Latest Cybersecurity News and Articles

Beware of this active UK NHS COVID-19 vaccination phishing attack

A very active phishing campaign is underway pretending to be from the UK's National Health Service (NHS), alerting recipients that they are eligible to receive the COVID-19 vaccine.

Russian hack of US agencies exposed supply chain weaknesses

The elite Russian hackers who gained access to computer systems of federal agencies last year didn't bother trying to break one by one into the networks of each department.

San Francisco Law Firm Investigating PupBox Data Breach

The data breach, which occurred over a six-month period last year, resulted in the exposure of the payment card information of tens of thousands of customers of PupBox, Inc.

Dutch COVID-19 patient data sold on the criminal underground

Dutch police have arrested two individuals for allegedly selling data from the health ministry's COVID-19 systems on the criminal underground. The accused had advertised the stolen data on instant messaging apps like Telegram, Snapchat, and Wickr.

Small Security Teams Have Big Security Fears, CISOs Report

CISOs who lead small security teams at large organizations feel more vulnerable to cyberattacks compared with businesses that have more security staff, larger tool sets, and higher budgets.

EMA says some leaked COVID-19 documents 'taken out of context'

Some of the COVID-19 documents leaked online in a cyberattack on the European Medicines Agency disclosed last month were not published in their original form and may have been taken out of context, the regulator said on Monday.

Claroty Discloses Multiple Critical Vulns in Vendor Implementations of Key OT Protocol

Researchers from Claroty this week disclosed multiple critical vulnerabilities in vendor implementations of the Open Platform Communications (OPC) network protocol that is widely used in operational technology (OT) networks.

CrowdStrike Discloses Details of Recently Patched Windows NTLM Vulnerability

One of the vulnerabilities that Microsoft addressed on January 2021 Patch Tuesday could allow an attacker to relay NTLM authentication sessions and then execute code remotely, using a printer spooler MSRPC interface.

Cryptomining DreamBus botnet targets Linux servers

Researchers at Zscaler’s ThreatLabZ team recently analyzed a Linux-based malware family, tracked as DreamBus Botnet, which is a variant of SystemdMiner. The bot is composed of a series of ELF binaries and Unix shell scripts.

DDoS Attackers Exploit Vulnerable Microsoft RDP Servers

Threat actors are exploiting vulnerable Microsoft Remote Desktop Protocol servers to amplify various distributed denial-of-service attacks, according to a report from application and network performance firm Netscout.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags