May 30, 2023 MCNA Dental Reports 8.9 Million Record Data Breach The LockBit ransomware group has claimed responsibility for an attack on MCNA Dental, one of the largest Medicaid and CHIP dental care and oral health ... Read more
May 25, 2023 Barracuda Email Security Gateway Flaw Exploited in Limited Attacks A zero-day vulnerability in Barracuda’s Email Security Gateway (ESG) appliances has been targeted by hackers, resulting in some customers’ appliances being compromised. The vulnerability was ... Read more
May 18, 2023 Russian National Charged for Babuk, Hive, and LockBit Ransomware Attacks The federal government in the United States has formally charged a Russian national that is alleged to have been a key member of the Babuk ... Read more
May 17, 2023 New Ransomware Actor Targeting Critical Infrastructure Firms A new ransomware gang has emerged that has been conducting attacks on critical infrastructure organizations in the United States and South Korea. RA Group has ... Read more
May 10, 2023 University Alert System Hijacked by Ransomware Gang and Used to Aid Extortion A ransomware gang has hijacked an alert system used by a university and used it to issue threats to staff and students to pressure the ... Read more
April 24, 2023 How Long Does It Take a Hacker to Brute Force a Password in 2023 Organizations are increasingly adopting passwordless authentication; however, passwords are still the most common method of securing accounts. The problem with passwords is they can be ... Read more
April 7, 2023 IT Professionals are Pressured into Keeping Security Breaches Quiet Malicious actors are increasingly using automation to conduct sophisticated attacks at scale and organizations are struggling to defend against attacks. IT teams are typically incredibly ... Read more
March 7, 2023 Suspected Core Members of the DoppelPaymer Ransomware Gang Arrested Europol has announced that two individuals suspected of being core members of the DoppelPaymer ransomware group have been arrested in a coordinated law enforcement operation ... Read more
February 28, 2023 LastPass Says DevOps Engineer’s Home Computer was Hacked LastPass has provided another update on the second data breach it experienced last year and has confirmed that the second attack – which was linked ... Read more
February 22, 2023 Atlassian Confirms SiegedSec Hackers Stole Employee Data and Office Floor Plans The enterprise software provider, Atlassian, has confirmed that a hacking group has downloaded sensitive employee data and office floor plans, but says its systems were ... Read more
February 21, 2023 HardBit 2.0 Ransomware Actors Request Insurance Details to Tailor Ransom Demands The HardBit ransomware gang has recently updated its ransomware to version 2.0 and has adopted a new tactic when extorting victims – Convincing them that ... Read more
February 6, 2023 Massive Global Ransomware Campaign Hits Thousands of VMWare ESXi Servers A massive ransomware campaign exploiting a 2-year-old vulnerability in VMWare ESXi servers has seen more than 3,200 servers attacked since Friday. An unknown threat actor ... Read more
January 9, 2023 LastPass Sued for Data Breach to Recover $53,000 in Lost Cryptocurrency The recent data breach at LastPass, which saw customers’ encrypted password vaults stolen, has sparked its first lawsuit from a customer who claims to have ... Read more
December 30, 2022 Hacker Claims to Have Scraped the Data of 400 Million Twitter Users A hacker has recently posted a listing on a popular hacking forum advertising a data set that includes the public and private data of approximately ... Read more
December 23, 2022 LastPass Data Breach: From Bad to Worse, and Worse Still It started with a breach of the LastPass developer environment. No customer data was involved in that breach, but then came the news that some ... Read more
December 14, 2022 Ransomware Attack on HSE in Ireland Has Cost More Than €80 Million In 2021, the Conti ransomware gang conducted a ransomware attack on the Health Services Executive (HSE) in Ireland. Approximately 98,000 patients and 18,200 members of ... Read more
December 7, 2022 Rackspace Confirms Hosted Exchange Outage Caused by a Ransomware Attack The cloud computing company Rackspace has confirmed that its ongoing Hosted Exchange outage was the result of a ransomware attack. The attack was detected on December ... Read more
December 5, 2022 Warning Issued About Possible Expansion of Destructive Cyberattacks Beyond Ukraine’s Borders A hybrid war is being waged in Ukraine involving conventional military operations and non-military methods such as cyberattacks on critical infrastructure and private companies. While ... Read more
November 30, 2022 LastPass Suffers Second Hacking Incident – Some Customer Data Compromised In August 2022, hackers gained access to the development environment of LastPass and stole some of its source code and proprietary technical information only. LastPass ... Read more
November 28, 2022 Public and Nonpublic Information of 5.4 Million Twitter Users Leaked A collection of public and non-public information of 5.4 million Twitter users has been released on a hacking forum and can be downloaded free of ... Read more
November 21, 2022 FBI, CISA, HHS Issue Warning About Hive Ransomware Attacks A joint security alert has been issued to the healthcare and public health sector (HPH) warning about Hive ransomware attacks. The Hive ransomware gang has ... Read more
November 17, 2022 Password Attacks Have Increased by 74% in the Past Year The 2022 Microsoft Digital Defense Report has highlighted a worrying cybercrime trend – A massive increase in password attacks. In the past year there has ... Read more
November 17, 2022 Iranian APT Actor Breached US Government Organization Using Log4Shell Exploit An Iranian Advanced Persistent Threat (APT) actor has exploited the Log4Shell vulnerability (CVE-2021-44228) in an unpatched VMware Horizon server of a Federal Civilian Executive Branch ... Read more
November 10, 2022 Q3 Sees Insider Threat Incidents Reach All-Time High The Kroll Q3 2022 Threat Landscape report shows an increase in insider threat incidents, which reached the highest level to date in Q3, accounting for ... Read more
November 8, 2022 Medibank Refuses to Pay Ransomware Gang to Prevent Release of Customer Data In October, Medibank, one of the largest private health insurers in Australia, suffered a ransomware attack that involved the theft of the data of almost ... Read more
November 4, 2022 MFA Bypassed in Dropbox Phishing Attack Targeting GitHub Credentials Dropbox has announced that it has suffered a phishing-related data breach in which hackers gained access to proprietary code stored in GitHub repositories. The San ... Read more
November 3, 2022 U.S News Websites Delivering Malware Through Compromised Third-Party JavaScript Code A media company that provides video content and advertising on the websites of major news outlets in the United States has been compromised, and its ... Read more
October 3, 2022 Hackers Hide Backdoor Malware in Old Windows Logo A hacking group known as Witchetty (aka LookingFrog) is using steganography to hide backdoor malware within a Windows logo. The campaign is ongoing and has ... Read more
September 29, 2022 IRS Warns of Exponential Increase in IRS-Themed Smishing Attacks The U.S. Internal Revenue Service (IRS) has issued a warning following a massive increase in SMS-based phishing (smishing) attacks over the past few weeks. The ... Read more
September 21, 2022 The Emotet Botnet Is Being Used to Deliver Quantum and BlackCat Ransomware Security researchers at AdvIntel have recently confirmed that the Emotet botnet is currently being used to deliver ransomware payloads, with the operators of the botnet ... Read more