News

Cybersecurity & Infosec

News Aggregator Blog

Microsoft: Chinese Cyberspies Used 4 Exchange Server Flaws to Plunder Emails (Krebs)

Chinese Cyber Attack: U.S. Congressman Urges Biden to Stand by India

SolarWinds Reports $3.5 Million in Expenses From Supply-Chain Attack

Wray Hints at Federal Response to SolarWinds Hack

Microsoft Warns of Chinese Hackers ‘Hafnium’ Targeting Email Product

Microsoft Shares More on What’s Coming in Windows Server 2022

Microsoft Teams Adds End-to-End Encryption (E2EE) to One-on-One Calls

Microsoft 365 Defender Threat Analytics Enters Public Preview

Gamer Sues Microsoft Over Cyberbullying

Google Teams up With Allianz, Munich Re to Insure Its Cloud Users

Jailbreak Tool Works on iPhones Up to iOS 14.3

Medal of Honor Holders’ Identities Stolen

‘Fake Accounts Used My Pictures to Sell Sex’

Satanic Temple Loses Cyber-squatting Lawsuit

Alarming Cybersecurity Stats: What You Need To Know For 2021

Krebs: Payroll/HR Giant PrismHR Hit by Ransomware?

Malaysia Airlines Discloses a Nine-Year-Long Data Breach

Asian Food Distribution Giant JFC International Hit by Ransomware

Zee5 Once Again Caught In Data Breach; Info Of 9 Mn Users Exposed

CSX Probes ‘Security Incident’ as Hackers Leak Data

Oxfam Australia Confirms Data Breach After Stolen Info Sold Online

Millersville University (PA) Says Network Outage Was the Result of an ‘External Attack’

Ransomware Attack Shuts Down Altona Clinic (MB)

Rookie Coding Mistake Prior to Gab Hack Came From Site’s CTO

Researchers Unearth Links Between SunCrypt and QNAPCrypt Ransomware

Malicious NPM Packages Target Amazon, Slack With New Dependency Attacks

Compromised Website Images Camouflage ObliqueRAT Malware

Microsoft Fixes Actively Exploited Exchange Zero-Day Bugs, Patch Now

Google Fixes Second Actively Exploited Chrome Zero-Day Bug This Year

Chinese Hackers Targeted India’s Power Grid Amid Geopolitical Tensions

…Chinese Businessman Plotted With GE Insider to Steal Transistor Secrets, Say Feds

U.S. ‘Unprepared’ to Defend against New AI Threats, Report Finds

New York Group Urges Action on Cyber Coordination

Free Cybersecurity Tool Aims to Help Smaller Businesses Stay Safer Online

Scientists Have Built This Ultrafast Laser-Powered Random Number Generator

Krebs: Is Your Browser Extension a Botnet Backdoor?

Cybercrime ‘Help Wanted’: Job Hunting on the Dark Web

Universal Health Services Lost $67 Million Due to Ryuk Ransomware Attack

Tether Cryptocurrency Firm Says Docs in $24 Million Ransom Are ‘Forged’

…We Are ‘Not Paying’

Facebook Photo-tagging Lawsuit Settled for $650m

Florida Police Arrest 12 Alleged Online Predators

Passwords, Private Posts Exposed in Hack of Gab Social Network

Hurtigruten Reports Passenger Data Exposed in Cyberattack

European E-Ticketing Platform Ticketcounter Extorted in Data Breach

World’s Leading Dairy Group Lactalis Hit by Cyberattack

Kaman Hit by Ransomware Attack, Biden Foreign Policy Change

New South Wales Transport Agency Extorted by Ransomware Gang After Accellion Attack

Cyber Attack on the Ministry of Finance of Kosovo

City of Kingman (AZ) Government Computer System Hit by Cyberattack

Malware Loader Abuses Google SEO to Expand Payload Delivery

Working Windows and Linux Spectre Exploits Found on VirusTotal

Critical Vulnerability Found in Snow Software’s Inventory Agent

Firewall Vendor Genua Patches Critical Auth Bypass Flaw

Congress Has New Appetite for Breach Law Following SolarWinds Hack: Lawmaker

SolarWinds Officials Throw Intern Under the Bus for ‘solarwinds123’ Password Fail

Lawmakers Blame SolarWinds Hack on ‘Collective Failure’ to Prioritize Cybersecurity

Huawei Backs Supply Chain Security Standards in Wake of SolarWinds Breach

NSA, Microsoft Promote a Zero Trust Approach to Cybersecurity

Pits Microsoft Against Dell, IBM Over How Companies Store Data

U.S. Energy Department Floats Solution to Illicit Crypto Mining Malware

Foreign Perpetrators Among Fraudsters Shamming State’s Unemployment Systems

Cyberattacks Cost Hospitals Millions During Covid-19

Amazon Dismisses Claims Alexa ‘Skills’ Can Bypass Security Vetting Process

What Are These Suspicious Google GVT1.Com URLs?

T-Mobile Discloses Data Breach After Sim Swapping Attacks

Ransomware Gang Hits Ecuador’s Largest Private Bank Banco Pichincha, Ministry of Finance

UK’s Npower Shuts Down Mobile App Following Data Breach

Some San Diegans’ Personal Information Provided to Jewish Family Service Exposed Online

Beware: AOL Phishing Email States Your Account Will Be Closed

Stalkerware Volumes Remain Concerningly High, Despite Bans

Yeezy Fans Face Sneaker-Bot Armies for Boost ‘Sun’ Release

Ryuk Ransomware Now Self-Spreads to Other Windows LAN Devices

Google Shares PoC Exploit for Critical Windows 10 Graphics RCE Bug

Microsoft Fixes Windows 10 Drive Corruption Bug — What You Need to Know

German Prosecutors Are Building AI In-House

Cybersecurity Firm Axonius Raises $100 Million at $1.2 Billion Valuation

Microsoft Failed to Shore up Defenses That Could Have Limited SolarWinds Hack: U.S. Senator

Microsoft Shares CodeQL Queries to Scan Code for SolarWinds-Like Implants

Amazon’s Lack of Public Disclosure on SolarWinds Hack Angers Lawmakers

North Korean Hackers Target Defense Industry With Custom Malware

Chinese Hackers Using Firefox Extension to Spy On Tibetan Organizations

DHS Secretary Mayorkas Announces New Initiative to Fight ‘Epidemic’ of Cyberattacks

French Minister: Mafia-Type Gangs Likely Behind Cyber Attacks on Hospitals

Insider Cloud Data Theft Plagues Healthcare Sector

Iraqi MP Suffers Online Extortion

Facebook Takes Out Myanmar Military After Bloody Coup

Krebs: How $100M in Jobless Claims Went to Inmates

ByteDance Agrees to $92 Million Privacy Settlement With U.S. TikTok Teens

Steris Touted as Latest Accellion Hack Victim

Dutch Research Council (NWO) Confirms Ransomware Attack, Data Leak

Gore Medical Management (GA) Has 79,100 Patients’ Data on Unauthorized Computer

FBI, State Police Probing Cyber Hack on Saginaw (MI) Township Schools

Ransomware Attack: Network Outage Forces Affton School District (MO) to Virtual

Students’ Information Compromised by Data Breach at Harvard Business School

RMIT University (Australia) Races to Recover From Cyber Attack Before Students Return

Florida Studio Theatre Endures Ransomware Attack

Bengal Health Website Leaks 8 Million COVID-19 Test Results

Oxford University Says Research Not Affected After Expert Flags COVID Lab Hack

Malicious Mozilla Firefox Extension Allows Gmail Takeover

Ukraine Says Russian Hackers Attack Web-Based State Document System

CrowdStrike Slams Microsoft Over SolarWinds Hack

…NASA and the FAA Were Also Breached by the SolarWinds Hackers

…More SolarWinds Hack Victims Yet to Be Publicly Identified, Tech Executives Say

Congress Looks Towards New Data Breach Laws as Russian Hack Scope Remains Unknown

Biden Signs Supply Chain Order After ‘Positive’ Meeting With Lawmakers

Biden CIA Pick Pledges to Confront China if Confirmed, Speak ‘Truth to Power’

Tax Season Ushers in Quickbooks Data-Theft Spike

Microsoft Lures Populate Half of Credential-Swiping Phishing Emails

Poor Remote Working Behaviors and Procedures Putting Orgs at Risk

Kroger Data Breach Highlights Urgent Need to Replace Legacy, End-of-Life Tools

Universities Face Double Threat of Ransomware, Data Breaches

Google Funds Linux Maintainers to Boost Linux Kernel Security

IT Security Firm Kaseya Acquires SOC Platform RocketCyber

Medical Data of 500,000 French Residents Leaked Online

Five Eyes Members Warn of Accellion FTA Extortion Attacks

Clop Ransomware Gang Extorts Jet Maker Bombardier After Accellion Breach

Cyberpunk 2077 Patch 1.2 Delayed by CD Projekt Ransomware Attack

LazyScripter Hackers Target Airlines With Remote Access Trojans

Around 45k Patients Impacted in Covenant Healthcare Data Breach (MI)

