New research by WEF found that ransomware attacks rose by 151% in 2021. There were nearly 270 cyberattacks per organization, with each successful security breach costing a company over $3.6 million.

Tracked as CVE-2021-35247, the issue is an input validation vulnerability that could allow attackers to build a query given some input and send that query over the network without sanitation.

Cisco Talos unearthed a new malware campaign involving variants of three RATs, namely NetWire, Nanocore, and AsyncRAT, spreading via public cloud infrastructure. The attackers have used complex code and secured malware using several layers of obfuscation. The campaign targets entities based in coun ... Read More

A major crackdown on cybercriminals in Russia as authorities arrested members of the REvil group, infamous for a supply chain attack against Kaseya, and a ransomware attack against JBS Foods. Police arrested 14 alleged members of the group by raiding at 25 addresses in Moscow, St. Petersburg, and s ... Read More

eSentire analysts found GootLoader operators attacking three law firms and one accounting firm and downloading malicious business agreements and other documents. One of the hacker's malicious website was found hosting 150 rogue pages for users searching for intellectual property and postnuptial agr ... Read More

The CISA added 15 vulnerabilities to its Known Exploited Vulnerabilities Catalog, three of which need to be remediated by federal civilian agencies before January 24. The list contains known vulnerabilities in multiple products from various vendors, including Oracle, Hikvision, FatPipe, VMware ... Read More

Kings Plant Barn has contacted customers about a security breach to FlexBooker, the internet-based system it uses to organize bookings. Names, email addresses, and collection times were exposed.

The bureau’s Internet Crime Complaint Center (IC3), issued a general alert Tuesday about “malicious” QR codes that reroute unsuspecting consumers to the world of cybercrime.

NATO on Monday inked a deal to bolster its cyber support for Ukraine, after a sweeping hacking attack against Kyiv heightened tensions amid fears that Russia could be plotting an invasion.

Project Zero found two flaws, a buffer overflow issue that impacted both Zoom clients and Zoom Multimedia Routers (MMRs), and the other was an information leak security flaw central to MMR servers.