893 customer email addresses embedded ...
thecyberexpress

Medtronic Confirms Data Breach, No Impact on Operations or Patient Safety

Medtronic, the global leader in medical technology, disclosed a data breach affecting its corporate IT systems. On April 24, the company confirmed that an unauthorized third party gained access to ...
thecyberexpress

Toronto Police Bust Mobile Smishing Network Targeting Thousands

A major Canada SMS blaster cybercrime case has come to light as Toronto Police charge three men with 44 offences in what authorities describe as a first-of-its-kind investigation in the country. The ...
thecyberexpress

Hacker Active Well Beyond Context.ai Compromise, Says Vercel CEO

Vercel CEO Guillermo Rauch, in an update today said that after scanning through petabytes of logs of the company’s networks and APIs, his security team concluded that the threat actor behind the ...
thecyberexpress

Exposed Server Reveals AI-Assisted Credential Harvesting Factory

An exposed server sitting open on the internet handed forensic investigators something rarely available; an unobstructed view inside a running criminal operation, complete with code, logs, victim data ...
thecyberexpress

Vercel Incident Linked to AI Tool Hack, Internal Access Gained

Vercel has disclosed a Vercel security incident involving unauthorized access to certain internal systems, with the breach traced back to a compromised third-party AI tool. The company said it is ...
thecyberexpress

Hacker Makes Claim of Largest Attack on United Arab Emirates in History

The cybersecurity community is on edge after an unidentified threat actor operating under the username ‘UAE’, claimed responsibility for a massive data breach attack involving the United Arab Emirates ...
thecyberexpress

Child Safety at Risk as EU CSAM Detection Law Lapses, Reporting Concerns Rise

A growing surge in CSAM (Child Sexual Abuse Material) circulating online has become an urgent concern for authorities and child protection organizations across the EU. As digital platforms continue to ...
thecyberexpress

Germany Names Suspected Leader of REvil and GandCrab Ransomware Gangs

German authorities have named a key figure behind some of the most notorious ransomware operations in recent years, linking a real identity to the REvil ransomware gang and its predecessor, the ...
thecyberexpress

FortiClientEMS Vulnerabilities Under Active Exploitation, Expose Systems to RCE

A newly disclosed set of vulnerabilities affecting Fortinet’s endpoint management platform has raised serious concerns among cybersecurity professionals, particularly as both flaws are already being ...
thecyberexpress

Cyber Attack on UAE Banking Sector: Mysterious Team Bangladesh Claims to Hit First Abu Dhabi Bank

Another threat actor has unleashed cyber attack on the UAE banking sector, hot on the heels of the DDoS attacks on First Abu Dhabi Bank and UAE Pass by Anonymous Sudan. Hacker group Mysterious Team ...