Kentucky Unemployment Office Warns of Potential Cyber-Attack

Cobb Schools (GA) Code Red Alert Investigated as Cyber Attack

Nvidia’s Anti-Cryptomining GPU Chip May Not Discourage Attacks

Heavily Used Node.js Package Has a Code Injection Vulnerability

Mozilla Patches Bugs in Firefox, Now Blocks Cross-Site Cookie Tracking

VMWare Patches Critical RCE Flaw in vCenter Server

Cisco Fixes Maximum Severity MSO Auth Bypass Vulnerability

Microsoft President: The Only Reason We Know About SolarWinds Hack Is Because FireEye Told Us

…SolarWinds, Microsoft, FireEye, CrowdStrike Defend Actions in Major Hack – U.S. Senate Hearing

…Tech Executives Call for Improved Public-Private Coordination After SolarWinds Hack

…Biden Administration to Respond to Russian Hacking, Poisoning in ‘Weeks Not Months’

Vietnam APT32 State Hackers Target Human Rights Defenders With Spyware

Krebs: Checkout Skimmers Powered by Chip Cards

Shadow Attacks Let Attackers Replace Content in Digitally Signed PDFs

Experts Find a Way to Learn What You’re Typing During Video Calls

Twitter Removes Accounts of Russian Government-Backed Actors

Facebook to Restore Australia News, Pay Media Companies in Compromise With Lawmakers

Louisiana College Cyber-Thief Sentenced

Finnish IT Giant TietoEVRY Hit with Ransomware Attack

Filipino Credit App Cashalo Suffers Data Breach

Clubhouse Confirms Data Spillage of Its Audio Streams

10K Microsoft Email Users Hit in FedEx Phishing Attack

Clop Ransomware Gang Leaks Possible Stolen Bombardier Blueprints of GlobalEye Radar Snoop Jet

Florida Man Discovers Personal Information on the Side of Road

Jamaica’s Amber Group Fixes Second JamCOVID Security Lapse

Flash Version Distributed in China After EOL Is Installing Adware

VMware Warns of Critical Remote Code Execution Flaw in vSphere HTML5 Client

IBM Squashes Critical Remote Code-Execution Flaw

Keybase Patches Bug That Kept Pictures in Cleartext Storage on Mac, Windows Clients

Google Adds Password Checkup Support to Android Autofill

Chinese Spyware Code Was Copied From America’s NSA: Researchers

Ukraine Accuses Russian Networks of New Massive Cyber Attacks

DHS Announces New Measures to Boost Nation’s Cybersecurity

U.S. House Committees to Hold Feb 26 Hearing on ‘SolarWinds’ Hack

Texas Electric Company Warns of Scammers Threatening to Cut Power

Toledo Public School Students Seeing Effects of Last Year’s Massive Data Breach

Google Lifting Ban on Political Ads Instituted After Capitol Riots

Watchdog Questions Legality of Using Cellphone Data Without Warrants

Former Employee Behind Earthquakes Stadium Hack

French Boat Maker Beneteau to Suspend Some Production After Cyberattack

Silicon Valley VC Firm Sequoia Capital Phished

BBC Reports Theft of 105 Electrical Devices

ServiceNow Admin Credentials Exposed in Cloud Security Blunder

Assume Clubhouse Conversations Are Being Recorded, Researchers Warn

Powerhouse VPN Products Can Be Abused for Large-Scale DDoS Attacks

Accellion FTA Zero-Day Attacks Show Ties to Clop Ransomware, FIN11

Stored XSS Bug in Apple iCloud Domain Disclosed by Bug Bounty Hunter

SHAREit Fixes Security Bugs in App With 1 Billion Downloads

Biden Calls for Creating ‘Rules’ on Cyber, Tech to Combat China and Russia Threats

Krebs: Mexican Politician Removed Over Alleged Ties to Romanian ATM Skimmer Gang

Northern Ireland Customers Warned Over ‘Royal Mail’ Scam Messages

Google Alerts Abused to Push Fake Adobe Flash Updater

CIS Now Offers Free Ransomware Protection to All U.S. Hospitals

Microsoft Edge Is Crowdsourcing Whether to Show Notification Prompts

SonicWall Releases Additional Update for SMA 100 Vulnerability

Tim Berners-Lee Says Australian Law Would Make Internet ‘Unworkable’

EU Decision Frees U.K. to Handle Europeans’ Personal Data

Kaspersky: Decline in DDoS Attacks Linked to Surge in Cryptocurrency Value

…Crypto Price Surge Invites a Torrent of Crypto Crime

Tech Industry Is Looking to Replace the Smartphone — What Will Apple Come up With?

Hungary Says Vaccine Registration Website Under Cyber Attack

Kroger Data Breach Exposes Pharmacy and Employee Data (Accellion Vuln)

Underwriters Laboratories (UL) Certification Giant Hit by Ransomware

More U.S. Cities Disclose Data Breaches after AFTS’s Ransomware Attack

Yuba County (CA) Focuses on Recovery After Ransomware Attack

Kia Denies Ransomware Attack

Parents Alerted to NurseryCam Security Breach

New Hack Lets Attackers Bypass MasterCard PIN by Using Them As Visa Card

New Silver Sparrow Malware Found on 30,000 Macs Has Security Pros Stumped

Privacy Bug in Brave Browser Exposes Dark-Web Browsing History of Its Users

Recently Fixed Windows Zero-Day Actively Exploited Since Mid-2020

Chrome for iOS Will Let You Lock Incognito Mode With Face ID

SolarWinds Hackers Studied Microsoft Source Code for Authentication and Email

…White House Now Says 100 Companies Hit by SolarWinds Hack, but More May Be Impacted

…Senate Intelligence Panel to Hold Hearing on SolarWinds Breach Next Week

Congress Faces News Showdown With Facebook, Google

States Push Internet Privacy Rules in Lieu of Federal Standards

Op-Ed: Hackers Are Targeting COVID-19 Vaccinations. Here’s How to Stop Them

FBI: Telephony Denial-of-Service Attacks Can Lead to Loss of Lives

Apple Adds ‘BlastDoor’ Security Feature to Fight iMessage Hacks

…Apple Outlines 2021 Security, Privacy Roadmap

IBM Explores Sale of IBM Watson Health

Software Firm Owner Admits Fraud and CSAM Possession

U.S. Jails Celebrated Nigerian Entrepreneur for Cyber-Fraud

RIPE NCC Internet Registry Discloses SSO Credential Stuffing Attack

34,000 Patients Potentially Impacted by Grand River Medical Group (IA) Data Breach

California DMV Halts Data Transfers After Vendor Breach (AFTS)

Cryptopia Got Hacked While in Liquidation Due to a Hack

‘Secure’ Daycare Video Monitoring Product Beamed DVR Admin Creds to All Users

Hackers Abuse Google Apps Script to Steal Credit Cards, Bypass CSP

Half of Apps Contain at Least One Serious Exploitable Vulnerability

Mac Malware Targets Apple’s In-House M1 Processor

U.S. Shares Info on North Korean Malware Used to Steal Cryptocurrency

SDK Bug Lets Attackers Spy on User’s Video Calls Across Dating, Healthcare Apps

Exploit Details Emerge for Unpatched Microsoft Bug

U.S. Says Threat Posed by North Korea Cyber Activity Part of Policy Review

…Krebs: U.S. Indicts North Korean Hackers in Theft of $200 Million

Biden to Take ‘Executive Action’ to Address SolarWinds Breach

…White House Cyber Adviser Says It Will Take Months to Investigate Russian Hack

Senate Intel Leader Demands Answers on Florida Water Treatment Center Breach

Stolen Jones Day Law Firm Files Posted on Dark Web

…Jones Day Denies Network Breach

China Requiring Bloggers to Obtain Government Credentials

Facebook to Restrict News Content in Australia in Response to Proposed Law

Black and LGBT Edinburgh University students attacked in Zoom meeting

Rising Healthcare Breaches Driven by Hacking and Unsecured Servers

Phishing: These Are the Tricks Crooks Use to Make You Open Malware Email Attachments

Kia Motors America Suffers Ransomware Attack, $20 Million Ransom

Jamaica’s Immigration Website Exposed Thousands of Travelers’ Data

15,600 Patients’ Health Info Exposed in Ransomware Attack on Granite Wellness Centers (CA)

