Cyber Threats July 30, 2021 Have You Patched These 30 Frequently Exploited Vulnerabilities? A joint cybersecurity advisory has been published by CISA, the FBI, the Australian Cyber Security Center, and the UK’s National Cyber Security Center about the ... Read more
Security Breaches July 29, 2021 Average Data Breach Costs Reach Record Level of $4.24 Million per Breach IBM Security has published its 2021 Cost of a Data Breach Report. The report is based on an analysis of data breaches at 500 organizations ... Read more
Security Breaches July 28, 2021 Zero Day Apple Vulnerability Under Active Attack Apple is urging users of iPhones, iPads, and Macs to install the operating system updates it released on Monday, as the vulnerability in iOS and ... Read more
Security Breaches July 27, 2021 Microsoft Publishes Mitigations for PetitPotam Attack on Windows NT LAN Manager Microsoft has released mitigations for a new attack method involving Windows NT LAN Manager (NTLM), which could be exploited to force remote Windows systems to ... Read more
Compliance July 26, 2021 Microsoft 365 Apps and Services Will No Longer Support Internet Explorer from August 17, 2021 On August 17, 2021, Microsoft 365 apps and services will no longer support Internet Explorer 11. Users who continue with Internet Explorer 11 after that ... Read more
Security Breaches July 23, 2021 Kaseya Obtains Universal REvil Ransomware Decryptor for Customers and Downstream Businesses Kaseya has obtained a universal decryptor for REvil ransomware and will be working with all customers affected by its July 2021 ransomware attack, which affected ... Read more
Cyber Threats July 21, 2021 Hundreds of Millions of Windows Computers Have 16-Year Old Printer Driver Vulnerability A high severity privilege escalation vulnerability has been identified in HP printer drivers, which are also used by Samsung and Xerox. Exploitation of the flaw ... Read more
Cyber Threats July 21, 2021 Fortinet Issues Patch to Correct Critical RCE Vulnerability in FortiManager and FortiAnalyzer A critical remote code execution use-after-free vulnerability has been identified that affects Fortinet’s FortiManager and FortiAnalyzer network management solutions. If exploited, a non-authenticated remote attacker ... Read more
Cyber Threats July 20, 2021 MosaicLoader Malware Downloader Distributed Via Internet Ads for Cracked Software Bitdefender security researchers have identified a new malware variant dubbed MosaicLoader, which is being distributed in a worldwide campaign disguised as cracked software. The malware ... Read more
Tools & Practices July 19, 2021 Two More Windows Print Spooler Vulnerabilities Identified A further zero-day vulnerability has been identified in Windows Print Spooler that could be exploited via remote print servers under the attacker’s control to gain ... Read more
Security Breaches July 15, 2021 SonicWall: Users of Unpatched SRA and SMA 100 Series Appliances Face Imminent Risk of Ransomware Attacks SonicWall has issued an urgent warning for users of its Secure Mobile Access (SMA) 100 series and Secure Remote Access (SRA) products running 8.x firmware. SonicWall ... Read more
Trends & Reports July 15, 2021 Kaspersky Password Manager Random Password Generator Created Easily Brute Forced Passwords Password managers have a feature that generates random passwords to make it easier for users to create strong, unique passwords for all of their accounts. ... Read more
Security Breaches July 14, 2021 REvil Ransomware Servers Go Dark Suggesting Possible Law Enforcement Takedown REvil (Sodinokibi), one of the most prolific ransomware-as-a-service operations, had its servers shut down suddenly early on Tuesday morning. The REvil gang has been behind ... Read more
Cyber Threats July 13, 2021 Patches Released to Fix 3 Actively Exploited Flaws and 9 Zero Days on July 2021 Patch Tuesday July 2021 Patch Tuesday has seen Microsoft release patches to fix 116 vulnerabilities across its range of products: 12 critical flaws, 3 actively exploited vulnerabilities, ... Read more
Trends & Reports July 13, 2021 BIOPASS RAT Live Streams Audio and Video from Victims’ Devices Security researchers at Trend Micro have identified a new remote access Trojan (RAT) dubbed BIOPASS, which uses legitimate live streaming software to provide the attackers ... Read more
