Miscreants have ramped up their use of QR codes to phish for credentials, according to INKY threat researchers.

The post The Rise of QR Codes Spurs Rise in ‘Fresh Phish’ appeared first on Security Boulevard.

Russia’s war strategy increasingly involves cybersecurity, with the country expected to ramp up attacks on critical infrastructure in Ukraine and countries that are members of NATO, according to Switzerland’s Federal Intelligence Service (FIS). “The war in Ukraine represents a threat with partially global implications for critical infrastructure. Critical infrastructure outside the war zone could also..

The post Russia Expected to Increase Critical Infrastructure Attacks appeared first on Security Boulevard.

There is no workaround or patch for a high-severity vulnerability—and none will be forthcoming—in Cisco’s Nexus 9000 series switches.

The post Cisco Nexus 9000 Users Must Disable Encryption to Dodge Vuln appeared first on Security Boulevard.

After a ransomware attack shuttered operations at container terminals at the Port of Nagoya in Japan, the Lockbit 3.0 ransomware gang claimed responsibility and demanded the port pay up. The attack on the port, which is responsible for 10% of the country’s cargo trade and is used by companies like Toyota Motor Corporation, was attacked..

The post Lockbit 3.0 Claims Credit for Ransomware Attack on Japanese Port appeared first on Security Boulevard.

Current and former contractors and employees at Pepsi Bottling Ventures LLC (PBV) were victims of a security incident that exposed their personal information.

The post Third Party Lets Pepsi Data Out of the Bottle, PII Nicked appeared first on Security Boulevard.

The EU has proposed legislation that would govern the use of AI and could be used for a blueprint by other countries looking to put guardrails around the technology.

The post As Goes GDPR, So Goes AI: EU Leads With Proposed AI Law appeared first on Security Boulevard.

CISA put federal civilian agencies on notice that they were expected to secure network devices within 14 days of discovering they had been exposed on the internet.

The post CISA Pressures Federal Civilian Agencies to Secure Network Devices appeared first on Security Boulevard.

A recently discovered cloud-focused malware tool has seemingly been updated with additional functionality.

The post Malware Devs Update Legion Hacktool, Boost Capabilities appeared first on Security Boulevard.

Two months after noticing suspicious activity in its systems, PharMerica disclosed that nearly six million patients had their health care data stolen by threat actors. The large pharmacy services company, which has more than 2,500 locations in the U.S., filed a data breach notification in May 2023. PharMerica noted that a third party had gained..

The post PharMerica Breach: The Lure of Health Care Data appeared first on Security Boulevard.

A newly discovered ChatGPT-based attack technique, dubbed AI package hallucination, lets attackers publish their own malicious packages in place of an unpublished package. In this way, attackers can execute supply chain attacks through the deployment of malicious libraries to known repositories. The technique plays off of the fact that generative AI platforms like ChatGPT use..

The post ChatGPT Spreads Malicious Packages in AI Package Hallucination Attack appeared first on Security Boulevard.