Reliant Federal Credit Union (WY) Reports Data Breach

ECU Suffering Customer Dissatisfaction as Confusion Reigns Over Cyber Attack

Russian Sandworm Hackers Only Hit Orgs With Old Centreon Software

Researchers Unmask Hackers Behind APOMacroSploit Malware Builder

Windows, Linux Devices Hijacked In Two-Year WatchDog Cryptojacking Campaign

Masslogger Swipes Microsoft Outlook, Google Chrome Credentials

Agora SDK Bug Left Several Video Calling Apps Vulnerable to Snooping

Ninja Forms WordPress Plugin Bug Opens Websites to Hacks

QNAP Patches Critical Vulnerability in Surveillance Station NAS App

North Korea Accused of Hacking Pfizer for COVID-19 Vaccine Data

Hacker Claims to Have Stolen Files Belonging to Prominent Law Firm Jones Day – Firm Has Ties with Trump

Space Force Starts Transitioning Cybersecurity Professionals Into Its Ranks

Industry Groups Urge Congress to Include Cybersecurity Funding in Coronavirus Relief Package

Firms Patch Greater Number of Systems, but Still Slowly

Under Attack: Hosting & Internet Service Providers

TikTok Hit With European Regulatory Complaints Over Child Safety, Data Privacy

China Blocked Jack Ma’s Ant IPO After Investigation Revealed Likely Beneficiaries

Parler Announces Official Relaunch, Says It Is Back Online

Microsoft Edge Is Getting a New Child-Friendly Kids Mode

Let’s Encrypt Gears Up to Replace 200M Certificates a Day

LastPass to Limit Fans of Free Password Manager to One Device Type Only – Computer or Mobile

Kia Motors America Experiences Massive IT Outage across the U.S.

Omnicom Media Group Reportedly Falls Prey to Cyber Attack

Hoffman Construction Shores up Its Defense Systems After Employee Healthcare Data Breach

Student Data Breached in Cyber Attack on Simon Fraser University (BC)

Lakehead University (ON) Victim of Cyber Attack

French IT Monitoring Firm Centreon Says No Customers Affected by Hacking Campaign

Malvertisers Exploited Browser Zero-Day to Redirect Users to Scams

Unpatched Android App SHAREit with 1 Billion Downloads Threatens Spying, Malware

Misconfigured Baby Monitors Allow Unauthorized Viewing

Microsoft Pulls Bad Windows Update After Patch Tuesday Headaches

Windows 10 Secure Boot Update Triggers BitLocker Key Recovery

Microsoft Releases Azure Firewall Premium in Public Preview

Langevin Hopeful New Armed Services Panel Will Shine New Spotlight on Cybersecurity

Microsoft: SolarWinds Attack Took More Than 1,000 Engineers to Create

French IT Monitoring Company Centreon’s Software Targeted by Russian ‘Sandworm’ Hackers: Cyber Agency

Mercedes Issues eCall Recall

Krebs: Bluetooth Overlay Skimmer That Blocks Chip

This Phishing Email Promises You a Bonus, but Actually Delivers This Windows Trojan Malware

Workforce Opportunity Services Hits the Cybersecurity Skills Gap Head-On

Cyberattack on Dutch Research Council (NWO) Suspends Research Grants

DDoS Attack Takes Down EXMO Cryptocurrency Exchange Servers

Dax-Côte d’Argent Hospital in France Hit by Ransomware Attack

Recent Campbell County Health (WY) Data Breach Affects 900 Patients

Apple Will Proxy Safe Browsing Requests to Hide iOS Users’ IP From Google

Microsoft Will Alert Office 365 Admins of Forms Phishing Attempts

Facebook Meets Apple in Clash of the Tech Titans—‘We Need to Inflict Pain’

Microsoft President: SolarWinds Hack Was ‘Largest and Most Sophisticated Attack’ Ever

SolarWinds: How They Did It

Copycats Imitate Novel Supply Chain Attack That Hit Tech Giants

‘Annoyingly Believable’ Tax Scam Targets Mobile Users

…Scammers Target U.S. Tax Pros in Ongoing IRS Phishing Attacks

It Can Happen to You: Kansas Teen Loses Everything in Ransomware Attack

Three Charged Over Fraudulent Vaccine Website

Egregor Ransomware Members Arrested by Ukrainian, French Police

Years Later, Bloomberg Doubles Down on Disputed Supermicro Supply Chain Hack Story

Pro-India Hackers Use Android Spyware to Spy on Pakistani Military

mHealth Apps Expose Millions to Cyberattacks

Yandex Data Breach Exposes 4K+ Email Accounts

Canadian Discount Car and Truck Rentals Hit by DarkSide Ransomware

Big Huge Games Hit By Cyber Attack

FBI Investigating After Cyber Attack on Central Piedmont Community College (NC)

CD Projekt’s Stolen Source Code Allegedly Sold by Ransomware Gang

Secret Chat in Telegram Left Self-Destructing Media Files On Devices

Google Chrome, Microsoft Edge Getting This Intel Security Feature

White House Names Anne Neuberger to Lead Response to SolarWinds Hack

Biden to Sign Executive Order Addressing Chip Shortage

Lawmakers Introduce Bipartisan Bill to Allow for Increased Use of Internet-Connected Devices

Military, Nuclear Entities Under Target By Novel Android Malware

U.N. Members Plan New Cyber Group as States Suffer Large-Scale Hacks

Illinois Is State Hit Hardest by Cybercrime

Hackers Ask Only $1,500 for Access to Breached Company Networks

Pre-Valentine’s Day Malware Attack Mimics Flower, Lingerie Stores

India Calls Out Twitter for Differential Treatment

Facebook Tries to Seize Websites Set up for Staff Security Training

Singtel, QIMR Berghofer Report Accellion-Related Data Breaches

Bannock County (ID) Notifies Citizens of Data Breach

Various Malware Lurks in Discord App to Target Gamers

TrickBot’s BazarBackdoor Malware Is Now Coded in Nim to Evade Antivirus

Buggy WordPress Plugin Exposes 100k Sites to Takeover Attacks

12-Year-Old Windows Defender Bug Gives Hackers Admin Rights

Microsoft Warns of an Increasing Number of Web Shell Attacks

Internet Explorer 11 Zero-Day Vulnerability Gets a Free Micropatch

Intel Fixes Vulnerabilities in Windows, Linux Graphics Drivers

Apax to Acquire Herjavec Group

Biden Holds 1st Call As President With China’s Xi As Trade, Security Issues Loom

…TikTok Sale to Oracle, Walmart Is Shelved as Biden Reviews Security

…Tencent Executive Held by China Over Links to Corruption Case

Biden Announces U.S. Sanctions against Leaders of Myanmar Military Coup

Iran Has Started Producing Uranium Metal, in Violation of 2015 Accords, IAEA Says

U.N. Experts Point Finger at North Korea for $281 Million Cyber Theft, KuCoin Likely Victim

Europol: 10 Held for Alleged $100m Cryptocurrency Theft From Celebs, Others

Election Commission Approves New Guidelines to Secure, Update Voting Equipment

U.S. Coast Guard Orders Maritime Facilities to Report SolarWinds Breaches

Twitter Complies With Indian Government Orders to Block Hundreds of Accounts

Hybrid, Older Users Most-Targeted by Gmail Attackers

Krebs: What’s Most Interesting About the Florida Water System Hack? That We Heard About It at All.

French Health Insurance Co. Mutuelle Nationale des Hospitaliers (MNH) Hit by RansomExx

Syracuse University Data Breach Exposes Nearly 10,000 Names, Social Security Numbers

British Columbia Real Estate Agency Sustains Unusual Ransomware Attack

Ransomware Group Posts Stolen Chatham County (NC) Health Data Online

Hacker Sets Alleged Auction for Witcher 3, CyberPunk 2077 Source Code

Romance Fraud Surges in Lockdown Following Shift to Online Dating

Hacker Admits Stealing College Girls’ Nude Snaps

Following Oldsmar Attack, FBI Warns About Using Teamviewer and Windows 7

Raspberry PIs Running Ubuntu Added to IoT Patching Service KernelCare

SAP Commerce Critical Security Bug Allows RCE

Intel Squashes High-Severity Graphics Driver Flaws

Microsoft Now Forces Secure RPC to Block Windows Zerologon Attacks

Huawei Wants Appeals Court to Overturn FCC’s National Security Ban

…CEO Says He’d Welcome Phone Call from Biden in First Remarks on New U.S. President

Senators Ask Federal Officials to Designate Leader in ‘Disorganized’ SolarWinds Response

…Op-Ed: The SolarWinds Hack Is a Blow: the U.S. Must Prioritize Cybersecurity Now

Cybersecurity Experts Say Oldsmar Water System Attack Highlights Larger Vulnerabilities

