Cisco Duo issued a data breach notification regarding a breach involving one of its telephony suppliers, which compromised multifactor authentication (MFA) messages sent to customers via SMS and VOIP. The breach occurred on April 1, 2024, when threat actors used an employee's credentials obtained through a phishing attack to access and download a set of MFA SMS message logs belonging to customers' Duo accounts. The message logs contained phone numbers, phone carriers, countries, states, and metadata such as date and time of messages, but not the message content. Upon discovering the breach, the provider invalidated the compromised credentials, initiated an investigation, and implemented mitigation measures. These measures included additional training for employees to enhance social engineering awareness and technical measures to prevent similar incidents in the future. Affected users were advised to stay vigilant and report any suspicious activities promptly.
Cybersecurity researchers have uncovered a targeted operation against Ukraine, exploiting a nearly seven-year-old flaw in Microsoft Office to deliver Cobalt Strike on compromised s...
A Belarusian hacker activist group claims to have breached the network of the country's main KGB security agency, accessing personnel files of over 8,600 employees. While autho...
Officials at the California Statewide Automated Welfare System have reported a security breach affecting more than 19,000 online accounts on the BenefitsCal platform for welfare pr...