‘Bullet Has Left the Chamber’: Biden Will Not Likely Roll Back Trump Campaign Against China Tech

CISA Updates SolarWinds Guidance, Tells U.S. Gov’t Agencies to Update Right Away

Local Governments Needn’t Face Ransomware Streak Alone, Experts Say

Taking a Neighborhood Watch Approach to Retail Cybersecurity

The Curse of Knowing a Bit About IT: ‘Could You Just…?’ and ‘No I Haven’t Changed Anything’

54 Predictions About The State Of Data In 2021

KrebsOnSecurity Turns 11
T-Mobile Data Breach Exposed Phone Numbers, Call Records

Germany: ‘Colossal’ Cyberattack Knocks Out Funke News Group

Emotet Malware Hits Lithuania’s National Public Health Center

Pune-Based Engineering Company Loses 56,000 Euros in Cyber Attack

New Worm Turns Windows, Linux Servers Into Monero Miners

Adobe Now Shows Alerts in Windows 10 to Uninstall Flash Player


Microsoft: SolarWinds Hackers’ Goal Was the Victims’ Cloud Data

Op-Ed: What Nobody Else Will Say About the New Cybersecurity Crisis

U.S. Treasury Warns of Ransomware Targeting COVID-19 Vaccine Research

FBI: Swatters Hijack Smart Home Devices to Watch Emergency Responders

2020 Work-for-Home Shift: What We Learned

2020 Was the Worst Year Ever for Ransomware: 2021 Will Be More of the Same

Lawsuit Claims Flawed Facial Recognition Led to Man’s Wrongful Arrest

China Eyes Shrinking Jack Ma’s Business Empire
Japanese Aerospace Firm Kawasaki Warns of Data Breach

Voyager Cryptocurrency Broker Halted Trading Due to Cyberattack

Antwerp General Medical Laboratory Becomes Latest Victim of Cyber-Attack

City of Cornelia (GA) Hit by Ransomware Attack

A Google Docs Bug Could Have Allowed Hackers See Your Private Documents

Wasabi Cloud Storage Service Knocked Offline for Hosting Malware

AutoHotkey-Based Password Stealer Targeting US, Canadian Banking Users

Cryptojacking: Has Your Computer Been Hijacked Yet?

India: A Growing Cybersecurity Threat


Biden Calls for Modernizing U.S. Defenses Following Massive Hack

Finnish Parliament Says Some Lawmakers’ Emails Hacked

Hackers Amp Up COVID-19 IP Theft Attacks

CISA Releases Azure, Microsoft 365 Malicious Activity Detection Tool

Ransomware in 2020: A Banner Year for Extortion

Health to Be on Cyber-Security’s Front Line in 2021

After Ledger Hack, Who Can You Trust For Bitcoin Storage?

UK NCA Visits WeLeakInfo Users to Warn of Using Stolen Data
Home Appliance Giant Whirlpool Hit in Nefilim Ransomware Attack

Cyber Attack on Budget Department in the Dominican Republic

Athens (GA) Optometrist Five Points Eye Care Reports Data Breach

Aida Cruises Cancels Trips Due to Mysterious “IT Restrictions”

Multi-Platform Card Skimmer Found on Shopify, BigCommerce Stores

GitHub-Hosted Malware Calculates Cobalt Strike Payload From Imgur Pic

10 Benefits of Running Cybersecurity Exercises


Hackers Also ‘Impacting’ State, Local Governments, U.S. Cybersecurity Agency Says

Suspected Russian Hackers Used Microsoft Vendors to Breach Customers

SolarWinds: Hacked Firm Issues Urgent Security Fix

SolarWinds Releases Updated Advisory for New SUPERNOVA Malware

Cleanup Could Take Months or Longer

Suspected Russian Hackers Tried to Access CrowdStrike’s Email

CrowdStrike Releases Free Azure Security Tool After Failed Hack

Nashville Explosion Uncover Weakness in Communication Infrastructure: Security Expert

GoDaddy Employees Were Told They Were Getting a Holiday Bonus: It Was Actually a Phishing Test

How 2020 Supercharged Cloud Security Companies

Quarterbacking Vulnerability Remediation

Hacker Earns $2m in Bug Bounties on HackerOne

Alibaba, Ant Face Crackdowns From Chinese Regulators

Police Arrest 21 WeLeakInfo Customers Who Bought Breached Personal Data
Koei Tecmo Discloses Data Breach After Hacker Leaks Stolen Data