New BendyBear APT Malware Gets Linked to Chinese Hacking Group

Google Expands Election Security Offerings for Federal and State Campaigns

Office 365 Will Help Admins Find Impersonation Attack Targets

Hackers Targeted Financial Sector in Mass Extortion Campaign

Gaming Industry Is Fraudsters’ Prime Target

Microsoft: Recent Windows 10 Gaming Issues Caused by Discord Bug

Big Data Is Booming in the U.S., but Other Countries Are Making the Rules

Krebs: Arrest, Raids Tied to ‘U-Admin’ Phishing Kit

Cyberpunk 2077 Makers CD Projekt Hit by Ransomware Hack

…HelloKitty Ransomware Behind Attack

Web Hosting Provider No Support Linux Hosting Shuts Down After Cyberattack

Hackley Community Care (MI) Notifies Affected Patients of Data Breach

Kokomo-Howard Public Library (IN) Hit With Ransomware Attack

Researcher Hacks Microsoft, Apple, More in Novel Supply Chain Attack

Android Devices Hunted by LodaRAT Windows Malware

Google Play Boots Barcode Scanner App After Ad Explosion

Actively Exploited Windows Kernel EoP Bug Allows Takeover

Attackers Exploit Critical Adobe Flaw to Target Windows Users

Adobe Fixes Critical Reader Vulnerability Exploited in the Wild

Apple Fixes SUDO Root Privilege Escalation Flaw in macOS

Krebs: Microsoft Patch Tuesday, February 2021 Edition

Iran ‘Hides Spyware in Wallpaper, Restaurant and Games Apps’

Hackers Try to Contaminate Florida Town’s Water Supply Through Computer Breach

Billions of Passwords Offered for $2 in Cyber-Underground

Emotet Takedown: Short-Term Celebration, Long-Term Concerns

iPhone 12 Magnet Array Can Disrupt Implantable Medical Devices

Facebook to Take Down Posts With False Claims About Vaccines

Virginia Lawmakers Poised to Pass New Rules for Internet Privacy

Paralegal’s Pal Admits Outing Witnesses

Crypto Fund Founder Pleads Guilty to $100m Fraud Scheme

Hackers Hit Nebraska Medical Center, U of Nebraska With Malware, Steal Patient and Employee Records

Seattle-based Automatic Funds Transfer Services Hit With Data Breach

Emsisoft Suffers System Breach

Cannabis Cultivator Cann Group Loses $3.6 Million in Cyber Attack

WestRock January Ransomware Attack Hinders Packaging Production

Experian Investigating Whether Serasa Involved in Brazil Data Breach

Android App Barcode Scanner Joins the Dark Side, Sends Malware Update to Millions

Critical WordPress Plugin Flaw Allows Site Takeover

Microsoft to Alert Office 365 Users of Nation-State Hacking Activity

Cruz Blocks Vote on Biden Commerce Secretary Nominee Over Huawei Concerns

Former U.S. Cyber Chief Chris Krebs Calls for Military to Attack Hackers

Industrial Networks See Sharp Uptick in Hackable Security Holes

First Eletrobras, Now Copel Energy Companies Hit by Ransomware Attacks

Several .LK Domains Crashed Due to Cyber Attack

Ziggy Ransomware Shuts Down and Releases Victims’ Decryption Keys

New Phishing Attack Uses Morse Code to Hide Malicious URLs

Don’t Post Your Coronavirus Vaccination Card Selfie on Social Media

Signal Ignores Proxy Censorship Vulnerability, Bans Researchers

Temporary Restrictions on GameStop, Other Stocks Lifted by Robinhood

South Carolina Plans Cyber-Ecosystem

SitePoint Discloses Data Breach After Stolen Info Used in Attacks

SN Servicing Corporation Discloses Ransomware Attack to Multiple States

Hackers Post Patient Medical Records From Florida and Texas Hospital Chains

36,000+ UPMC Patients May Have Had Personal Data Accessed Due to Breach

Winthrop (MA) Public Schools, Town Offices Targeted in Cyber Attack

Chrome Users Have Faced 3 Security Concerns Over the Past 24 Hours

Microsoft Warns of Increasing OAuth Office 365 Phishing Attacks

Unpatched WordPress Plugin Code-Injection Bug Afflicts 50K Sites

Fortinet Fixes Critical Vulnerabilities in SSL VPN and Web Firewall

Mozilla Fixes Windows 10 NTFS Corruption Bug in Firefox

‘Cyberpunk 2077’ Update Fixes a Save File Exploit on PC

Biden: U.S. Taking ‘Urgent’ Steps to Improve Cybersecurity

House Democrat Warns Big Tech to ‘Step up in Big Way’ or Risk Section 230 Changes

Krebs: Facebook, Instagram, TikTok and Twitter Target Resellers of Hacked Accounts

Israeli Hackers Breach KKK-Affiliated Website

Automated Tools Increasingly Used to Launch Cyber-Attacks

Ransomware Attacks Increasingly Destroy Victims’ Data by Mistake

Hackers Steal StormShield Firewall Source Code in Data Breach

Hacking Group Also Used an IE Zero-Day Against Security Researchers

Clearview AI Raises Disquiet at Privacy Regulators

Data Drought Slows Advance of AI in Cybersecurity

IBM Announces $3M Cybersecurity Grants for US Schools

Brazil’s Eletrobras Says Nuclear Unit Hit With Cyberattack

Oxfam Australia Investigates Data Breach After Database Sold Online

Spotify Suffers Second Credential-Stuffing Cyberattack in 3 Months

Victor Central School District (NY) Hit with Ransomware Attack

Woodland Trust Hit by Cyber Attack in December

Nespresso Smart Cards Hacked to Provide Infinite Coffee

Plex Media Servers Actively Abused to Amplify DDoS Attacks

Microsoft Office 365 Attacks Sparked from Google Firebase

Android Devices Prone to Botnet’s DDoS Onslaught

Critical Bugs Found in Popular Realtek Wi-Fi Module for Embedded Devices

Google Fixes Chrome Zero-Day Actively Exploited in the Wild

Hackers Lurked in SolarWinds Email System for at Least 9 Months, CEO Says

Op-Ed: The Best Way for Biden to Go on the Cyber Counterattack

SolarWinds Orion Bug Allows Easy Remote-Code Execution and Takeover

Federal Cyber Agency Reevaluating Its Role in Countering Election Disinformation

Parler CEO John Matze Says He’s Been Terminated by Board: ‘I Did Not Participate in This Decision’

Myanmar’s New Military Government Bans Facebook

Tulsa Mayor’s Cyber-stalker Jailed

Owners of Fertility App Premom Sued Over Non-Consensual Data Sharing

EscortReviews.com Data Breach Affects 470,000 Members

Over a Dozen Chrome Extensions Caught Hijacking Google Search Results for Millions

New Malware Hijacks Kubernetes Clusters to Mine Monero

Latest acOS Big Sur Also Has SUDO Root Privilege Escalation Flaw

Microsoft Defender ATP Detects Chrome Updates as PHP Backdoors

Cisco Fixes Critical Code Execution Bugs in SMB VPN Routers

Five Critical Android Bugs Patched, Part of Feb. Security Bulletin

SonicWall Fixes Actively Exploited SMA 100 Zero-Day Vulnerability

Suspected Chinese Hackers Used SolarWinds Bug to Spy on U.S. Payroll Agency

U.S. Court System Ditches Electronic Filing, Goes Paper-Only for Sensitive Docs Following SolarWinds Hack

Officials Applaud Confirmation of Mayorkas as DHS Secretary for Cybersecurity

Hospitals Suffer New Wave of Hacking Attempts

Babyk Ransomware Won’t Hit Charities, Unless They Support LGBT, BLM

Ransomware Gangs Made at Least $350 Million in 2020

…Average Ransom Payments Declined Last Quarter

Interview With a Russian Ransomware Cybercriminal

Krebs: ‘ValidCC,’ a Major Payment Card Bazaar and Looter of E-Commerce Sites, Shuttered

Crypto Crook Hired Steven Seagal to Promote Scam, Now Faces Charges

Medical Researcher Jailed for Selling Secrets to China

Google Funds Project to Secure Apache Web Server With New Rust Component

Netgain Ransomware Incident Impacts Local Governments

Rotterdam (NY) Alerts Residents of Data Breach

Data on 3.2 Million DriveSure Clients Exposed on Hacking Forum

Vermont Labor Commissioner Apologizes for Tax Data Breach

Goodwin Procter Law Firm Says It Was Hit by Data Breach of Vendor

Baldwin Wallace University (OH) Was Targeted for Cyber Attack

Oklahoma State Tourism Department Reports Data Breach, No Social Security, Financial Data Compromised

Magento Web Skimmers Piggyback in Ongoing Costway Website Compromise

Tiny Kobalos Malware Bedevils Supercomputers to Steal Logins

Agent Tesla Trojan ‘Kneecaps’ Microsoft’s Anti-Malware Interface

Trickbot Malware Now Maps Victims’ Networks Using Masscan

Microsoft Defender Now Detects macOS System, App Vulnerabilities

Apple Pulls iCloud 12 for Windows 10 With Keychain Sync Feature

Intel Agency Warns of Threats From China Collecting Sensitive U.S. Health Data

…May Have Personal Data of 80% of U.S. Adults

EU Aims to Seal Data-Flow Deals With U.S. and Britain

U.S. Gov’t: Number of Identity Theft Reports Doubled Last Year

Scammers Posing as FBI Agents Threaten Targets With Jail Time

Phishing Campaign Lures U.S. Businesses With Fake PPP Loans

Global Gov’t Outsourcer Serco That Runs Part of the UK COVID-19 Test & Trace Program Hit by Ransomware

