March 10, 2021 Hacking Collective Accesses Live and Archived Feeds from 150,000 Verkada Security Cameras Verkada, a California-based provider of enterprise video security cameras is investigating a hacking incident which saw hackers gain access to the video footage of its ... Read more
March 8, 2021 SITA Passenger Service System Data Breach Impacts Multiple Air Carriers SITA, a global provider of communication and IT solutions to the aviation industry, has suffered a breach of servers used for its Passenger Service System ... Read more
March 1, 2021 Ryuk Ransomware Update Adds Worm-Like Capabilities A new variant of Ryuk ransomware has been detected with worm-like capabilities that allow it to spread laterally within an infected network with no human ... Read more
February 26, 2021 Hackers Actively Scanning for Vulnerable VMware Servers after Publication of PoC Exploit Code Scans are currently being conducted to identify VMware vCenter servers that have not been patched, following the publication of Proof-of-Concept (PoC) exploits for a vulnerability ... Read more
February 23, 2021 Accellion FTA Extortion Attacks Linked to FIN11 and CL0P Ransomware Gang In mid-December, threat actors started exploiting zero-day vulnerabilities in the Accellion File Transfer Appliance (FTA) product, and over the next few weeks it became apparent ... Read more
February 22, 2021 Phishing Attacks Detected Using Malformed URL Prefix A new phishing campaign has been detected that uses malformed URL prefixes to bypass email security solutions and fool individuals into disclosing their login credentials. ... Read more
February 19, 2021 US. Department of Justice Indicts 3 Alleged Members of North Korean Lazarus Hacking Group This week, the U.S. Department of Justice announced that three North Korean intelligence officials have been indicted for their role in a slew of destructive ... Read more
February 16, 2021 Microsoft: Over 1,000 Hackers Suspected to be Involved in SolarWinds Hack Microsoft President Brad Smith recently claimed the SolarWinds supply chain attack was “the largest and most sophisticated attack the world has ever seen” and may ... Read more
February 15, 2021 Egregor Ransomware Operation Disrupted and Several Arrest Made Several suspected members of the Egregor ransomware operation have been arrested in Ukraine, according to the news outlet France Inter. The arrests were made as ... Read more
February 11, 2021 Ethical Hacker Breached 35 Companies Including PayPal, Microsoft, and Apple An ethical hacker developed a novel supply chain attack that allowed him to gain access to the systems of more than 35 technology companies, including ... Read more
February 9, 2021 US Fertility Facing Class Action Lawsuit Filed Over Ransomware Attack Following a September 2020 ransomware attack and data breach that impacted 878,550 people, US Fertility is now facing a class action lawsuit for allowing it ... Read more
February 9, 2021 RDP Attacks Increased by 768% in 2020 and Remain a Key Attack Vector The COVID-19 pandemic forced businesses to move to a largely remote workforce and cybercriminals took advantage by targeting vulnerabilities in Remote Desktop Protocol (RDP). Between ... Read more
February 8, 2021 Hackers Steal Source Code of Stormshield Firewall Products Stormshield, one of the leading French cybersecurity firms, has announced it has suffered a cyberattack in which the attackers gained access to its support ticket ... Read more
February 8, 2021 Ransomware Fact Sheet Issued by the National Cyber Investigative Joint Task Force The National Cyber Investigative Joint Task Force (NCIJTF) has published a ransomware factsheet in order to increase awareness of the threat of ransomware attacks and ... Read more
February 5, 2021 Florida Medicaid Applicants’ PHI Impacted in Seven-Year Breach It has been discovered by the Tallahassee, FL-based Medicaid health plan, Florida Healthy Kids Corporation, that its web hosting provider failed to address vulnerabilities which ... Read more
February 4, 2021 Ransomware Attacks Most Commonly Start with Phishing and 70% Involve Data Exfiltration The Q4, 2020 Quarterly Ransomware Report from Coveware shows there has been a marked decline in the number of companies paying ransoms to recover data ... Read more
January 25, 2021 More Than 37 Billion Records Were Exposed in Data Breaches in 2020 A new report from Risk Based Security suggests the number of data breaches fell by 48% globally in 2020; however, the number of breached records ... Read more
January 18, 2021 Hackers Altered Stolen Pfizer Vaccine Documentation Prior to Publication In November 2020, hackers gained access to a server used by the European Medicines Agency (EMA), the drug and vaccine regulator in the European Union, ... Read more
January 14, 2021 Hackers Behind European Medicines Agency Cyberattack Publish Stolen COVID-19 Vaccine Data The hackers behind the cyberattack on the European Medicines Agency (EMA) have leaked some of the COVID-19 vaccination data that was stolen in the attack. ... Read more
January 12, 2021 Third Malware Variant was Used by SolarWinds Hackers As the investigations into the SolarWinds hack continue, CrowdStrike reports a third malware variant was used in the attack. Researchers at CrowdStrike discovered a malware ... Read more
January 8, 2021 FBI Issues Warning About Ongoing Egregor Ransomware Activity The Federal Bureau of Investigation (FBI) has issued a warning to private sector companies about ongoing Egregor ransomware attacks. Since September 2020, when the ransomware ... Read more
January 2, 2021 Microsoft Says SolarWinds Hackers Viewed its Source Code In December, Microsoft confirmed that it had downloaded the compromised SolarWinds Orion software update that contained the Sunburst/Solarigate backdoor. Microsoft previously announced that the backdoor ... Read more
December 30, 2020 FinCEN Advises Financial Institutions to be Alert to COVID-19 Vaccine-Related Scams and Cyberattacks The Financial Crimes Enforcement Network (FinCEN) has issued a warning to financial institutions that ransomware gangs are actively targeting organizations involved in vaccine research. Financial ... Read more
December 28, 2020 Lazarus Group Targeting COVID-19 Research and Vaccine Data Kaspersky has confirmed the Lazarus Advanced Persistent Threat (APT) group has conducted two cyberattacks on entities involved in COVID-19 vaccine research. The cyberattacks occurred in ... Read more
December 21, 2020 SkyMed Comes to Settlement Agreement with FTC for 2019 Consumer Data Breach SkyMed has com to a settlement agreement with the Federal Trade Commission (FTC) in the aftermath an audit of its information security practices in relation ... Read more
December 18, 2020 Microsoft and the U.S. Nuclear Agency Confirmed as Victims of SolarWinds Hack The number of confirmed victims of the SolarWinds hack is growing. Microsoft has confirmed it was hacked, although its software was not apparently compromised. Reuters ... Read more
December 15, 2020 SolarWinds Supply Chain Attack Impacts up to 18,000 Customers Hackers successfully compromised the SolarWinds Orion software solution and incorporated a backdoor dubbed SUNBURST that has been downloaded by up to 18,000 of its customers, ... Read more
December 14, 2020 Meharry Medical College & MEDNAX Services Email Account Breaches Reported Meharry Medical College located in Nashville, TN, has revealed that an email account breach may have lead to in the illegal access of the protected ... Read more
December 9, 2020 FireEye Discloses Data Breach and Confirms Theft of Red Team Tools The U.S. cybersecurity firm FireEye has announced a sophisticated threat actor has successfully hacked into its systems and stole Red Team assessment tools that the ... Read more
December 7, 2020 Ransomware Gangs Cold Call Victims Attempting to Restore Files from Backups Several ransomware threat actors have taken to cold calling victims who are attempting to restore their files from backups to pressure them into paying the ... Read more