NetGalley Discloses Data Breach After Website Was Hacked

Russian Crypto-Exchange Livecoin Hacked After It Lost Control of Its Servers

REvil Threaten to Leak Plastic Surgery Pictures From The/Transform Hospital Group

FreePBX Developer Sangoma Hit With Conti Ransomware Attack

Sangoma Technologies Disclose Ransomware Attack: Conti Ransomware Gang Involved

Misconfigured AWS Bucket Exposes Hundreds of Social Influencers

EyeMed Email Hack Exposes Data of 485k+ Aetna, Blue Cross Members

Sky Lakes Finds Ransomware Attack Didn’t Compromise Patient Information

Fake Amazon Gift Card Emails Deliver the Dridex Malware

Attackers Abusing Citrix NetScaler Devices to Launch Amplified DDoS Attacks

Windows Zero-Day Still Circulating After Faulty Fix


SolarWinds Sunburst: UK Data Watchdog Issues Hack Alert

U.S. Homeland Security Warns American Business Not to Use Chinese Tech or Let Data Behind the Great Firewall

FBI: Iran Behind Pro-Trump ‘Enemies of the People’ Doxing Site

No Emails Have Leaked From the 2020 Election Campaigns Yet — Tiny USB Sticks May Be One Reason Why

Lazarus Group Hits COVID-19 Vaccine-Maker in Espionage Attack

Hey Alexa, Who Am I Messaging? Microphones Sensitive Enough to Record PINs and Other Sensitive Info

Web Page Layout Can Trick Users into Divulging More Info

Companies Face Privacy, Data-Flow Risks in Post-Brexit UK

Coalition of Human Rights Groups Joins Suit Against Israeli Firm NSO
Leaky Server Exposes 12 Million Medical Records to Meow Attacker

Data Breach Hits Members of BlueCross BlueShield of Tennessee’s Vision Care Vendor EyeMed

Data Breach Hits 30,000 Signed up to Workplace Pensions Provider Now:Pensions

Cyber-Attack on European Court of Human Rights

PSA: Active Chase Phishing Scam Pretends to Be Fraud Alerts

QNAP Fixes High Severity QTS, QES, and QuTS Hero Vulnerabilities

Windows Zero-Day With Bad Patch Gets New Public Exploit Code

Microsoft 365 Admins Can Now Get Security Incident Email Alerts

Fact vs. Fiction: Film Industry’s Portrayal of Cybersecurity


Biden Says Huge Data Breach Poses ‘Grave Risk’ to U.S., Promises Response

Campaign Says Twitter Will Wipe POTUS Account’s Followers

European Medicines Regulator Says Cyberattack Limited to One It Application

FBI Warns of Ongoing COVID-19 Vaccine Related Fraud Schemes

Phishers Spoof New York Department of Labor

How U.K. Racing Team McLaren Almost Got Phished

Police Seize Safe-Inet VPN Service Beloved by Cyber-criminals

Signal: Cellebrite Claimed to Have Cracked Chat App’s Encryption
Joker’s Stash Carding Site Taken Down

Roanoke College (VA) Delays Spring Semester After Cyberattack

Nintendo Has Reportedly Suffered Another Major Data Leak, Now Related to Switch

Tennessee Medicaid Plan’s Vendor Mails PHI to Wrong Members, Exposes 3,300

University of Vermont Medical Center Finally Admits It Was Victim of Ransomware

Holiday German Shepherd Puppy Swindle Has Consumers Howling

Robinhood User Says $300,000 Restored From Hack, Then Taken Back

Emotet Campaign Restarts After Seven-Week Hiatus


Al Jazeera Journalists ‘Hacked via NSO Group Spyware’

Microsoft, Google, Cisco, Dell Join Legal Battle Against Hacking Company NSO

Barr Says Russia Appears to Be Behind Massive Hack

Russia Officially Denies Large-scale U.S. Hack

Dummy Run Last Year?

