Kaspersky’s Global Research and Analysis Team (GReAT) has reported a new campaign by cybercriminal group Lazarus, which exploits organizations through legitimate software, even if vulnerabilities have been identified and patches issued. The team says the organization has consistently targeted one particular software vendor, attempting to access source codes and disrupt the software supply chain. Kaspersky recommends constantly updating software and being vigilant for suspicious messages requesting sensitive information.
T-Mobile pays $16 million fine for three years’ worth of data breaches
T-Mobile has agreed to pay a $15.75 million fine and improve its security in a settlement over a series of data breaches over three years