Microsoft Threat Report: How Russia’s War on Ukraine Is Impacting the Global Cybersecurity Community

The Russians are engaged in widespread influence operations designed to erode trust, increase polarization, and threaten democratic processes around the globe.

Johnson Controls Ransomware Cleanup Costs Top $27M and Counting

JCI's latest SEC filing notes that its smart-factory installations weren't compromised, allaying physical security fears.

More Ivanti VPN Zero-Days Fuel Attack Frenzy as Patches Finally Roll

Both China-backed APTs and ordinary cyberattackers have seized on a pair of Ivanti VPN bugs for global exploitation.

Looted RIPE Credentials for Sale on the Dark Web

A monitoring exercise identified user details in 716 compromised RIPE NCC accounts, plus other valuable credentials belonging to those victims.

Cohesity Research Reveals Most Companies Pay Millions in Ransoms

Forcepoint Federal Rebrands As Everfox to Reflect New Era of Defense-Grade Cybersecurity

Feds Reportedly Try to Disrupt 'Volt Typhoon' Attack Infrastructure

The China-linked threat actor's attacks on US critical infrastructure organizations have alarmed American intelligence officials, Reuters says.

PoC Exploits Heighten Risks Around Critical New Jenkins Vuln

The arbitrary file-read flaw can lead to remote code execution.

SolarWinds Files Motion to Dismiss SEC Lawsuit

Responding to SEC charges, SolarWinds fired back with a detailed defense of how a Russian-backed cyber espionage attack on its system was handled.

New Jersey School District Shut Down by Cyberattack

Sunday night, Freehold Township district officials notified its staff and parents that school would not be in session Monday due to technical difficulties caused by a cyber incident.

Israeli Government: Smallest of SMBs Hit Hardest in Cyberattacks

Companies with fewer than 20 employees suffered the largest number of attacks among small to midsize businesses, according to Israel's Small and Medium Business Agency.

Bastille Raises $44M Series C Investment Led by Goldman Sachs Asset Management

Newly ID'ed Chinese APT Hides Backdoor in Software Updates

The threat actor went more than half a decade before being discovered — thanks to a remarkable backdoor delivered in invisible adversary-in-the-middle attacks.

Microsoft Shares New Guidance in Wake of 'Midnight Blizzard' Cyberattack

Threat actors created and abused OAuth apps to access Microsoft's corporate email environment and remain there for weeks.

Series of Cyberattacks Hit Ukrainian Critical Infrastructure Organizations

It's unclear if the attacks — which hit oil and gas, postal service, transport safety, and railway organizations in the nation — were related.

Abu Dhabi Investment Firm Warns About Scam Efforts

A top financial entity warned that its brand is being used to spread cyber scams, as fraud efforts persist throughout the country.

Google Kubernetes Clusters Suffer Widespread Exposure to External Attackers

Misunderstanding the permissions of an authentication group in Google Kubernetes Engine (GKE) opens millions of containers to anyone with a Google account.

CISA's Water Sector Guide Puts Incident Response Front & Center

As cyberattackers increasingly target water suppliers and wastewater utilities, the US federal government wants to help limit the impact of destructive attacks.

AI Learning Initiative Launches for UAE Women

The effort will train 100 women in technology and cybersecurity around artificial intelligence concepts.

Kasseika Ransomware Linked to BlackMatter in BYOVD Attack

An emerging actor is the latest to deploy a tactic that terminates AV processes and services before deploying its payload; the campaign is part of a bigger "bring your own vulnerable driver" trend.

Subway Puts a LockBit Investigation on the Menu

The foot-long sandwich purveyor is looking into LockBit 3.0 claims that it stole reams of data from the proprietary "SBS" network.

SEC Says SIM Swap to Blame for Breached X Account

Crypto hackers gained control of a phone number associated with the government agency's account after MFA was disabled in July.

Millions at Risk As 'Parrot' Web Server Compromises Take Flight

The cyberattackers behind the traffic redirection system (TDS) inject websites with malicious scripts, have control over thousands of servers worldwide, and have ramped up efforts to avoid detection.

CISA Director Jen Easterly Targeted in Swatting Incident

A phone call to authorities claimed that a shooting had taken place on Easterly's block.

Microsoft Falls Victim to Russia-Backed 'Midnight Blizzard' Cyberattack

Russian state-sponsored threat actor Nobelium used a basic password-spray attack to breach Microsoft corporate email accounts, including for execs.

German IT Consultant Fined Thousands for Reporting Security Failing

The company, Modern Solutions, had misconfigured a cloud database, but argues the contractor could only have found the password through insider knowledge.