‘Dozens of Email Accounts’ Were Hacked at U.S. Treasury -Senator Wyden

New SUPERNOVA Backdoor Found in SolarWinds Cyberattack Analysis

Security Vendors: It’s Time to Come Clean About Intrusions

Trump Breakup Plan for Cyber Command and NSA

U.S. Seizes Domains Used for COVID-19 Vaccine Phishing Attacks

Dutch Program Aims to Deter Young Hackers Before They Commit Crimes

Dark Web Pricing Skyrockets for Microsoft RDP Servers, Payment-Card Data
EXMO Cryptocurrency Exchange Hacked, Loses 5% of Total Assets

Physical Addresses of 270k Ledger Owners Leaked on Hacker Forum

Why Ledger Kept All That Customer Data in the First Place

Auction Software Provider Freedman Hit with Foreign Ransomware Attack

City of Ellensburg (Wa) Hit With Ransomware, All Data Inaccessible

TSYS Staff in Belfast and Derry Told PII at Risk After Ransomware Attack

Smart Doorbell Disaster: Many Brands Vulnerable to Attack

Nosy Ex-Partners Armed with Instagram Passwords Pose a Serious Threat

Critical Bugs in Dell Wyse Thin Clients Allow Code Execution, Client Takeovers

Zero-Click Apple Zero-Day Uncovered in Pegasus Spy Attack


U.S. Cyber-Attack: Around 50 Firms ‘Genuinely Impacted’ by Massive Breach

Russia ‘Clearly’ Behind SolarWinds Operation, Says Pompeo

Romney Calls for Response ‘of Like Magnitude or Greater’ to Russia Hack

Christopher Krebs Says U.S. Should Be ‘Cautious’ About Escalating Cyber War With Russia

‘Powerful Tradecraft’: How Foreign Cyber-Spies Compromised America

Krebs: VMware Flaw a Vector in SolarWinds Breach?

Second Hacking Team Was Targeting SolarWinds at Time of Big Breach

Hackers’ Broad Attack Sets Cyber Experts Worldwide Scrambling to Defend Networks

Cloudflare CEO Says ‘Zero-Trust Architecture’ Is an Answer to U.S. Government Breach

Alibaba Facial Recognition Tech Picks Out Uyghur Minorities

Cloud is King: 9 Software Security Trends to Watch in 2021

Europol Launches New Decryption Platform for Law Enforcement
Unsecured Azure Blob Exposed 500k+ Highly Confidential Docs From UK Firm’s CRM Customers

A Facebook Bug Exposed Instagram Users’ Personal Email Addresses and Birthdays

Google Blames Gmail, YouTube Outage on Error in User ID System

Bouncy Castle Bug Puts Bcrypt Passwords at Risk

Flavors Designer Symrise Halts Production After Clop Ransomware Attack

Greater Baltimore Medical Center Systems Nurse: Hospital ‘Crippled’ by December Ransomware Cyberattack

Stealthy Magecart Malware Mistakenly Leaks List of Hacked Stores

Firefox to Ship ‘Network Partitioning’ as a New Anti-Tracking Defense

Apple, Google, Microsoft, and Mozilla Ban Kazakhstan’s MitM HTTPS Certificate

Cloud is King: 9 Software Security Trends to Watch in 2021

Port of Los Angeles Plans Cyber Intelligence Facility as Maritime Threats Grow


U.S. Cyber-Attack: Hack of Government Agencies and Companies Poses ‘Grave Risk’

‘Will Take Years to Overcome,’ Former National Intelligence Official Says

Microsoft Says It Found Malicious Software in Its Systems

Nuclear Weapons Agency Breached Amid Massive Cyber Onslaught

U.S. Energy Department Probes Hack, Says No Threat to National Security

Hack Suggests New Scope, Sophistication for Cyberattacks

Biden Calls Cybersecurity a ‘Top Priority’

Experts Urge Users to Ignore Facebook Christmas Bonus Scam

How to Use Password Length to Set Best Password Expiration Policy

50% of U.S. Tech Execs Say State-Sponsored Cyber Warfare Their Biggest Threat: CNBC Survey

Google Hit With Another Antitrust Lawsuit by States

EU Regulators Seek to Extend Cybersecurity Rules to More Industries
People’s Energy Data Breach Affects All 270,000 Customers

Forward Air Corporation Likely Hit in Cyberattack

Nation-State Hackers Breached U.S. Think Tank Thrice in a Row

Software Supply-Chain Attack Hits Vietnam Government Certification Authority

Iranian Nation-State Hackers Linked to Pay2Key Ransomware

‘Off the Shelf’ Tor Backdoor Malware SystemBC Is a Firm Favorite With Ransomware Operators

Ransomware Masquerades as Mobile Version of Cyberpunk 2077

Air-Gap Attack Turns Memory Modules into Wi-Fi Radios

Bouncy Castle Crypto Authentication Bypass Vulnerability Revealed

5M WordPress Sites Running ‘Contact Form 7’ Plugin Open to Attack

Ad-Blocker AdGuard Deploys World’s First DNS-over-QUIC Resolver


Krebs: Malicious Domain in SolarWinds Hack Turned into Sunburst ‘Killswitch’

