A very active phishing campaign is underway pretending to be from the UK's National Health Service (NHS), alerting recipients that they are eligible to receive the COVID-19 vaccine.

The elite Russian hackers who gained access to computer systems of federal agencies last year didn't bother trying to break one by one into the networks of each department.

The data breach, which occurred over a six-month period last year, resulted in the exposure of the payment card information of tens of thousands of customers of PupBox, Inc.

Dutch police have arrested two individuals for allegedly selling data from the health ministry's COVID-19 systems on the criminal underground. The accused had advertised the stolen data on instant messaging apps like Telegram, Snapchat, and Wickr.

CISOs who lead small security teams at large organizations feel more vulnerable to cyberattacks compared with businesses that have more security staff, larger tool sets, and higher budgets.

Some of the COVID-19 documents leaked online in a cyberattack on the European Medicines Agency disclosed last month were not published in their original form and may have been taken out of context, the regulator said on Monday.

Researchers from Claroty this week disclosed multiple critical vulnerabilities in vendor implementations of the Open Platform Communications (OPC) network protocol that is widely used in operational technology (OT) networks.

One of the vulnerabilities that Microsoft addressed on January 2021 Patch Tuesday could allow an attacker to relay NTLM authentication sessions and then execute code remotely, using a printer spooler MSRPC interface.

Researchers at Zscaler’s ThreatLabZ team recently analyzed a Linux-based malware family, tracked as DreamBus Botnet, which is a variant of SystemdMiner. The bot is composed of a series of ELF binaries and Unix shell scripts.

Threat actors are exploiting vulnerable Microsoft Remote Desktop Protocol servers to amplify various distributed denial-of-service attacks, according to a report from application and network performance firm Netscout.