June 23, 2021 NIST Publishes Draft Ransomware Risk Management Guidance The National Institute of Standards and Technology (NIST) is seeking comments on new draft guidance to help businesses protect against ransomware attacks and recover quickly ... Read more
June 17, 2021 80% of Global Organizations Suffer Further Attacks After Paying Ransomware Operators You suffer a ransomware attack and decide to pay the ransom to regain access to your data, but that may not be the end of ... Read more
June 16, 2021 Vulnerability in Peloton Bike+ Allows Attackers to take Full Control of Operating System McAfee’s Advanced Threat Research (ATR) team researchers have identified a vulnerability in the popular Peloton Bike+ and Peloton Tread exercise machines what could allow them ... Read more
June 14, 2021 Lawsuit Filed Against Humana & Cotiviti Following 63,000+ Record Data Breach Following the discovery of a data breach in December 2020, the health insurance and healthcare provider Humana and its business associate Cotiviti are facing legal ... Read more
June 14, 2021 Avaddon Ransomware Gang Shuts Down Operation and Releases Decryption Keys Avaddon ransomware is no more. The operation has been shut down and decryptors have been released that allow victims to recover their files free of ... Read more
June 7, 2021 NCSC Warns UK Educational Institutions of Increased Ransomware Threat The UK’s National Cyber Security Center (NCSC) has issued a warning to the UK education sector following a recent spike in ransomware attacks on schools, ... Read more
June 4, 2021 Take Ransomware Seriously, Warns White House Ransomware attacks have been increasing and it is now common for the threat actors behind these attacks to not only encrypt data to prevent access, ... Read more
June 3, 2021 FBI Says REvil Behind Ransomware Attack on JBS Foods The Federal Bureau of Investigation (FBI) has issued a statement about the recent ransomware attack on the JBS Foods attributing the attack to the REvil ... Read more
June 1, 2021 SolarWinds Hackers Conducting Spear Phishing Campaign Posing as USAID The Russian Advanced Persistent Threat (APT) group Nobelium – aka APT29/The Dukes/Cozy Bear – that was behind the SolarWinds Orion supply chain attack has been ... Read more
May 26, 2021 New Report Highlights Scale of Attempted Cyberattacks One tactic commonly adopted by organizations to improve their security posture is to block traffic from countries where hackers are known to reside: Russia, China, ... Read more
May 17, 2021 DarkSide Ransomware Operation Shuts Down and RaaS Operators Place Limits on Attacks by Affiliates The DarkSide ransomware gang, which was responsible for the cyberattack on Colonial Pipeline that caused the shutdown of fuel pipelines supplying 45% of the fuel ... Read more
May 14, 2021 Colonial Pipeline and Brenntag Pay Ransoms to DarkSide Ransomware Gang The DarkSide ransomware attack on Colonial Pipeline that disrupted fuel supplies to the East Coast for almost a week and triggering a spike in fuel ... Read more
May 14, 2021 Data Breach Impacts Records of 200,000 Military Veterans Online security expert Jeremiah Fowler has discovered an online database holding the protected health information (PHI) of approximately 200,000 U.S. military veterans was accessible until ... Read more
May 10, 2021 Largest Fuel Pipeline in United States Shut Down due to Ransomware Attack The largest fuel pipeline in the United States has been forced to shut down due to a ransomware attack, with the United States declaring a ... Read more
April 30, 2021 Vulnerabilities in SonicWall VPN Appliances Targeted in FiveHands Ransomware Attacks A vulnerability in Sonicwall SMA 100 Series VPN appliances is being targeted to deliver a previously unknown ransomware variant dubbed FiveHands. Threat analysts at Mandiant ... Read more
April 28, 2021 Data Exfiltration Extortion Attacks Spike and Ransom Payments Increase Payments to resolve ransomware and data exfiltration extortion attacks increased in the first quarter of 2021, with the rise largely due to the Accellion legacy ... Read more
April 23, 2021 Even When Warned, Many Users Do Not Change Breached Passwords Google has launched its Password Checkup service on chrome, which displays a warning to users when they login to a website using a password that ... Read more
April 16, 2021 HIPAA Breaches at Montefiore Medical Center & Belden It has been discovered that another Montefiore Medical Center employee has accessed patient information with no work reason for doing. It was made public that, ... Read more
April 16, 2021 NSA Warns of Russian Government Hackers Exploiting These 5 Vulnerabilities The National Security Agency (NSA), in conjunction with the Federal Bureau of Investigation (FBI) and the DHS’ Cybersecurity and Infrastructure Security Agency (CISA) have issued ... Read more
April 7, 2021 SAP and Onapsis Warn of Ongoing Attacks Exploiting Vulnerabilities in Mission-Critical SAP Applications 6 cybersecurity vulnerabilities in mission-critical SAP applications are being actively exploited by threat actors according to cybersecurity firm Onapsis. Exploitation of the flaws could result ... Read more
April 6, 2021 Are You One of the 533 Million Facebook Account Holders Affected by This Data Breach? The personal information of 533 million Facebook account holders has been leaked online on a public hacking forum. The incident that resulted in the theft ... Read more
April 5, 2021 Fortinet SSL VPN Vulnerabilities Being Actively Exploited by Nation State Hackers The Federal Bureau of Investigation (FBI) and the DHS’ Cybersecurity and Infrastructure Security Agency (CISA) have issued a joint alert warning that Advanced Persistent Threat ... Read more
March 31, 2021 WannaCry Ransomware Attacks Up 53% Since January 2021 The latest research published by Check Point shows a resurgence in WannaCry ransomware attacks. It has been almost four years since the ransomware first appeared ... Read more
March 29, 2021 FBI/CISA Warn of Increase in Mamba Ransomware Attacks The Federal Bureau of Investigation (FBI) in conjunction with the DHS’ Cybersecurity and Infrastructure Security Agency (CISA) have issued a TLS:White alert about Mamba ransomware ... Read more
March 25, 2021 Verkada Hacker Indicted on 8 Counts of Computer Crimes and Fraud The hacktivist who gained access to the systems of the cloud-based enterprise security camera platform provider Verkada in March 2021 has been indicted on criminal ... Read more
March 23, 2021 FBI Warns State and Local Governments of Increased Risk of BEC Attacks The Federal Bureau of Investigation (FBI) has issued a warning to state, local, tribal, and territorial (SLTT) governments in the United States about Business Email ... Read more
March 22, 2021 Acer Ransomware Attack: $50 Million Ransom Demand Issued The REvil ransomware gang gained access to the systems of the Taiwanese computer giant Acer and stole sensitive data before encrypting data. It has been ... Read more
March 22, 2021 Multiple Lawsuits Filed by Victims of Accellion Ransomware Attack The number of healthcare groups to reveal that they have been impacted by the ransomware attack on Accellion has grown, with two of the most ... Read more
March 18, 2021 Pysa Ransomware Gang Targeting Education Sector, Warns FBI The FBI has issued an alert following a surge in Pysa ransomware attacks on K-12 schools and higher education institutions. The Pysa (Mespinoza) ransomware gang ... Read more
March 15, 2021 AMCA Medical Debt Collection Agency Settles Multistate Action over 21 Million-Record Data Breach A settlement has been reached between a coalition of 41 state Attorneys General and American Medical Collection Agency (AMCA) to resolve a case stemming from ... Read more