Israel, Czech Republic Reinforce Cyber Partnership Amid Hamas War

The agreement to enable future sharing of information and experience is part of a spate of inter-country threat intelligence agreements that Israel is signing, as war-related attacks ramp up.

Battling Misinformation During Election Season

Dissemination of false information, often with the intent to deceive, has become a pervasive issue amplified by artificial intelligence (AI) tools.

Survey Shows a Surge in (Artificial) Intelligence

A new Omdia survey shows a rapid increase in generative AI adoption for security

AI Gives Defenders the Advantage in Enterprise Defense

A panel of CISOs acknowledged that artificial intelligence has boosted the capabilities of threat actors, but enterprise defenders are actually benefiting more from the technology.

CISOs Struggle for C-Suite Status Even As Expectations Skyrocket

An IANS survey shows that CISOs shoulder more and more legal and regulatory liability for data breaches, but few are getting the recognition or support they need.

Microsoft: Iran's Mint Sandstorm APT Blasts Educators, Researchers

The Charming Kitten-related cyber-espionage group is posing as legitimate journalists and researchers to get intel on the Israel-Hamas war.

Missing the Cybersecurity Mark With the Essential Eight

Australia's Essential Eight Maturity Model still doesn't address key factors needed to protect today's cloud and SaaS environments.

Citrix Discovers 2 Vulnerabilities, Both Exploited in the Wild

These vulnerabilities are the second and third for Citrix but are not expected to be as detrimental as "CitrixBleed."

Cybercrooks Target Docker Containers With Novel Pageview Generator

Cyberattackers are exploiting Docker instances to drop the bot-tastic 9hits Web traffic generator and "earn" valuable credits that can be turned into cash.

With Attacks on the Upswing, Cyber-Insurance Premiums Poised to Rise Too

Insurers doubled premiums in late 2021 to offset losses from ransomware claims. With attacks rising again, organizations can anticipate a new round of increases.

'Punchmade Dev' Cybercrime Rapper Launches Cash-Scamming Web Shop

For a small sum, users can reportedly buy Cash App credentials already loaded with thousands of dollars.

CISA: AWS, Microsoft 365 Accounts Under Active 'Androxgh0st' Attack

Cyberattackers are targeting Apache webservers and websites using the popular Laravel Web application framework in order to steal credentials for the apps.

Q&A: How One Company Gauges Its Employees' Cybersecurity 'Fluency'

Cybersecurity compliance training is commonplace, but one Jordan-based company has taken an extra step in testing.

Ivanti Zero-Day Exploits Skyrocket Worldwide; No Patches Yet

Anyone who hasn't mitigated two zero-day security bugs in Ivanti VPNs may already be compromised by a Chinese nation-state actor.

Bosch Smart Thermostat Feels the Heat From Firmware Bug

The vulnerability in a popular hospitality industry gadget allows attackers to take over the device, pivot into the user's network, or brick the device entirely, rendering HVAC unusable.

Africa, Middle East Lead Peers in Cybersecurity, But Lag Globally

Both regions score above average compared to similar sized economies, but investing in updated technologies and patching processes would help cyber resilience globally.

UAE Cyber Security Council, Khalifa University Launch Abu Dhabi Academy

The university will also join the Emirates' National Cybersecurity Center of Excellence.

Anti-Ransomware Coalition Bound to Fail Without Key Adjustments

International pledge to reject ransomware demands misses the most important way to combat cybercrime: prevention.

As Enterprise Cloud Grows, So Do Challenges

Parenting teaches many lessons, including that difficulties get more complicated as you grow. Here's what to look for in a partner to share the "big-kid problems" of distributed cloud.

Zero Trust, AI, Capital Markets Drive Consolidation in Cloud Security

Companies that quickly shifted to cloud-native operations are looking for greater visibility and protection — and AI benefits — while an uncertain economic future has VCs looking toward safety.

Name That Toon: Cast Adrift

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

CISA Adds 9.8 'Critical' Microsoft SharePoint Bug to its KEV Catalog

It's a tale as old as time: an old, long-since patched vulnerability that remains actively exploited.

GitLab Releases Updates to Address Critical Vulnerabilities

Two vulnerabilities are critical, and three others are determined to be of high, medium, and low severity.

Hyundai MEA X Account Hacked, Followed by Crypto Promotion

Attackers hit more X accounts to promote Overworld Bitcoin registration.

Cybersecurity Incidents Consistently Increase in UAE

Malicious insider threats are increasingly becoming a cause for concern among businesses in the United Arab Emirates.

