September 10, 2021 Cyberattacks on IoT Devices More Than Double in a Year A new report from Kaspersky found attacks on Internet-of-Things (IoT) devices have more than doubled since 2020, as cyber threat actors are increasingly turning their ... Read more
September 8, 2021 288% Increase in Ransomware Attacks Between Q1 and Q2, 2021 There was a massive 288% surge in ransomware attacks between the first and second quarters of 2021, according to research recently published by NCC Group. ... Read more
September 6, 2021 9 Out of 10 Industrial Companies Vulnerable to Cyberattacks A recent study conducted by Positive Technologies has revealed 91% of industrial companies are vulnerable to cyberattacks. Positive Technologies’ penetration testers determined vulnerabilities had not ... Read more
August 27, 2021 FBI Warns of Increasing Hive Ransomware Attacks The Federal Bureau of Investigation (FBI) is warning businesses about a new ransomware threat that is being using in an increasing number of attacks. Hive ... Read more
August 25, 2021 38 Million Records Exposed Online Due to Default Settings in Microsoft App Building Tool Researchers at UpGuard have discovered a huge amount of sensitive data have been exposed over the Internet due to default permissions not being changed on ... Read more
August 23, 2021 Nigerian Threat Actor Tries to Recruit Disgruntled Employees to Conduct a Ransomware Attack on Their Employer Researchers at Abnormal Security have identified an email campaign run by a Nigerian threat group that is advertising for individuals to take part in ransomware ... Read more
August 20, 2021 CISA Publishes Guidance on Protecting Sensitive Data from Ransomware-Caused Data Breaches The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published new guidance to help public and private sector organizations deal with the increasing ransomware threat, ... Read more
August 17, 2021 Millions of IoT Devices Affected by Critical Security Flaw that Allows Hackers to Eavesdrop A critical security flaw has been identified in ThroughTek’s Kalay IoT cloud platform which could be exploited by remote attackers to intercept live video and ... Read more
August 16, 2021 T-Mobile Investigating Potential Breach of Data of Millions of Customers On Friday August 14, 2021, a cyber threat actor listed a stolen database for sale on a hacking forum which includes data from a recent ... Read more
August 13, 2021 Ransomware Gangs Start Exploiting PrintNightmare Vulnerabilities Cyber threat actors have started exploiting the recently disclosed “PrintNightmare” vulnerabilities in ransomware attacks on unpatched Windows servers. The PrintNightmare vulnerabilities include CVE-2021-1675, which is ... Read more
August 11, 2021 New Ransomware cum Wiper Malware Under Active Development Chaos ransomware is a new malware variant under active development that has been advertised on an underground forum and made available for testing, according to ... Read more
August 9, 2021 Threat Actor Actively Scanning for Microsoft Exchange Servers Vulnerable to ProxyShell Attacks A warning has been issued after hackers have been identified scanning for ProxyShell remote code execution vulnerabilities in Microsoft Exchange, following the recent disclosure of ... Read more
August 6, 2021 73% of Organizations Suffered a Phishing Related Data Breach in the Past Year Almost three quarters (73%) of organizations in the United States and United Kingdom suffered a data breach in the past 12 months as a result ... Read more
August 3, 2021 More Ransomware Attempts Recorded in First Half of 2021 Than in all of 2020 Ransomware attacks increased significantly in 2020. The cyber-intelligence firm Group-IB estimated attacks had increased by more than 150% in 2020. Now, a new report from ... Read more
July 29, 2021 Average Data Breach Costs Reach Record Level of $4.24 Million per Breach IBM Security has published its 2021 Cost of a Data Breach Report. The report is based on an analysis of data breaches at 500 organizations ... Read more
July 28, 2021 Can Bitwarden be Hacked? Bitwarden is a secure open-source password manager and a zero-knowledge solution, which means Bitwarden does not have access to the passwords in any user’s password ... Read more
July 28, 2021 Zero Day Apple Vulnerability Under Active Attack Apple is urging users of iPhones, iPads, and Macs to install the operating system updates it released on Monday, as the vulnerability in iOS and ... Read more
July 27, 2021 Microsoft Publishes Mitigations for PetitPotam Attack on Windows NT LAN Manager Microsoft has released mitigations for a new attack method involving Windows NT LAN Manager (NTLM), which could be exploited to force remote Windows systems to ... Read more
July 23, 2021 Kaseya Obtains Universal REvil Ransomware Decryptor for Customers and Downstream Businesses Kaseya has obtained a universal decryptor for REvil ransomware and will be working with all customers affected by its July 2021 ransomware attack, which affected ... Read more
July 20, 2021 Brute Force Attack on Member Portal Impacts 30,000 Florida Blue Members Following a brute force attack on the Florida Blue online member portal, the protected health information (PHI) of approximately 30,063 Florida Blue (Blue Cross and ... Read more
July 15, 2021 SonicWall: Users of Unpatched SRA and SMA 100 Series Appliances Face Imminent Risk of Ransomware Attacks SonicWall has issued an urgent warning for users of its Secure Mobile Access (SMA) 100 series and Secure Remote Access (SRA) products running 8.x firmware. SonicWall ... Read more
July 14, 2021 REvil Ransomware Servers Go Dark Suggesting Possible Law Enforcement Takedown REvil (Sodinokibi), one of the most prolific ransomware-as-a-service operations, had its servers shut down suddenly early on Tuesday morning. The REvil gang has been behind ... Read more
July 12, 2021 Kaseya Security Update Addresses 0Day Flaws Exploited in REvil Ransomware Attack Kaseya has released a security update to address the zero-day vulnerabilities in its VSA solution that were exploited by the REvil ransomware group in the ... Read more
July 6, 2021 Cybersecurity Agencies Warn of Ongoing Password Spraying Attacks by Russian APT Actors Warnings have been issued about ongoing malicious cyber activities by the Advanced Persistent Threat (APT) actor known as APT28/Strontium/Fancy Bear. The APT group has been ... Read more
July 5, 2021 Kaseya Supply Chain Attack on MSPs Sees REvil Ransomware Delivered to Several Thousand Companies On Friday July 2, 2021, an affiliate of the REvil ransomware-as-a-service operation delivered the REvil ransomware payload to dozens of Kaseya customers including many managed ... Read more
June 30, 2021 US Court of Appeals Ruling Suggests Legal Action Possible for Privacy Breaches Under 14th Amendment A ruling by the U.S. Court of Appeals for the Fourth Circuit suggests individuals whose privacy has been violated could potentially take legal action under ... Read more
June 30, 2021 Profile Data of 700 Million LinkedIn Users Listed for Sale on Hacking Forum 700 million LinkedIn records were listed for sale on a hacking forum on June 22, 2021 by an individual who calls himself GOD User TomLiner. ... Read more
June 29, 2021 REvil Ransomware Attack Impacts University Medical Center of Southern Nevada A ransomware attack on the University Medical Center of Southern Nevada (UMC) has resulted in an amount of patient data being stolen. The clinic released a ... Read more
June 28, 2021 PoC Exploit for Cisco Adaptive Security Appliance (ASA) Flaw Used to Attack Vulnerable Devices A proof-of-concept exploit for a vulnerability affecting Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software has been released by the Offensive Team ... Read more
June 25, 2021 422% Year-Over Year Increase in Ransomware Attacks, but a 50% Decline in Q1, 2021 The number of successful ransomware attacks increased by 422% between Q1, 2020 and Q1, 2021 according to data released by Mandiant. The increase was seen ... Read more