Security Breaches July 12, 2021 Kaseya Security Update Addresses 0Day Flaws Exploited in REvil Ransomware Attack Kaseya has released a security update to address the zero-day vulnerabilities in its VSA solution that were exploited by the REvil ransomware group in the ... Read more
Cyber Threats July 9, 2021 Fake Kaseya Updates Used in Phishing Campaign to Deliver Cobalt Strike Backdoors A phishing campaign has been detected by Malwarebytes Threat Intelligence researchers which targets managed service provider customers of Kaseya. The emails claim to provide a ... Read more
Tools & Practices July 7, 2021 Microsoft Issues Out-of-Band PrintNightmare Patch for Some Windows Versions Microsoft has released an out-of-band patch to fix two critical remote code execution vulnerabilities in the Windows Print Spooler Service dubbed PrintNightmare. A patch had ... Read more
Security Breaches July 6, 2021 Cybersecurity Agencies Warn of Ongoing Password Spraying Attacks by Russian APT Actors Warnings have been issued about ongoing malicious cyber activities by the Advanced Persistent Threat (APT) actor known as APT28/Strontium/Fancy Bear. The APT group has been ... Read more
Security Breaches July 5, 2021 Kaseya Supply Chain Attack on MSPs Sees REvil Ransomware Delivered to Several Thousand Companies On Friday July 2, 2021, an affiliate of the REvil ransomware-as-a-service operation delivered the REvil ransomware payload to dozens of Kaseya customers including many managed ... Read more
Cyber Threats July 2, 2021 PoC Exploit Released for Unpatched Windows Print Spooler RCE Vulnerability A critical Windows Print Spooler remote code execution vulnerability has been identified, a Proof of Concept (PoC) exploit for which has been leaked online. The ... Read more
Compliance July 1, 2021 CISA Creates Catalog of Bad Practices in Cybersecurity The Cybersecurity and Infrastructure Security Agency (CISA) of the U.S. Department of Homeland Security has published a catalog of bad practices in cybersecurity. These practices ... Read more
Security Breaches June 30, 2021 Profile Data of 700 Million LinkedIn Users Listed for Sale on Hacking Forum 700 million LinkedIn records were listed for sale on a hacking forum on June 22, 2021 by an individual who calls himself GOD User TomLiner. ... Read more
Trends & Reports June 29, 2021 FIN7 Pen Tester Sentenced to 7 Years in Jail A high-level member of the FIN7 organized crime group has been sentenced to 7 years in jail. The U.S. Department of Justice recently announced that ... Read more
Security Breaches June 28, 2021 PoC Exploit for Cisco Adaptive Security Appliance (ASA) Flaw Used to Attack Vulnerable Devices A proof-of-concept exploit for a vulnerability affecting Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software has been released by the Offensive Team ... Read more
Security Breaches June 25, 2021 422% Year-Over Year Increase in Ransomware Attacks, but a 50% Decline in Q1, 2021 The number of successful ransomware attacks increased by 422% between Q1, 2020 and Q1, 2021 according to data released by Mandiant. The increase was seen ... Read more
Compliance June 24, 2021 30 Million Devices at Risk from Dell SupportAssist RCE Vulnerabilities Researchers at Eclypsium have identified four serious vulnerabilities in the BIOSConnect feature of Dell SupportAssist that could be remotely exploited by attackers to gain full ... Read more
Security Breaches June 23, 2021 NIST Publishes Draft Ransomware Risk Management Guidance The National Institute of Standards and Technology (NIST) is seeking comments on new draft guidance to help businesses protect against ransomware attacks and recover quickly ... Read more
Cyber Threats June 22, 2021 COVID-19 Vaccination Lure Used in Phishing Campaign Distributing the Agent Tesla RAT A new phishing campaign has been detected that is being used to distribute the Agent Tesla Remote Access Trojan (RAT). The phishing campaign was identified ... Read more
Trends & Reports June 18, 2021 Study Reveals Remote Workers Have been Taking Security Shortcuts While Working From Home The pandemic forced many employers to allow their employees to work from home, but now that governments have lifted restrictions, many employers have taken the ... Read more