Krebs: UK Arrest in ‘SMS Bandits’ Phishing Service

Greek Police to Introduce Live Facial Recognition

6 Cybersecurity Start-Up Trends to Track

Personal Data of 1.4 Million Washington Unemployment Claimants Exposed in State Auditor Hack

Wind River Security Incident Affects SSNs, Passport Numbers

European Volleyball Org’s Azure Bucket Exposed Reporter Passports

Westlake Police Department (OH) Hit by Ransomware That Made Some Evidence Disappear

Florida Healthy Kids Data Hacked, Dating Back to 2013

Alleged Gaming Software Supply-Chain Attack Installs Spyware on NoxPlayer

SonicWall SMA 100 Zero-Day Exploit Actively Used in the Wild

Trickbot Trojan Back from the Dead in New Campaign

Critical Libgcrypt Crypto Bug Opens Machines to Arbitrary Code

New State Department Cyber Bureau Stirs Opposition

Lawmakers Grill NSA on Years-Old Breach in the Wake of Massive Russian Hack

Xiaomi Sues U.S. in Bid to Remove Itself From Communist Chinese Military Company List

Krebs: The Taxman Cometh for ID Theft Victims

Home Working Increases Cyber-Security Fears

Fonix Ransomware Shuts Down and Releases Master Decryption Key

Vovalex Is Likely the First Ransomware Written in D

Here’s How Law Enforcement’s Emotet Malware Module Works

Cisco’s SpamCop Anti-Spam Service Suffers an Outage After Its Domain Expired

Industrial Gear at Risk from Fuji Code-Execution Bugs

Car Makers Seek Ways to Secure Data Needed to Build Connected Services

Miss England Social Media Accounts Held to Ransom by Cyber-Attackers

Facebook Said to Consider Suing Apple Over App Store Practices

Retired Nevada Cyber-Cop Charged with Forgery and Bigamy

Malicious ‘Home Depot’ Ad Gets Top Spot in Google Search

Florida Medicaid Website Hacked for 7 Years, Hundreds of Thousands Affected

UK Research and Innovation (UKRI) Suffers Ransomware Attack

Asian Delivery Biz Bykea Exposes 400 Million Records in Privacy Snafu

Perl.com Domain Stolen, Now Using Ip Address Tied to Malware

Washington State Auditor’s Office Breached in Software ‘Security Incident’

Ramsey County (MN) Ransomware Attack Exposes Personal Data of Thousands

Lassen Community College (CA) Victim of Cyber Attack; Feather River College Fine Thus Far

Poor Password Security at the British Branch of Mensa?

New Pro-Ocean Malware Worms Through Apache, Oracle, Redis Servers

WordPress Pop-Up Builder Plugin Flaw Plagues 200K Sites

Microsoft 365 Becomes Haven for BEC Innovation

Windows Installer Zero-Day Vulnerability Gets Free Micropatch

Apple iOS 14 Thwarts iMessage Attacks With BlastDoor System

Social Media Influencer Charged with Election Interference

Facebook ‘Supreme Court’ Orders Social Network to Restore 4 Posts in 1st Rulings

Robinhood Restricts Trading of Companies Targeted by Reddit Users

Jack Ma’s Ant Plans Major Revamp in Response to Chinese Pressure

If You Want to Get Through China’s Great Firewall, Don’t Forget Shadowsocks

Utah Ponders Making Online ‘Catfishing’ a Crime

Facial Recognition: Don’t Use It to Snoop on How Staff Are Feeling, Says Watchdog

Microsoft: 8 Trillion Daily Signals Power Our Cybersecurity Services

Talent and Capital Are Shifting Cybersecurity Investors’ Focus Away From Silicon Valley

USCellular Hit by a Data Breach After Hackers Access CRM Software

Crisp Regional Health Services (GA) Falls Victim to Ransomware Attack

Italy CERT Warns of a New Credential Stealing Android Malware ‘Oscorp’

Rocke Group’s Malware Now Has Worm Capabilities

LogoKit Simplifies Office 365, SharePoint ‘Login’ Phishing Pages

Hezbollah Hackers Attack Unpatched Atlassian Servers at Telcos, ISPs

Microsoft: North Korean ‘Zinc’ Hackers ‘Likely’ Hit Researchers With Chrome Exploit

Google Chrome Blocks 7 More Ports to Stop NAT Slipstreaming Attacks

How to Make Cybersecurity a Top Priority for Boards and CFOs

Biden’s Cyber Priorities Zero in on Russian Hack

McCaul Urges Senators to Block Vote on Commerce Secretary Over Huawei Concerns

What Tech Can the President Use?

Krebs: International Action Targets Emotet Crimeware

…Europol: Emotet Malware Will Uninstall Itself on March 25th

…Krebs: Arrest, Seizures Tied to NetWalker Ransomware

New Zealand Financial Markets Regulator Says NZX Failed to Meet Tech Standards

Many Cybersecurity Job Candidates Are Subpar, On-the-Job Training Falls Short

Tampa Cybersecurity Firm ReliaQuest Hired to Protect Super Bowl From Hackers

Insurers Defend Covering Ransomware Payments

Grindr Faces $11.7m Data Privacy Fine

Warning Issued Over Hackable ADT’s LifeShield Home Security Cameras

Midland University Update on Auxiliary Systems Ransomware Incident

TeamTNT Cloaks Malware With Open-Source Tool

Remote Attackers Can Now Reach Protected Network Devices via NAT Slipstreaming

New Docker Container Escape Bug Affects Microsoft Azure Functions

Apple Patches Three Actively Exploited Zero-Days, Part of iOS Emergency Update

Microsoft Rolls Out Application Guard for Office to All Customers

Here’s how a researcher broke into Microsoft VS Code’s GitHub

Microsoft’s Security Business Swells to $10 Billion

Apple, Facebook Report Increase in Earnings at the End of 2020

Google: North Korea Hackers Use Social Media to Target Security Researchers

…I Was Targeted by North Korean 0-Day Hackers Using a Visual Studio Project

The Massive SolarWinds Hack and the Future of Cyber Espionage

…Mimecast Links Security Breach to SolarWinds Hackers

…Three Others Too

Biden Presses Putin on Navalny Arrest and Massive Cyber Hack in First Phone Call

Biden Administration Appoints Chris Derusha as Federal CISO

Governors Hear About the Dangers of a Lackluster CyberResponse, Need for FBI Coordination

South African Government Releases Its Own Browser Just to Re-Enable Flash Support

U.S. Cyber Intel Officer Gets 11 Years for Kidnapping Her Kid, Trying to Defect to Russia

Hacker Admits Targeting Major U.S. Websites

Targeted Phishing Attacks Strike High-Ranking Company Executives

23M Gamer Records Exposed in VIPGames Leak

TikTok Flaw Lay Bare Phone Numbers, User IDs For Phishing Attacks

Pan-Asian Retail Giant Dairy Farm Suffers REvil Ransomware Attack

Scottish Prison Service Hit by Cyber Attack as Hackers ‘From Morocco’ Target Website

Cybercriminals Use Deceased Staff Accounts to Spread Nemty Ransomware

Nefilim Ransomware Gang Hits Jackpot with Ghost Account

DanaBot Malware Roars Back into Relevancy

New Linux SUDO Flaw Lets Local Users Gain Root Privileges

Google Fixes Severe Golang Windows RCE Vulnerability

Nvidia Squashes High-Severity Jetson DoS Flaw

Biden Admin Vows to Hold China ‘Accountable’ While Weighing Approach to Huawei, TikTok

…Assembling Government Cyber Team

…Outgoing FCC Chair Issues Final Security Salvo Against China

High-Profile Hacks Spark Calls for Global Cyber Response

EMA Says Some Leaked COVID-19 Documents ‘Taken Out of Context’

Beware of Active UK NHS COVID-19 Vaccination Phishing Campaign

Ransomware Gangs Are Using These Techniques to Make Victims More Likely to Pay Up

Australia’s Securities Regulator Says Server Hit by Cyber Security Breach

Facebook to Grant Researchers Access to Targeting Information About Political Ads

Twitter Launches User Forum to Combat Misinformation

Google Unions Around the World Form Alpha Global Alliance

That Cute Robot Cop Can Instantly Work Out Who You Are

Hacker Leaks Data of 2.28 Million MeetMindful Dating Site Users

Leading Crane Maker Palfinger Hit in Global Cyberattack

Ransomware Gang Taunts IObit With Repeated Forum Hacks

Tata Sky, Croma Site Vulns Exposed Sensitive Customer Data of Millions

323,277 Cook County, Illinois Records Exposed

Ohio Job and Family Services Security Vulnerability May Have Exposed Personal Data