The SolarWinds Perfect Storm: Default Password, Access Sales and More

Billions Spent on U.S. Defenses Failed to Detect Giant Russian Hack

A Wake-up for the World on Cyber Security

Durbin Says Alleged Russian Hack ‘Virtually a Declaration of War’

Trump Aide O’Brien Cuts Europe Trip Short to Deal With Cyber Hack

Trump Twitter ‘Hack’: Police Accept Attacker’s Claim

Christopher Krebs Emphasizes Security of Election as Senators Butt Heads

Suspected Chinese Hackers Stole Camera Footage From African Union – Memo

Ohio Couple Sold Secrets to China

EU Unveils Revamp of Cybersecurity Rules Days After EMA Hack

Biden Faces Early Test on Digital Trade With EU Privacy Talks

Ransomware Attacks on the Rise Even as Cyber Insurers Scale Back

Texas, Other States Bring Antitrust Lawsuit Against Google
Emulated Mobile Devices Used to Steal Millions From U.S., EU Banks

Lithuania Suffers “Most Complex” Cyber-attack in Years

Sonoma Valley Hospital (CA) Notifies 67k Patients of Data Breach

FBI Says DoppelPaymer Ransomware Gang Is Harassing Victims Who Refuse to Pay

Sextortionist Campaign Targets iOS, Android Users with New Spyware

Ryuk, Egregor Ransomware Attacks Leverage SystemBC Backdoor

Ransomware Attackers Using SystemBC Malware With RAT and Tor Proxy

Malicious RubyGems Packages Used in Cryptocurrency Supply Chain Attack

Malicious Chrome, Edge Extensions With 3M Installs Still in Stores

HPE Discloses Critical Zero-Day in Server Management Software

New 5G Network Flaws Let Attackers Track Users’ Locations and Steal Data

Merchant Ships’ Dualog Connection Suite Riddled With Security Vulnerabilities

US-CERT Reports 17,447 Vulnerabilities Recorded in 2020


Krebs: SolarWinds Hack Could Affect 18K Customers

Including Pentagon, State Department

Hackers Turned SolarWinds’ Dominance Against It

Shows Cyber Dangers to Supply Chains

White House: U.S. Taking Any Necessary Steps in Wake of Cyber Attack

Microsoft to Quarantine Compromised SolarWinds Binaries Tomorrow

Moderna COVID-19 Vaccine Documents Accessed in EMA Cyberattack

Facebook Lifts Political Ad Ban for Georgia Runoffs

Gmail Hit by a Second Outage Within a Single Day

Twitter Fined ~$550k Over a Data Breach in Ireland’s First Major GDPR Decision

The Private Sector Needs a Cybersecurity Transformation

The Best Cybersecurity Predictions For 2021 Roundup
Millions of Unpatched IoT, OT Devices Threaten Critical Infrastructure

Beware Christmas Parcel Delivery Scams, Banks Warn

How Hackers Are Trying to Use QR Codes as an Entry Point for Cyber Attacks

Ransomware Masterminds Claim to Have 53GB of Data From Intel’s Habana Labs

Banking Vendor American Bank Systems (ABS) Targeted in Cyber Attack

New Windows Trojan PyMICROPSIA May Soon Target Linux, MacOS Devices

Gitpaste-12 Worm Widens Set of Exploits in New Attacks

Agent Tesla Keylogger Gets Data Theft and Targeting Update

45 Million Medical Images Left Exposed Online

Easy WP SMTP Security Bug Can Reveal Admin Credentials

Firefox Patches Critical Mystery Bug, Also Impacting Google Chrome


Krebs: U.S. Treasury, Commerce Depts. Hacked Through SolarWinds Compromise

U.S. Homeland Security, Thousands of Businesses Also Scramble After Suspected Russian Hack


U.S. Cybersecurity Agency Issues Emergency Directive Following Government Hacks

Undetected for Months

Kremlin Denies

No One Knows How Deep Russia’s Hacking Rampage Goes

Apple Adds Privacy Labels Showing What Information Apps Collect About Users

Microsoft, Nintendo, and Sony Pledge to Make Gaming ‘Safer’ Together

Pornhub Removes All Unverified Content to Combat Child Sexual Abuse

U.S. Jails Journalists’ Cyber-Stalker
Gmail, Youtube, Google Docs, and Other Google Services Hit by Massive Outage