Critical Start Implements Cyber Risk Assessments With Peer Benchmarking and Prioritization Engine

Claroty Welcomes Former US National Cyber Director Chris Inglis to Advisory Board

CES 2024: Will the Coolest New AI Gadgets Protect Your Privacy?

Consumer electronics manufacturers are innovating fast. Regulators are slow to keep up. Data privacy is in the balance.

Bitcoin Prices Spike After SEC X Account Hack

A fraudulent post was taken down in less than 20 minutes, but that didn't stop it from gaining over 1 million views in that short period of time.

Adapting Security to Protect AI/ML Systems

AI/ML libraries create much larger attack surfaces, and traditional IT security lacks several key capabilities for protecting them.

Has the Investment Bubble Burst in Israeli Cybersecurity?

Start-up funding for new Israeli cybersecurity companies has plummeted — and market-watchers expect that to continue throughout 2024.

Path Traversal Bug Besets Popular Kyocera Office Printers

A printer bug could lead to much worse, in IT networks without proper segmentation.

Ransomware Gang Gives Toronto Zoo the Monkey Business

As the investigation continues, the zoo reports that it does not store the credit card information of its guests.

Delinea Acquires Authomize to Strengthen Extended PAM

Turkish APT 'Sea Turtle' Resurfaces to Spy on Kurdish Opposition

An old state-aligned threat actor is back on the radar, thanks to recent EMEA espionage campaigns against a minority ethnic group.

US, Israel Used Dutch Spy to Launch Stuxnet Malware Against Iran

Report says US and Israel spent $1 billion to develop the infamous Stuxnet virus, built to sabotage Iran's nuclear program in 2008.

Beirut Airport Cyberattack Targets Hezbollah

In addition to posting messages criticizing the group, the cyberattackers disrupted flight information and baggage handling systems.

Protecting Critical Infrastructure Means Getting Back to Basics

Critical infrastructure organizations need to recognize that the technology and cybersecurity landscapes have changed.

Iranian Crypto Exchange Misstep Exposes User Details

Iranian citizens' personal details were left visible online due to a misconfigured storage system.

North Korea Debuts 'SpectralBlur' Malware Amid macOS Onslaught

The post-exploitation backdoor is the latest in a string of custom tools aimed at spying on Apple users.

Cyber-Focused FBI Agents Deploy to Embassies Globally

The bureau is adding six new positions placed in locations that include New Delhi and Rome.

Dubai-US Deal Aims to Secure Medical, IoT Devices in the Middle East

IoT surge across the Middle East spawns demand for more secure devices in business, healthcare, and energy.

Apache ERP Zero-Day Underscores Dangers of Incomplete Patches

Apache fixed a vulnerability in its OfBiz enterprise resource planning (ERP) framework last month, but attackers and researchers found a way around the patch.

Russia Kyivstar Hack Should Alarm West, Ukraine Security Chief Warns

If Ukraine's core telephone network can be taken out, organizations in the West could easily be next, Ukraine's SBU chief says.

Administrator Account For Middle East Internet Registry Hacked

The compromise reportedly led to corruption in the routing of a Spanish telecom provider's network.

Mandiant's X (Twitter) Account Hacked to Promote Crypto Scam

The hours-long breach — since resolved — directed users to a suspicious website as attackers posing as crypto-wallet service Phantom took over the feed of the Google subsidiary.

Cybercriminals Flood Dark Web With X (Twitter) Gold Accounts

Verified accounts for celebs and organizations deliver a deep vein of cybercrime riches for crooks.

Pilfered Data From Iranian Insurance and Food Delivery Firms Leaked Online

Online food ordering service and insurance firms hit by mystery hackers using the moniker "irleaks."

Cybercriminals Share Millions of Stolen Records During Holiday Break

The "Leaksmus" event on the Dark Web exposed some 50 million records containing sensitive information from people all around the world.

Cyberattackers Target Nuclear Waste Company via LinkedIn

The hackers were unsuccessful in their attempt, but this is not the first time the company has experienced this kind of attack.

Attackers Abuse Google OAuth Endpoint to Hijack User Sessions

Infostealers such as Lumma and Rhadamanthys have integrated the generation of persistent Google cookies through token manipulation.

Localization Mandates, AI Regs to Pose Major Data Challenges in 2024

With more than three-quarters of countries adopting some form of data localization and, soon, three-quarters of people worldwide protected by privacy rules, companies need to take care.

Startups Scramble to Build Immediate AI Security

AI may be inherently insecure, but only a handful of startups have put forward real visions to mitigate AI's threats and keep data private.

10 Years After Yahoo Breach, What's Changed? (Not Much)

Yahoo customers suffered the largest data breaches in history by some measures. But a decade on, experts warn, we still haven't learned our lesson.