Florida Breast Cancer Practice Takes EHR Offline Following Cyber Attack

WestRock Company Hit With Cyber Attack

Georgetown County (SC) Falls Victim to Cyber Attack

A New Wormable Android Malware Spreading Through WhatsApp

Cisco DNA Center Bug Opens Enterprises to Remote Attack

Former LulzSec Hacker Releases VPN Zero-Day Used to Hack Hacking Team

After Big Hack of U.S. Government, Biden Enlists ‘World Class’ Cybersecurity Team

…The Next Pandemic May Be Cyber — How Biden Administration Can Stop It

Democrats Seek Answers on Impact of Russian Cyberattack on Justice Department, Courts

…Russian Government Warns of U.S. Retaliatory Cyberattacks

Intelligence Agency Gathers U.S. Smartphone Location Data Without Warrants, Memo Says

SEPA Shrugs off 4,000 Files Dumped Online, Saying It’s Nothing Big

Avaddon Now Uses DDoS Attacks to Force Ransomware Victims to Pay, Joining SunCrypt & RagnarLocker

ADT Tech Hacks Home-Security Cameras to Spy on Women

Tesla Sues Former Employee for Allegedly Stealing Software

Facebook Users Were Mass-Logged Out Friday by Configuration Change

How Cybersecurity Newbs Can Start Out on the Right Foot

SonicWall Hacked Using 0-Day Bugs In Its Own VPN Product

Intel: Hackers Stole Unpublished Earnings Info From Corporate Site

Data Breach at Buyucoin Crypto Exchange Leaks User Info, Trades

Bonobos Clothing Store Suffers a Data Breach, Hacker Leaks 70GB

Clop Ransomware Gang Dumps Sensitive Files From Atlantic Records’ London Ad Agency The7stars Online

MyFreeCams Site Hacked to Steal Info of 2 Million Paying Users, Offering to Sell for Bitcoin

Amazon Kindle RCE Attack Starts with an Email

Discord-Stealing CursedGrabber Malware Invades npm Packages

Experts Detail A Recent Remotely Exploitable Windows Vulnerability

SAP SolMan Exploit Released for Max Severity Pre-Auth Flaw

Drupal Releases Fix for Critical Vulnerability With Known Exploits

Biden Names Acting Chairs to Lead FCC, FTC

Biden’s COVID-19 Strategy Includes Intel Review of Cyber Risks to Vaccine Rollout

…Altered Vaccine Data Exposes Critical Cyber Risks

Federal Cyber Agency Announces New Campaign to Fight Ransomware Attacks

Cyber Criminals Publish More Than 4,000 Stolen SEPA Files

Laptops Given to British Schoolkids Came Preloaded With Malware and Talked to Russia When Booted

Google Searches Expose Stolen Corporate Credentials

Google Forms Set Baseline For Widespread BEC Attacks

Singapore Widens Security Labelling to Include All Consumer IoT Devices

Krebs: DDoS-Guard To Forfeit Internet Space Occupied by Parler

…Judge Denies Request for Amazon to Immediately Restore Parler

…House Oversight Committee Chair Requests FBI Probe of Parler for Alleged Ties to Russia and Its Role in Capitol Siege

France Arrests 14 Over Online Child Sexual Abuse

Intel’s Financially Sensitive Information Stolen by Hacker

Hacker Leaks Data of Millions of Teespring Users

Einstein Healthcare (PA) Network Announces August Breach

Chwapi Hospital (Belgium) Hit by Windows BitLocker Encryption Cyberattack

Ransomware Attack on Mailing Service Exposes Info of 20,000+ Salem Clinic / Oregon Heart Center Patients

French Car Renting Service ‘UCAR’ Victimized by Ransomware Actors

Personal Info May Have Been Compromised in Cyber Attack on Haywood School District (NC)

Ransomware Is Now the Biggest Cybersecurity Concern for CISOs

SQL Server Malware Tied to Iranian Software Firm, Researchers Allege: MrbMiner Campaign

Windows Remote Desktop Servers Now Used to Amplify DDoS Attacks

QNAP Warns Users to Secure NAS Devices Against Dovecat Malware

Microsoft Edge Gets a Password Generator, Leaked Credentials Monitor

Trump Seeks to Curb Foreign Cyber Meddling on Last Day in Office

…Pardons Ex-Google, Uber Engineer Who Plead Guilty to Stealing Trade Secrets

Is Joe Biden’s Peloton Bike Really a Cybersecurity Risk?

Rob Joyce to Take Over as NSA Cybersecurity Director

Chinese Hacking Group Chimera Is Stealing Airline Passenger Details

Cyberattack Fears Raise the Alarm in Eastern European Countries

Microsoft Shares How SolarWinds Hackers Evaded Detection

Quarter of Orgs Don’t Offer Cybersecurity Training Due to Lack of Budget

World Economic Forum Launches How-to Guide on Using Technology Ethically

Monitoring of Employees Faces Scrutiny in Europe

Hacker Leaks Full Database of 77 Million Nitro PDF User Records

Hacker Posts 1.9 Million Pixlr User Records for Free on Forum

NVIDIA Gamers Face DoS, Data Loss from Shield TV Bugs

Butler County (OH) Reinforces Cybersecurity After Holiday Attack

Indonesia’s Diponegoro University Responds to Student Data Breach Allegation

Retail and Hospitality Facing Deluge of Critical Web App Flaws

Critical Cisco SD-WAN Bugs Allow RCE Attacks

List of DNSpooq Vulnerability Advisories, Patches, and Updates

VLC Media Player 3.0.12 Fixes Multiple Remote Code Execution Flaws

Google Chrome Now Checks for Weak Passwords, Helps Fix Them

Biden DHS, Intel Picks Stress Need to Prioritize Cybersecurity After SolarWinds Hack

Malwarebytes Says Some of Its Emails Were Breached by SolarWinds Hackers

SolarWinds Malware Arsenal Widens with Raindrop

FireEye Publishes Details of SolarWinds Hacking Techniques, Gives Free Tool to Detect Signs of Intrusion

SolarWinds Attack Underscores ‘New Dimension’ in Cyber-Espionage Tactics

Police Arrest Woman FBI Says May Have Tried to Sell Pelosi Computer Device

Krebs: New Charges Derail COVID Release for Hacker Who Aided ISIS

Suspicious Vaccine-Related Domains Triple

Interpol: Trading Scammers Lure Love-Struck Victims via Dating Apps

Awareness Isn’t Enough: It’s Time for Security Leaders to Change Behaviors

Atlanta Synagogue Reports Cyber-Attack

Okanogan County (BC) Hit by Cyber Attack, Affecting Phone and Email

Hendrick Health System (TX) Cyber Attack Exposes Patients’ Personal Info

Livecoin Slams Its Doors Shut After Failing to Recover From Hack

Cloud Config Error at Defunct App Fleek Exposes X-Rated College Pics

Bugs in Signal, Facebook, Google Chat Apps Let Attackers Spy on Users

Fake Collaboration Apps Are Stealing Data as Staff Struggle With Home Working Security

Linux Devices Under Attack by New FreakOut Malware

MAZE Exfiltration Tactic Widely Adopted

DNSpooq Flaws Allow DNS Hijacking of Millions of Devices

Woman May Have Tried to Sell Pelosi Computer Device to Russians, FBI Says

FBI Warns of Vishing Attacks Stealing Corporate Accounts

UK Police Warn of Sextortion Attempts in Intimate Online Dating Chats

Scottish Environment Protection Agency Refuses to Pay Ransomware Crooks Over 1.2GB of Stolen Data

Google Cloud: We Do Use Some SolarWinds, but We Weren’t Affected by Mega Hack

SolarWinds Hack Is Quickly Reshaping Congress’s Cybersecurity Agenda

No U.S. Trial for Irish Hacker

OpenWRT Reports Data Breach After Hacker Gained Access to Forum Admin Account

IObit Forums Hacked in Widespread DeroHE Ransomware Attack

Hackers Are Selling Depop App Account Details on the Dark Web for Cheap

Stolen Employee Credentials Put Leading Gaming Companies at Risk of Severe Cyber Attacks

Microsoft Defender to Enable Full Auto-Remediation by Default

More on Joker’s Stash’s End (Krebs)

China A.I. Firms and Huawei Filed to Patent Technology That Could Identify Uighur Muslims

Xiaomi Denies Any Ties With Chinese Military

How Law Enforcement Gets Around Your Smartphone’s Encryption

UK Accidentally Deletes 150k Arrest Records

New Coalition Aims to Combat Growing Wave of Ransomware Attacks

Iconic BugTraq Security Mailing List Shuts Down After 27 Years

Joker’s Stash, The Largest Carding Marketplace, Announces Shutdown

WhatsApp Delays Controversial Privacy Update

Google Boots 164 Apps From Play Marketplace for Shady Ad Practices

Teens Have Never Known a World Without Data Sharing, and It’s Creating a False Sense of Security