Data Leak Exposes Details of Two Million Chinese Communist Party Members

Norway’s Cruise Line Hurtigruten Hit by Major It Hack

Two Indian Banks Affected by Windows Ransomware Attacks

FBI Investigating Ransomware Attack on Weslaco School District (TX)

Text Messages Promising $1,200 Stimulus Checks Are Actually Scams, IRS Warns

Hacking Group’s New Malware Abuses Google and Facebook Services

New Python-based Windows Trojan Steals Browser Credentials, Outlook Files

Microsoft Office 365 Credentials Under Attack By Fax ‘Alert’ Emails


Suspected Russian Hackers Spied on U.S. Treasury Emails – Sources

Broad Hacking Campaign

Facebook Shutters Accounts Used in APT32 Cyberattacks

When a Top Cybersecurity Firm Like FireEye Gets Hacked, What Is the Takeaway for the Average Netizen?

Was Anna Kendrick’s Twitter Hacked? Offensive Posts on Her Timeline Has Fans Wondering

East London Hackney Cyber-Attack Causes Collapse of Property Purchases

Privacy Groups Alarmed at Supermarket’s Facial Recognition Trial

Ex-Cisco Employee Who Crippled Webex and Cost Cisco Millions Gets 2 Years in U.S. Prison

U.S. Frees ISIL Cyber-Operative

Google Hires Goldman Sachs Veteran Phil Venables to Lead Cloud Security

Microsoft Office Security Updates Fix Critical SharePoint RCE Bugs

Samsung Fixes Critical Android Bugs in December 2020 Updates

Adobe Releases Final Flash Player Update, Warns of 2021 Kill Switch
IT Company SolarWinds Says It May Have Been Hit in ‘Highly Sophisticated’ Hack

Intel’s Habana Labs Hacked by Pay2Key Ransomware, Data Stolen

Dassault Falcon Jet Hit by Windows Ragnar Locker Ransomware

Tax Relief Biz Marriage Tax Refund Exposed Personal Info on 100,000 Clients

Subway UK Customers Receive ‘Malware’ Emails

Subway Marketing System Hacked to Send TrickBot Malware Emails

Jersey City Utilities Agency Investigating Ransomware Attack That Blocked Access to ‘Vital’ Data

Laurentian University Fends off Cyber Attack

PGMiner, Innovative Monero-Mining Botnet, Surprises Researchers

MountLocker Ransomware Offering Double Extortion Scheme to Other Hackers

Security Issues in Verifone and Ingenico PoS Terminals Open Consumers to Fraud


FCC Rejects Huawei Appeal of National Security Threat Designation

Chinese APT Suspected of Supply Chain Attack on Mongolian Government Agencies

Chinese Embassy Blames Hackers for Retweet of Trump’s Claim That Democrats Cheated in Election

Matthew Masterson to Leave Federal Cybersecurity Agency

U.S. Warns of Increased Cyberattacks Against K-12 Distance Learning

Online Ludlow (MA) Council Meeting Hijacked With Racist Abuse and Beheading Videos

Misery of Ransomware Hits Hospitals the Hardest

Senior Managers Set Terrible Example for Secure Remote Working

The Line Between Physical Security & Cybersecurity Blurs as World Gets More Digital

Nesos Raises Funding for Medical Device to ‘Hack’ the Brain

AI Could Replace Humans in Cybersecurity by 2030

Achieving The Golden Ratio In The Art Of Cybersecurity

New Model Shows Why Countries That Retaliate Too Much Against Online Attacks Make Things Worse for Themselves

Teen Who Shook the Internet in 2016 Pleads Guilty to DDoS Attacks
Krebs: Payment Processing Giant TSYS: Ransomware Incident “Immaterial” to Company

One Million U.S. Patients Impacted by Dental Care Alliance Breach

Tech Unicorn UiPath Discloses Data Breach

Tourism Agency in Little Rock Target of Hack

Cedar Springs Hospital (CO) Reports Data Breach After Surveyor Loses Storage Device

