Cyber Threats August 21, 2018 Necurs Botnet Now Distributing Marap Malware The Necurs botnet is being used to send huge quantities of spam emails containing Marap malware. Marap malware is currently being used for reconnaissance and ... Read more
Security Breaches August 21, 2018 U.S. Companies Not Doing Enough to Prevent Phishing and Email Impersonation Attacks IT professionals are well aware of the threat from phishing and email impersonation attacks, yet even though the risk of an attack is high, U.S. ... Read more
Compliance August 20, 2018 38,000 Patient Health Records Exposed in Legacy Health Phishing Attack A phishing attack on the Portland, Oregon-based healthcare provider, Legacy Health, has resulted in the exposure and possible theft of 38,000 patients’ protected health information. ... Read more
Compliance August 19, 2018 SharePoint Files Used to Harvest Office 365 Credentials A phishing campaign termed PhishPoint uses SharePoint files to steal users’ Office 365 credentials. Huge numbers of phishing emails are being sent to businesses that ... Read more
Compliance August 17, 2018 Major Phishing Attack Reported by Augusta University Health Augusta University Health has experienced a phishing attack that has resulted in the unauthorized accessing of several employees’ email accounts. The substitute breach notice uploaded ... Read more
Tools & Practices August 16, 2018 Multi-Factor Authentication Fail: Single MFA Token Used to Gain Access to All Accounts Multi-factor authentication can help to secure accounts and protect against phishing attacks. If a correct username and password combo is obtained, without the second factor ... Read more
Security Breaches August 15, 2018 New KeyPass Ransomware Campaign Infects Users in More than 20 Countries A new ransomware variant – called KeyPass ransomware – is being used in a new campaign that has seen many victims created around the world. ... Read more
Security Breaches August 14, 2018 Faxploit Attack Uses Fax Machine to Gain Network Access and Steal Data Since the 1960s, businesses have been using fax machines to send and receive orders and communicate data quickly. To a large extent, email has replaced ... Read more
Security Breaches August 13, 2018 New Shrug Ransomware Variant Detected Shrug ransomware was first detected in early July. Now a new variant of this .NET ransomware variant has been detected, which has enhanced capabilities. Shrug ... Read more
Trends & Reports August 12, 2018 Industry First Security Awareness Practitioner Certification Offered by InfoSec Institute Security awareness training for employees is now a vital part of any cybersecurity strategy, yet until recently there was no certification program available to confirmed ... Read more
Trends & Reports August 9, 2018 Scammers Claim to Have Webcam Footage of Users Watching Pornography A new variant of an old scam is currently gaining traction and is fooling many people into paying scammers money to avoid having sensitive information ... Read more
Security Breaches August 8, 2018 SamSam Ransomware Developer Has Earned $6 Million in Ransom Payments SamSam ransomware has been used in many attacks on healthcare providers and educational institutions over the past two and a half years. In contrast to ... Read more
Security Breaches August 7, 2018 Recent WannaCry Attack on Chip Manufacturer Expected to Cost $170 Million A WannaCry ransomware attack has been reported by the Taiwan Semiconductor Manufacturing Co. The malware infection has crippled some of the company’s manufacturing plants which ... Read more
Cyber Threats August 3, 2018 Massive Malvertising Operation Uncovered that Delivers Traffic to Rig Exploit Kit For many years cybercriminals have been sneaking malicious adverts onto legitimate websites through advertising networks. Publishers – website owners that sell space on their sites ... Read more
Cyber Threats August 3, 2018 Businesses Turn Employee Safety Solution into Phishing Alert System Fast action is required when cybersecurity threats are detected to limit the harm caused. When phishing emails are received, or ransomware or malware threats are ... Read more
Security Breaches August 2, 2018 Reddit Data Breach Shows 2-Factor Authentication is Not Always Effective A sizeable Reddit data breach has been discovered. An unauthorized individual gained access to several Reddit systems and succeeded in downloading a significant number of ... Read more
Cyber Threats August 2, 2018 AI-Assisted Virtual Security Analyst Added to Ironscales’ Advanced Threat Protection Platform Ironscales, the Tel Aviv-based anti-phishing solution provider, has announced it has incorporated a new module into its advanced threat protection platform that helps security teams ... Read more
Security Breaches August 1, 2018 Spam Email Remains the Primary Attack Vector and Click Rates are Increasing Spam email is still the leading method of malware delivery according to a new report by cybersecurity company F-Secure. The reason is simple. It is ... Read more
Compliance July 31, 2018 UnityPoint Health Phishing Attack Exposed PHI of 1.4 Million Patients Another UnityPoint Health phishing attack has been discovered, and this time it is huge. Hackers have gained access to multiple email accounts which contained the ... Read more
Security Breaches July 26, 2018 New Spectre-Class Attack Identified by UCR Researchers Another side-channel vulnerability has been identified that could be exploited in a Spectre-Class attack. This attack method is not blocked by previous patches that address ... Read more
Security Breaches July 25, 2018 Hacking Group Steals $1 Million from Russian Bank via Compromised Router The hacking group known as MoneyMaker has pulled off a $1 million cyberheist after gaining access to a Russian bank through an outdated router used ... Read more
Cyber Threats July 24, 2018 Most Clicked Phishing Emails in Q2, 2018 Security training and phishing email simulation platform provider KnowBe4 has released a report on the most clicked phishing emails in Q2, 2018. If businesses provide ... Read more
Compliance July 23, 2018 1.5 Million Health Records Breached in Singapore Hackers have successfully gained access to a health database of the Singapore government (SingHealth), allowing them to view the health records of 1.5 million individuals, ... Read more
Compliance July 23, 2018 AWS EC2 Pricing Options Explained Confused about AWS EC2 instance types and AWS EC2 pricing options? In this post we explain some of the ways that it is possible to ... Read more
Tools & Practices July 20, 2018 Cincinnati Implements Smart911 Service to Improve Emergency Response Times The city of Cincinnati has taken steps to improve response times of the emergency services in the wake of a tragic incident that resulted in ... Read more
Security Breaches July 19, 2018 GandCrab Ransomware Vaccine Developed by AhnLab GandCrab ransomware is now the most commonly used ransomware variant, and while there is currently no free decryptor for GandCrab ransomware, there is now a ... Read more
Security Breaches July 17, 2018 LabCorp Investigating Possible Data Breach LabCorp, one of the world’s largest clinical testing laboratories, has experienced a cyberattack that has potentially resulted in the health data of millions of patients ... Read more
Cyber Threats July 17, 2018 Convincing Phishing Campaign Targets Australian Businesses and Spreads DanaBot Trojan A new phishing campaign has been detected that is spreading the DanaBot Trojan. The campaign involves phishing emails which appear to contain invoices from the ... Read more
Cyber Threats July 12, 2018 Code Stealing Certificates Stolen from D-Link and Used in Malware Campaign The Advanced Persistent Threat (APT) group BlackTech has stolen code-signing certificates from D-Link and Changing Information Technology Inc., and is using them to cryptographically sign ... Read more
Insights July 11, 2018 HIPAA Training In order to be compliant with the Health Insurance and Portability Act (HIPAA), Covered Entities (CEs) must provide HIPAA compliance training. This requirement is codified ... Read more