Privacy-Focused Search Engine DuckDuckGo Grew by 62% in 2020

Hackers Leaked Altered Pfizer Data to Sabotage Trust in Vaccines

Hackers Leak Trucker, Rail Worker Medical Records From UPS, Norfolk Southern

Scotland Environmental Regulator Hit by ‘Ongoing’ Ransomware Attack

Exclusive Wentworth Golf Club Hacked

India Seizes Bitcoins Worth $1.2 Million From Hacker of Gov’t Website and Crypto Exchanges

Undisclosed Apache Velocity XSS Vulnerability Impacts GOV Sites

Windows Finger Command Abused by Phishing to Download Malware

Windows 10 Bug Causes a BSOD Crash When Opening a Certain Path

Microsoft Implements Windows Zerologon Flaw ‘Enforcement Mode’

Apple Kills MacOS Feature Allowing Apps to Bypass Firewalls

Biden Includes Over $10 Billion in Cyber, IT Funds as Part of COVID-19 Relief Proposal

…Christopher Krebs: Infrastructure Operators ‘Need to Be Assembling Their Crisis Management Teams Yesterday’

UK Ministry of Defence’s Cyber Warfare Drive Is Burn a Hole Through Its Budget, Warns National Audit Office

NSA Warns Against Using DoH Inside Enterprise Networks

Phishing Warning: These Are the Brands Most Likely to Be Impersonated by Crooks

SolarWinds Defense: How to Stop Similar Attacks

Silicon Valley’s Share of Venture Capital Expected to Drop Below 20% for the First Time This Year

Nintendo Uses Copyright Claims to Take Down Game & Watch Hacking Videos

Facebook: Malicious Chrome Extension Developers Scraped Profile Data

Verified Twitter Accounts Hacked in $580k ‘Elon Musk’ Crypto Scam

Amazon’s Ring Neighbors App Exposed Users’ Precise Locations and Home Addresses

Ring Adds End-to-End Encryption to Quell Security Uproar

Telegram Bots at Heart of Classiscam Scam-as-a-Service

Windows 10 Bug Corrupts Your Hard Drive on Seeing This File’s Icon

Cisco Says It Won’t Patch 74 Security Bugs in Older RV Routers That Reached EOL

Airbnb, HotelTonight Cancel All Washington, DC, Metro Reservations Ahead of Inauguration

…Google Pausing All Political Ads Through Jan. 21

Americans Won’t Be Banned From Investing in Alibaba, Tencent and Baidu

Biden Formally Appoints NSA’s Anne Neuberger to Key National Security Position

Scammers Are Claiming to Sell COVID-19 Vaccines on the Dark Web for up to $1,000 Worth of Bitcoin

Bitcoin Exchange Owner Jailed for Money Laundering

Epik Says It Has Not Discussed Hosting Parler Despite Domain Registration

Parler Hack Yields GPS Data That Tracks Users at U.S. Capitol Riots

Post-Backlash, WhatsApp Spells Out Privacy Policy Updates

TikTok Takes Teen Accounts Private

Iranian Cyberspies Behind Major Christmas Sms Spear-Phishing Campaign

CISA: Hackers Bypassed MFA to Access Cloud Service Accounts

High-Severity Cisco Flaw Found in CMX Software For Retailers

Critical WordPress-Plugin Bug Found in ‘Orbit Fox’ Allows Site Takeover

Poland’s CD Projekt Working With Sony to Bring Back Cyberpunk 2077 – PAP

Microsoft Fixes Secure Boot Bug Allowing Windows Rootkit Installation

Krebs: Microsoft Patch Tuesday, January 2021 Edition

It’s Finally Over! Time to Uninstall Adobe Flash Player

SolarWinds: What Hit Us Could Hit Others (Krebs)

…New Sunspot Malware Found While Investigating SolarWinds Hack

…SolarLeaks Site Claims to Sell Data Stolen in SolarWinds Attacks

…SolarWinds Discloses Earlier Evidence of Hack

Senior Intelligence Official Says China, Russia Targeting COVID-19 Vaccine Supply Chain

Some Data From Last Month’s Cyber Attack Leaked Online, Says EU Drugs Regulator

White House Establishes National Artificial Intelligence Office

Social-Media Watchdogs Detect Signs of Ongoing Extremist Threat

Twitter Cites Capitol Protests in Suspension of 70,000 User Accounts

WhatsApp Users Flock to Rival Message Platforms

Location Data from Muslim Prayer App Sold to Data Broker

Europol Reveals Dismantling of ‘Largest’ Underground Marketplace DarkMarket

Email Security Firm Mimecast Says Hackers Hijacked Its Products to Spy on Customers

Brazil Fuel Distributor Ultrapar Interrupts Operations After Cyber Attack

Data Breach at ‘Resident Evil’ Gaming Company Capcom Widens

New Zealand Central Bank Breach Hit Other Companies

Jefferson Healthcare Hit by ‘Phishing’ Cyber Attack

Clearfield County (PA) Cyber Attack

Colombian Energy, Metal Firms Under Fire in New Trojan Attack Wave

Experts Sound Alarm On New Android Malware Sold On Hacking Forums

Google Reveals Sophisticated Windows and Android Hacking Operation

BumbleBee Opens Exchange Servers in xHunt Spy Campaign

Adobe Fixes 7 Critical Flaws, Blocks Flash Player Content

Critical Microsoft Defender Bug Actively Exploited; Patch Tuesday Offers 83 Fixes

Intel Adds Hardware-Based Ransomware Detection to 11th Gen CPUs

China’s Move to Regulate Its Tech Giants Is Part of Its Bigger Push to Become a Tech ‘Superpower’

SolarWinds Hackers Linked to Known Russian Spying Tools Used by Turla APT, Investigators Say

…FBI Probes Russian-Linked Postcard Sent to FireEye CEO After Cybersecurity Firm Uncovered Hack

U.S. Announces Controversial State Department Cyber-Bureau

Researcher Builds Parler Archive Amid Amazon Suspension

Over 100,000 UN Employee Records Accessed by Researchers

DarkSide Ransomware Decryptor Recovers Victims’ Files for Free

Aliens and UFOs: A Final Frontier for Social Engineers

Thou Shalt Not Hack Indiscriminately, High Court of England Tells Britain’s Spy Agencies

Cybersecurity Insurance Has a Big Problem

Millions of Social Profiles Leaked by Chinese Data-Scrapers

Ubiquiti: Change Your Password, Enable 2FA (Krebs)

Finland Staffing Firm Eilakaisla Hit by Cyber-Attack, Jobseeker and Employee Data Possibly Compromised

Aquaculture Equipment Company Akva Hit by Cyber-Attack

University Medical Center- New Orleans: Patient Info May Have Been Leaked in LSU HCSD Data Breach

Mac Malware Uses ‘Run-Only’ AppleScripts to Evade Analysis

Typeform Fixes Zendesk Sell Form Data Hijacking Vulnerability

Microsoft Releases Linux Endpoint Detection and Response Features

Microsoft Sysmon Now Detects Malware Process Tampering Attempts

Windows 10 Hardware Security Enabled by Default on New Surface PC

Permanent Suspension of @realDonaldTrump

…Why Parler Is About to Disappear From the Internet

Laptop Also Stolen From Pelosi’s Office During Storming of U.S. Capitol, Says Aide

SolarWinds Hires Ex-Homeland Security Official Krebs as Consultant

Cyber Czar to Draw on New Powers From Defense Bill

Space Force Joins Us Intelligence Community to Secure Outer Space

A Look Ahead at 2021: SolarWinds Fallout and Shifting CISO Budgets

Malicious Software Infrastructure Easier to Get and Deploy Than Ever

Ransomware Gangs Are Going After Top Execs to Pressure Companies Into Paying

JPMorgan Chase Hacker Gets 12 Years

New Zealand Reserve Bank Suffers Data Breach via Hacked Storage Partner

Ransomware Forces Three-Week Shutdown of Australia’s Northern Territory Gov’t IT

Dassault Falcon Jet Reports Data Breach After Ransomware Attack

Prestera Center for Mental Health Services (WV) Breach Exposes 3,700+ Patients’ Info

Montreal-Based Car-Sharing Service Communauto Hit by Cyber Attack

Hacker Used Ransomware to Lock Victims in Their IoT Chastity Belt

North Korean Hackers Targeting South Korea with RokRat Trojan

New Attack Could Let Hackers Clone Your Google Titan 2FA Security Keys

Bugs in Firefox, Chrome, Edge Allow Remote System Hijacking

U.S. Judiciary Probes ‘Apparent Compromise’ of Case Management System

…Krebs: Sealed U.S. Court Records Exposed in SolarWinds Breach

…Adds Safeguards

U.S. Senator Says Capitol Building Rioters Made off With Laptop

…How Bad Was the U.S. Capitol Breach for Cybersecurity?

