Cyber Threats January 21, 2020 Critical Zero-Day Internet Explorer Vulnerability Exploited in the Wild Microsoft has announced it is developing a patch for a zero-day Internet Explorer vulnerability that is currently being exploited in the wild. In the meantime, ... Read more
Security Breaches January 16, 2020 $1.38 Billion Settlement Reached in Equifax Data Breach Class Action Lawsuit A $1.38 billion settlement has been reached to resolve the Equifax data breach class action lawsuit filed on behalf of victims of the 2017 data ... Read more
Tools & Practices January 14, 2020 January 2020 Patch Tuesday Sees Microsoft Patches 49 Vulnerabilities January 2020 Patch Tuesday has seen Microsoft issue patches for 49 vulnerabilities including 7 rated critical, along with a fix for the Crypt32.dll vulnerability discovered ... Read more
Compliance January 14, 2020 NSA Issues Cybersecurity Advisory on Critical Flaw Affecting Windows 10 and Windows Server The U.S. National Security Agency has taken the unusual step of publicly disclosing a vulnerability to a software vendor. This is the first time that ... Read more
Security Breaches January 13, 2020 Critical Citrix Vulnerability Under Active Attack A critical vulnerability in the Citrix Application Delivery Controller and Citrix Gateway is being exploited in real world attacks. The vulnerability was discovered by security ... Read more
Cyber Threats January 10, 2020 Mozilla Patches Actively Exploited Zero Day Firefox Vulnerability Mozilla has patched a critical zero-day vulnerability in the Firefox browser which is being actively exploited in the wild. The flaw – tracked as CVE-2019-17026 ... Read more
Trends & Reports January 8, 2020 Erie, Colorado Loses $1 Million To BEC Scam The town of Erie in Colorado has been duped by a business email compromise (BEC) scam. A payment of $1.01 million intended for the construction ... Read more
Cyber Threats January 7, 2020 Landry’s Restaurant Chain Discovers POS Malware Infection The popular U.S. restaurant chain Landry’s has discovered malware on the point of sale (POS) system used by 63 of the chain’s brands including Aquarium, ... Read more
Security Breaches January 6, 2020 Travelex Cyberattack Forces Shutdown of Online Currency Services The world’s largest foreign exchange company, Travelex, experienced a cyberattack on New Year’s Eve which took its website out of action and affected companies such ... Read more
Security Breaches January 3, 2020 Ransomware Victim Takes Legal Action Against Attackers and ISP Hosting its Stolen Data Southwire, one of the largest manufacturers of cabling and wire in the United States, has taken legal action against the unknown individuals behind the attack ... Read more
Cyber Threats January 2, 2020 Microsoft Takes Down 50 Phishing Domains Used by North Korea-Backed Threat Group Microsoft has sought help from the courts to take down domains used by the North Korea-backed hacking group, Thallium (APT37). After securing the court order ... Read more
Insights December 31, 2019 Office 365 Spam Control One of the biggest problem areas for businesses looking to improve their security posture is Office 365 spam control. Email is the primary method used ... Read more
Compliance December 27, 2019 Critical Flaw Affecting 80,000 Businesses Patched by Citrix A critical vulnerability in the Citrix Application Delivery Controller and Citrix Gateway has been patched by Citrix. If exploited, the vulnerability could allow an unauthenticated ... Read more
Cyber Threats December 26, 2019 Three Members of Goznym Banking Trojan Gang Sentenced Three individuals who were part of the criminal organization responsible for the Goznym malware attacks in Europe and North America between 2015 and 2016 have ... Read more
Cyber Threats December 24, 2019 Campaign Identified Delivering Package of 6 Malware Variants A malware distribution campaign has been detected by researchers at Deep Instinct which is delivering a package of 6 malware variants in one hit. The ... Read more
Security Breaches December 23, 2019 Data of 267 Million Facebook Users Exposed Online A database containing the user IDs, names, and telephone numbers of 267 million Facebook users has been exposed online for a period of around two ... Read more
Compliance December 19, 2019 Preinstalled Acer and Asus Software Contains Privilege Escalation Flaws SafeBreach has discovered vulnerabilities in software preinstalled on Acer and Asus laptops and computers which could be exploited by hackers to execute malicious payloads with ... Read more
Trends & Reports December 18, 2019 435,000 Weak RSA Keys Identified in IoT Devices RSA is a commonly used encryption protocol for securing communications. RSA encryption uses asymmetric cryptographic keys, one of which is public and can be shared ... Read more
Security Breaches December 18, 2019 Up to 15 Million Individuals Potentially Affected by Ransomware Attack on Medical Testing Firm LifeLabs, one of the largest medical testing and diagnostics firms in Canada, has been attacked with ransomware. The attack is believed to have occurred on ... Read more
Security Breaches December 17, 2019 Unsecured Web Filtering Database Exposed Private Browsing Histories and PII A database containing around 1 million web browsing records of internet users has been left unprotected online. The 890GB database contained daily logs of internet ... Read more
Security Breaches December 16, 2019 New Orleans Recovering from Ransomware Attack On Friday December 13, 2019, the City of New Orleans suffered a cyberattack which forced it to shut down its servers while the incident was ... Read more
Tools & Practices December 16, 2019 SpamTitan Scores Big on Business Review Websites TitanHQ is the leading provider of cloud-based email security to Managed Service Providers (MSPs) serving the SMB market and its email security solution, SpamTitan, is ... Read more
Compliance December 13, 2019 Zeppelin Ransomware Used to Attack MSPs, Technology, and Healthcare Companies Security researchers at Blackberry Cylance have identified a new variant of Buran ransomware which is being used in targeted attacks on technology and healthcare companies ... Read more
Security Breaches December 10, 2019 Flaw in Ryuk Ransomware May Make Data Recovery Impossible Disaster strikes. Your business has been attacked and ransomware has been deployed. You decide to pay the ransom to ensure a quick recovery, only to ... Read more
Security Breaches December 10, 2019 Ransomware Attacks on Network Attached Storage (NAS) Devices on the Rise A hacker succeeds in gaining access to the computer systems of a business and ransomware is deployed, but there is a fair chance that the ... Read more
Tools & Practices December 10, 2019 Microsoft Issues 37 Updates on December 2019 Patch Tuesday; Adobe Fixes 24 December Patch Tuesday has seen Microsoft release patches for 37 vulnerabilities along with 2 advisories. 7 of the vulnerabilities are rated critical, 27 are rated ... Read more
Security Breaches December 9, 2019 Ransomware Attack on IT Company Impacts more than 100 Dental Practices More than 100 dental practices have had essential files encrypted as a result of a ransomware attack on an IT service provider. On November 25, ... Read more
Cyber Threats December 6, 2019 New Highly Destructive Wiper Malware Variant Detected A new wiper malware has been detected by security researchers at IBM X-Force which is being used in attacks on energy companies and industrial firms ... Read more
Security Breaches December 5, 2019 Elaborate Man-in-the-Middle Attack Diverts $1 Million Payment to Israeli Startup $1 million in venture capital funding intended for an Israeli startup was diverted to an attacker-controlled bank account in an elaborate wire transfer email scam. ... Read more
Cyber Threats December 4, 2019 StrandHogg Android Vulnerability Allows Malicious Apps to Pose as Legitimate Ones An Android vulnerability has been discovered that allows malicious apps to disguise themselves as legitimate apps and gain full permissions. The vulnerability is being actively ... Read more