Tools & Practices November 19, 2021 Bitwarden versus RoboForm When RoboForm launched in 1999, it was one of just a few password managers that worked across different devices and operating systems. It not only ... Read more
Trends & Reports November 19, 2021 Bitwarden versus LastPass In February 2021, LastPass announced that personal users of its free password manager service would no longer be able to synch passwords, card details, and ... Read more
Cyber Threats November 19, 2021 APT Actor Actively Exploiting Zero-day Vulnerability in FatPipe MPVPN Devices The Federal Bureau of Investigation (FBI) has warned users of FatPipe MPVPN devices that an Advanced Persistent Threat (APT) actor is exploiting a zero-day vulnerability ... Read more
Security Breaches November 18, 2021 Ransomware Attacks on CNA, Colonial Pipeline, and JBS the Result of Minor Security Lapses Ransomware attacks in 2021 have increased to record levels and no industry sector is immune. Cyber threat actors have become bolder and have conducted an ... Read more
Cyber Threats November 17, 2021 The Emotet Botnet is Back: TrickBot Infrastructure Being Used to Rebuild the Botnet The infrastructure of the Emotet botnet was taken down in a Europol/Eurojust coordinated law enforcement operation in January 2021. Since the takedown it has been ... Read more
Trends & Reports November 16, 2021 How to Create a Strong Password Do you know how to create a strong password? Many people think they do, but still create passwords that take seconds for hackers to crack. ... Read more
Security Breaches November 15, 2021 Legitimate FBI System Hacked and Used to Send Spam Emails About Fake Cyberattack A spam email campaign involving at least 100,000 emails has been conducted using ‘hacked’ FBI-owned servers. The messages advised the recipients that their network had ... Read more
Compliance November 15, 2021 Micropatch Released for Partially Fixed Windows 10 Privilege Escalation Flaw 0Patch has released a micropatch to address a vulnerability in Windows that could allow local privilege escalation to obtain system privileges. The micropatch addresses a ... Read more
Compliance November 14, 2021 International Fraud Awareness Week: Steps to Take to Prevent Organizational Fraud This week is International Fraud Awareness Week – A week dedicated to promoting anti-fraud awareness and educating businesses and consumers about fraud, why it is ... Read more
Security Breaches November 10, 2021 Security Researcher ‘Hacks’ 70% of WiFi Passwords with Next to No Effort A password is often the only thing that stands in the way of a hacker and a treasure trove of sensitive data. It is therefore ... Read more
Tools & Practices November 9, 2021 Microsoft Fixes 55 Vulnerabilities on November 2021 Patch Tuesday, Including Six 0-Days November 2021 Patch Tuesday has seen Microsoft release patches to correct 55 security vulnerabilities, including 6 zero-day bugs. Two of the 0-day bugs are being ... Read more
Security Breaches November 9, 2021 Robinhood Announces Breach of 7 Million User Records Hacking attempts are often sophisticated but in some cases gaining access to a company’s internal networks is as simple as asking an employee for login ... Read more
Cyber Threats November 8, 2021 Zoho Password Management Flaw Exploited by APT Actors to Deploy Web Shell, Trojan, and Info Stealer Security researchers at Palo Alto Networks have identified a global espionage campaign that exploited a known vulnerability in the Zoho password management and single-sign-on platform, ... Read more
Trends & Reports November 5, 2021 House of Representatives Passes Two Bills to Help SMBs Improve Cybersecurity Two bills have been passed by the U.S. House of Representatives that will help small- and medium-sized businesses improve cybersecurity. The Small Business Administration (SBA) ... Read more
Tools & Practices November 4, 2021 CISA Issues Deadline to Federal Agencies to Patch Hundreds of Known Vulnerabilities The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a binding operational directive (BOD 22-01) ordering all Federal civilian agencies to patch or implement ... Read more
Security Breaches November 4, 2021 FBI Warns of New Ransomware Attacks Exploiting Financial Business Events The Federal Bureau of Investigation has issued a private industry alert warning about a new tactic being used by ransomware gangs to pressure victims into ... Read more
Security Breaches November 3, 2021 BlackMatter Ransomware Operation Shuts Down Law enforcement agencies around the world have stepped up their efforts to disrupt ransomware gangs in recent months. The infrastructure of the notorious REvil ransomware ... Read more
Cyber Threats November 2, 2021 Amazon SES Token Stolen and Used to Send Phishing Emails from Kaspersky.com Email Accounts A phishing campaign has been identified that abused a legitimate access token of a third-party contractor to send phishing emails from legitimate Kaspersky.com email accounts. ... Read more
Security Breaches November 1, 2021 Europol Announces Arrest of 12 Individuals Suspected of Conducting Over 1,800 Ransomware Attacks Ransomware gangs have been able to conduct thousands of attacks on businesses with little threat of being caught, but the massive increase in attacks in ... Read more
Security Breaches October 29, 2021 Microsoft Warns of Increase in Password Spraying Attacks Microsoft’s Detection and Response Team (DART) has issued a warning about an increase in password spraying attacks by nation-state hacking groups and cybercriminals. These attacks ... Read more
Compliance October 28, 2021 WordPress Plugin Flaw Allows Subscribers to Wipe Entire Sites A vulnerability has been identified in the Hashthemes Demo Importer WordPress Plugin which could be exploited by an authenticated user to wipe the site. Exploiting ... Read more
Insights October 27, 2021 Best Open Source Cybersecurity Tools There are many open source cybersecurity tools that IT security professionals can use to identify vulnerabilities before they are discovered and exploited by hackers. Using ... Read more
Insights October 27, 2021 Open Source Internet Security There is a range of open source Internet security tools that can be used to protect user privacy when accessing the Internet and block a ... Read more
Insights October 27, 2021 Open Source Security Management Developers often use open source code in their applications to speed up application development. There is no need to reinvent the wheel. If code is ... Read more
Insights October 27, 2021 Open Source Security Software Security solutions can be expensive, but fortunately, there is a plethora of free or low-cost open source security software solutions available. These solutions can be ... Read more
Insights October 27, 2021 Open Source Security Benefits Open source security is widely regarded as potentially being more secure than proprietary solutions, but what exactly are the open source security benefits? In this ... Read more
Insights October 27, 2021 What is Open Source Security? Open source security is a commonly used term that describes a methodology used by software developers that gives users of the software much greater visibility ... Read more
Compliance October 26, 2021 REvil Outages and Shutdown Due to Multinational Law Enforcement Effort The ransomware attacks on Colonial Pipeline and JBS hammered home the point that ransomware attacks are a national security issue that threatens the lives of ... Read more
Cyber Threats October 25, 2021 NHS Vaccination Proof Phishing Campaign Rife in the UK Cybercriminals have stepped up their efforts to scam Brits according to new research, with one of the most common scams offering fake proof of COVID-19 ... Read more
Security Breaches October 22, 2021 Sinclair Broadcast Group Suffers Evil Corp Ransomware Attack The prolific Russian cybercriminal group Evil Corp has started using a new ransomware variant named Macaw Locker. The latest attack was conducted on the U.S. ... Read more