Facebook Extends Trump’s Suspension Until at Least Biden Inauguration

Krebs: QAnon… Who is Q?

State Department Sets up New Bureau for Cybersecurity and Emerging Technologies

Intel Wheels Out New Face Authentication Product That Works a Lot Like Apple’s FaceID

Fired Healthcare Exec Stalls Critical PPE Shipment for Months

SEO Scammer Extorts Site Owners Using Porn Backlinks Threat

JetBrains denies being involved in SolarWinds hack

Minnesota’s Lake Region Healthcare Recovering From Ransomware Attack

Hacker Sells Aurora Cannabis Files Stolen in Christmas Cyberattack

Hackers Post Hackney Council’s ‘Stolen Documents’

FBI Warns of Egregor Ransomware Extorting Businesses Worldwide

Ryuk Gang Estimated to Have Made More Than $150 Million From Ransomware Attacks

The Five Early Warning Signs Of An Imminent Ransomware Attack

Linux Malware Authors Use Ezuri Golang Crypter for Zero Detection

Nvidia Warns Windows Gamers of High-Severity Graphics Driver Flaws

Windows PsExec Zero-Day Vulnerability Gets a Free Micropatch

U.S. Weighs Adding Alibaba, Tencent to China Stock Ban

Treasury Secretary Mnuchin Intervened in NYSE’s Chinese Delisting Saga

…After Pressure, New York Stock Exchange Will Delist 3 Chinese Firms

SolarWinds Hackers Accessed DOJ Emails, but There’s No Indication They Reached Classified Systems

FBI Probe of Major Hack Includes Project-Management Software From JetBrains

Biden Taps Intelligence Veteran Anne Neuberger for New White House Cybersecurity Role

Krebs: Hamas May Be Threat to 8chan, QAnon Online

WhatsApp Will Delete Your Account If You Don’t Agree Sharing Data With Facebook

Don’t Dox Yourself by Tweeting About Data Breaches

It’s Not a Trump Sex Tape, It’s a RAT

Chinese State-Backed Hackers Target Gambling Companies in $100m Ransomware Attack

Two-Year Data Breach Hits Employees’ Email at WTTW, WFMT (IL)

Covid-19: UK Police Warning Over Vaccine Scam Messages

Hackers Start Exploiting the New Backdoor in Zyxel Devices

Nissan Source Code Leaked Online After Git Repo Misconfiguration

Data Exposure Flaw on Walmart.ca Revealed Personal Customer Information

Poor Software Quality Costs US $2.08tn

British Airways Plans £3bn Breach Settlement

Where Is Jack Ma, China’s E-Commerce Pioneer?

…Chinese Regulators Try to Get Jack Ma’s Ant Group to Share Consumer Data

Trump Signs Executive Order Blocking Transactions With Alipay, WeChat Pay, and Six Other Chinese Apps

NYSE Does a U-Turn on Chinese Telecoms Delistings

Trump Administration Rolls Out Plan to Secure Maritime Sector Against Cyber Threats

NSA Shares Guidance, Tools to Mitigate Weak Encryption Protocols

U.S. Intelligence Task Force Accuses Russia of SolarWinds Cyber-Hack

Officials See Few Security Issues as Voters Go to the Polls in Georgia

Website Crashes Mar Early Coronavirus Vaccine Rollouts

Australian Researchers Identify Facebook Mobile Data Can Be Used for COVID-19 Tracing

Indian Government Sites Leaking Patient COVID-19 Test Results

Data from August Breach of Amazon Partner Juspay Dumped Online

Hacker Posts Data of 10,000 American Express Accounts for Free

Major Gaming Companies Hit with Ransomware Linked to APT27

UK Construction Firm Amey Hit by Cyber Attack

Italian Mobile Operator Ho Mobile Offers to Replace Sim Cards After Massive Data Breach

Australian Cybersecurity Agency Used as Cover in Malware Campaign

North Korean Software Supply Chain Attack Targets Stock Investors

ElectroRAT Drains Cryptocurrency Wallet Funds of Thousands

Babuk Locker Is the First New Enterprise Ransomware of 2021

Telegram Triangulation Pinpoints Users’ Exact Locations

Google Warns of Critical Android Remote Code Execution Bug

WikiLeaks Founder Julian Assange Cannot Be Extradited to U.S., Judge Rules

…Mexico Prepared to Offer Assange Asylum, President Says

NYSE to Delist Chinese Telcos on National Security Grounds

China’s APT Hackers Move to Ransomware Attacks

SolarWinds: The More We Learn, the Worse It Looks

Researcher Breaks reCAPTCHA With Google’s Speech-to-Text API

Google Employees Announce Creation of Union

Cyber Startups Face Broader Funding Challenge in 2021

Singapore Police Can Access COVID-19 Contact Tracing Data for Criminal Investigations

Leading Game Publishers Hit Hard by Leaked-Credential Epidemic

TransLink Confirms Ransomware Data Theft, Still Restoring Systems

GenRx Pharmacy Ransomware Attack Resulted In Data Breach

Minnesota Health System Hit by Ransomware Attack

Aurora Cannabis Breach Exposes Personal Data of Former, Current Workers

Cyber-Attack on Apex Laboratory

FBI Warns of Cyberattacks to Distance Learning

Zend Framework Remote Code Execution Vulnerability Revealed

Microsoft Defender for Office 365 to Allow Testing Without Setup

Citrix Adds NetScaler ADC Setting to Block Recent DDoS Attacks

12/31/2020 – 1/3/2021

Microsoft Hacked, Source Code Viewed in Russia-Linked SolarWinds Cyberattack

Cyber Attack on U.S. Government May Have Started Earlier Than Initially Thought – U.S. Senator

The Coolest Hacks of 2020

2021 Cybersecurity Trends: Bigger Budgets, Endpoint Emphasis and Cloud

Adobe Flash Player Is Finally Laid to Rest

Ticketmaster To Pay $10 Million Fine For Hacking A Rival Company

Data Breach Broker Selling User Records Stolen From 26 Companies

Mednax Email Hack Exposes Info of 1.2 Million Patients: 5 Details

Phishing Texts State Your PayPal Account Is ‘Limited’

Secret Backdoor Account Found in Several Zyxel Firewall, VPN Products

Google Chrome Fixes Antivirus ‘File Locking’ Bug on Windows 10

‘Bullet Has Left the Chamber’: Biden Will Not Likely Roll Back Trump Campaign Against China Tech

CISA Updates SolarWinds Guidance, Tells U.S. Gov’t Agencies to Update Right Away

Local Governments Needn’t Face Ransomware Streak Alone, Experts Say

Taking a Neighborhood Watch Approach to Retail Cybersecurity

The Curse of Knowing a Bit About IT: ‘Could You Just…?’ and ‘No I Haven’t Changed Anything’

54 Predictions About The State Of Data In 2021

KrebsOnSecurity Turns 11

T-Mobile Data Breach Exposed Phone Numbers, Call Records

Germany: ‘Colossal’ Cyberattack Knocks Out Funke News Group

Emotet Malware Hits Lithuania’s National Public Health Center

Pune-Based Engineering Company Loses 56,000 Euros in Cyber Attack

New Worm Turns Windows, Linux Servers Into Monero Miners

Adobe Now Shows Alerts in Windows 10 to Uninstall Flash Player

Microsoft: SolarWinds Hackers’ Goal Was the Victims’ Cloud Data

Op-Ed: What Nobody Else Will Say About the New Cybersecurity Crisis

U.S. Treasury Warns of Ransomware Targeting COVID-19 Vaccine Research

FBI: Swatters Hijack Smart Home Devices to Watch Emergency Responders

2020 Work-for-Home Shift: What We Learned

2020 Was the Worst Year Ever for Ransomware: 2021 Will Be More of the Same

Lawsuit Claims Flawed Facial Recognition Led to Man’s Wrongful Arrest

China Eyes Shrinking Jack Ma’s Business Empire

Japanese Aerospace Firm Kawasaki Warns of Data Breach

Voyager Cryptocurrency Broker Halted Trading Due to Cyberattack

Antwerp General Medical Laboratory Becomes Latest Victim of Cyber-Attack

City of Cornelia (GA) Hit by Ransomware Attack

A Google Docs Bug Could Have Allowed Hackers See Your Private Documents

Wasabi Cloud Storage Service Knocked Offline for Hosting Malware

AutoHotkey-Based Password Stealer Targeting US, Canadian Banking Users

Cryptojacking: Has Your Computer Been Hijacked Yet?

India: A Growing Cybersecurity Threat

Follow The Cyber Beat

Get news delivered directly to your inbox.