Security Breaches October 22, 2020 Top 25 Vulnerabilities Exploited by Chinese State Sponsored Hackers Chinese state-backed hackers are targeting U.S. organizations for espionage purposes, with access to computer systems usually gained by exploiting unpatched vulnerabilities. Hackers are scanning for ... Read more
Security Breaches October 21, 2020 DOJ Charges 6 GRU Hackers for NotPetya Wiper Attacks The U.S. Department of Justice has indicted six Russian intelligence operatives for the 2017 NotPetya malware attacks and other major hacking operations. All six individuals ... Read more
Security Breaches October 20, 2020 Ryuk Ransomware Gang Uses Zerologon Exploit to Achieve Domain-Wide Encryption in Just 5 Hours The threat actors behind Ryuk ransomware have started using an exploit for the Zerologon privilege escalation flaw, CVE-2020-1472, which has allowed them to perform ransomware ... Read more
Insights October 20, 2020 Hospital Workflow Software Using hospital workflow software can make a lot of tasks involved in healthcare much more efficient, leading to a nicer experience for patients and allowing ... Read more
Insights October 20, 2020 Healthcare Workflow Automation Considering improving the workflows involved in hospital management is something that takes up a lot of time for senior healthcare managers. Ensuring that you get ... Read more
Compliance October 19, 2020 Microsoft Issues Out-of-Band Updates to Correct Two RCE Flaws On Friday, Microsoft issued out-of-band patches to correct two flaws which could potentially lead to remote code execution. The flaws have been rated ‘important’ by ... Read more
Cyber Threats October 16, 2020 Silent Librarian Threat Group Recommenced Spear Phishing Campaign on Universities The Silent Librarian hacker group – aka TA407 – has recommenced a spear phishing campaign targeting universities. The hacking group is known for sending spear ... Read more
Tools & Practices October 15, 2020 Zoom Announces End-to-End Encryption Will be Rolled Out Next Week Earlier this year following a massive increase in the number of users, it was discovered that the Zoom teleconferencing platform did not offer end-to-end encryption ... Read more
Compliance October 13, 2020 Microsoft Patches 11 Critical and 75 Important Flaws on October 2020 Patch Tuesday October 2020 Patch Tuesday has seen Microsoft issue patches to correct 87 flaws across its product range, including 11 Critical flaws and 75 Important vulnerabilities. ... Read more
Cyber Threats October 13, 2020 Coalition of Tech Firms Takedown TrickBot Botnet The backend infrastructure of the TrickBot botnet has been taken down by a coalition of tech companies and government agencies, including Microsoft ESET, NTT, Black ... Read more
Compliance October 13, 2020 What is the Legal Recommended Email Archiving Retention Period? Legal recommended email archiving retention periods differ considerably depending on the nature of a business’s operations and the regulations it is required to comply with. ... Read more
Trends & Reports October 12, 2020 $23 Million Ransom Demand Issued to Major German IT Firm Software AG, a German IT firm that specializes in enterprise IoT software, has suffered a ransomware attack. Darmstadt, Germany-based Software AG serves around 10,000 customers ... Read more
Cyber Threats October 9, 2020 Multiple Threat Groups are Exploiting the Microsoft Zerologon Vulnerability Microsoft has issued a warning following the discovery of multiple threat groups using exploits for the Zerologon vulnerability – CVE-2020-1472 – in the core authentication ... Read more
Cyber Threats October 8, 2020 Male Chastity Device Vulnerability Could be Exploited to Cause Permanent Locking Vulnerabilities have been identified in a male chastity device that could be exploited to cause the device to permanently lock. Should that happen, and you ... Read more
Cyber Threats October 8, 2020 Phishing Campaign Offering Inside Info on President Trump’s COVID Diagnosis and Health Phishers commonly use lures claiming to provide further information on topics that are attracting a lot of media attention. At the start of the coronavirus ... Read more
Security Breaches October 7, 2020 CISA Issues Emotet Malware Alert Following Sharp Increase in Attacks The Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert about Emotet malware following an increase in successful attacks on ... Read more
Security Breaches October 5, 2020 Sanctions and Penalties Could be Imposed for Paying Ransomware Payments Following a ransomware attack, many firms choose to pay the ransom demand to obtain the keys to decrypt files and prevent the sale or publication ... Read more
Security Breaches October 5, 2020 Some Blackbaud Customers had Sensitive Data Stolen in Ransomware Attack Blackbaud has confirmed in a recent U.S. Securities and Exchange Commission (SEC) Form 8-K filing that the ransomware attack it experienced in May 2020 did ... Read more
Compliance October 2, 2020 Emotet Campaign Impersonates Democratic National Convention An Emotet malware campaign is underway which has already targeted hundreds of organizations in the United States. The emails spoof the Democratic National Convention with ... Read more
Trends & Reports September 30, 2020 Surveys Raise Concerns About Security with a WFH Workforce The COVID-19 pandemic has forced many businesses to allow employees to work from home or to adopt hybrid working, where employees spend some of their ... Read more
Compliance September 29, 2020 Universal Health Services Ransomware Attack Cripples Hospitals Across the United States Universal Health Services (UHS) has suffered a ransomware attack that has taken IT systems out of action across its nationwide network of hospitals. UHS is ... Read more
Security Breaches September 28, 2020 Windows XP Source Code Leaked Online Anyone still using Windows XP has been given an additional reason to finally upgrade to a supported Windows operating system. The source code for Windows ... Read more
Cyber Threats September 24, 2020 Zerologon Exploits Now Being Used in the Wild, Warns Microsoft Earlier this month, the DHS Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency directive about a critical vulnerability— CVE-2020-1472—that affected Microsoft Windows Netlogon Remote Protocol ... Read more
Security Breaches September 22, 2020 Member of The Dark Overlord Hacking Group Sentenced in the United States A Federal court in Missouri has sentenced a British member of the Dark Overlord hacking group to 60 months in jail and has been ordered ... Read more
Security Breaches September 21, 2020 Maze Ransomware now Uses Virtual Machines to Evade Endpoint Defenses The operators of Maze ransomware have adopted a new tactic to evade endpoint security solutions. The gang has been observed encrypting computers from inside virtual ... Read more
Compliance September 18, 2020 Ransomware Attack on Hospital Leads to the Death of a Patient A ransomware attack on a German hospital that took critical systems out of action and forced the cancellation of appointments and the temporary closure of ... Read more
Trends & Reports September 17, 2020 Webinar: How to Ensure Business Continuity for your Remote Workforce with Email Archiving With the COVID-19 pandemic far from over, businesses are having to continue to support remote working. While many employees are starting to return to work, ... Read more
Security Breaches September 17, 2020 Outbound Email Volume Grows During Pandemic, Increasing the Risk of an Email Data Breach A recent survey conducted on 538 IT leaders has revealed 93% have experienced a data breach as a result of an email error, with 70% ... Read more
Cyber Threats September 16, 2020 Billions of Devices Vulnerable to ‘BLESA’ Bluetooth Spoofing Vulnerability A vulnerability has been discovered in the Bluetooth Low Energy (BLE) reconnection process that could be exploited by an attacker to bypass the reconnection authentication ... Read more
Security Breaches September 16, 2020 Cyberattack on U.S. Department of Veteran Affairs Impacts 46,000 Veterans The U.S. Department of Veteran Affairs (VA) has announced that the personal and protected health information of approximately 46,000 veterans has potentially been obtained by ... Read more