Spotify Resets Passwords After a Bug Exposed Users’ Private Account Info

PLEASE_READ_ME Ransomware Attacks 85K MySQL Servers

Fake Data Breach Alerts Used to Steal Ledger Cryptocurrency Wallets

Microsoft Exposes Adrozek, Malware That Hijacks Chrome, Edge, and Firefox

Hackers Can Use WinZip Insecure Server Connection to Drop Malware

Critical Steam Flaws Could Let Gamers Crash Opponents’ Computers

Remote Code Execution Vuln Uncovered in Starbucks Mobile Platform

Sophos Fixes SQL Injection Vulnerability in Their Cyberoam OS

Zero-Click Wormable RCE Vulnerability in Cisco Jabber Gets Fixed, Again


Huawei Worked on Facial Recognition System to Surveil Uighurs

China Bans TripAdvisor, Other Apps in Crackdown on Pornography, Improper Content

European Medicines Agency (EMA) Hit by Cyberattack

Hackers Steal Pfizer/BioNTech COVID-19 Vaccine Data in Europe, Companies Say

COVID Data Manager Investigated, Raided for Using Publicly Available Password

Russian APT28 Hackers Using COVID-19 as Bait to Deliver Zebrocy Malware

Ransomware Gangs Are Getting Faster at Encrypting Networks

Scammers Create Instagram Click Farm, Leave Their Operation Exposed Online

How to Protect Yourself From Cybercrime When Holiday Shopping Online

How Big Data Turned Into Big Business for Cyber and Privacy Lawyers

Federal Government and 46 States File Antitrust Suit Seeking to Split up Facebook

Al Jazeera Journalist Files Hack and Leak Suit Against Saudi and UAE Crown Princes
SideWinder APT Targets Nepal, Afghanistan in Wide-Ranging Spy Campaign

Molerats APT Cyber-Espionage Campaign Targeting Middle Eastern Politicians

Monroe Surgical Hospital (LA) Reports Possible Data Breach, Notifying Patients

Hackers Redirect Church Website to Satanic Portal Promoting ‘Sex Spells’

Credit Card Stealer Hides in CSS Files of Hacked Online Stores

Qbot Malware Switched to Stealthy New Windows Autostart Method

DHS-CISA Urges Admins to Patch OpenSSL DoS Vulnerability

Adobe Fixes Critical Security Vulnerabilities in Lightroom, Prelude

Microsoft Fixes New Windows Kerberos Security Bug in Staged Rollout

Krebs: Patch Tuesday, Good Riddance 2020 Edition


China Regulator Puts Country’s Fintech Giants on Notice Hinting at More Rules

Senate Confirms Trump FCC Nominee Amid Democratic Pushback

Norway: Russian APT28 State Hackers Likely Behind Parliament Attack

Beware of COVID Vaccine Scams: Here’s How to Make Sure You Get a Real One

One in Five Online Marketplace Listings Show Signs of Fraud

Credit Card Stealing Malware Bundles Backdoor for Easy Reinstall

Scammers Spoof Target’s Gift Card Balance Checking Page

Why Companies Should Stop Scaring Employees About Cybersecurity

If You Get Hacked Once, You’ll Probably Be Attacked Again Within a Year

Formula 1 Driver Romain Grosjean’s Instagram Account Hacked

What Happens When Someone Uses Your Email Address to Sign up for Paypal, Car Hire, Doctors, Security Systems and More

GitHub Rolls Out Dependency Review, Vulnerability Alerts for Pull Requests

UK Judge Blocks Extradition of Alleged Webcam Hacker to U.S.

German Court Orders Encrypted Email Biz Tutanota to Build a Backdoor in User’s Mailbox
U.S. Cyber Firm FireEye Says It Was Breached by Nation-State Hackers

Ransomware Forces Hosting Provider Netgain to Take Down Data Centers

Foxconn Says Internet Connection Back to Normal After Ransomware Attacks

Spearphishing Attack Spoofs Microsoft.com to Target 200M Office 365 Users

‘Amnesia:33’ TCP/IP Flaws Affect Millions of IoT Devices

Critical, Unpatched Bugs Open GE Radiological Devices to Remote Code Execution

Critical Remote Hacking Flaws Affect D-Link VPN Routers

All Kubernetes Versions Affected by Unpatched MiTM Vulnerability

Microsoft Issues Guidance for DNS Cache Poisoning Vulnerability

Adobe Warns Windows, macOS Users of Critical-Severity Flaws

Google Patches Critical Wi-Fi and Audio Bugs in Android Handsets

Microsoft Wraps Up a Lighter Patch Tuesday for the Holidays


Chinese Breakthrough in Quantum Computing a Warning for Security Teams

Kremlin Hackers Exploiting Security Hole in VMware Software to Hijack Systems, NSA Warns

Hacker Opens 2,732 PickPoint Package Lockers Across Moscow

Ransomware Attacks Pose 2021 Challenges for Congress

Half of U.S. Schools Skipped Remote Security Training

Cybercrime Costs World Economy over 1% of Global GDP

Europol Warns COVID-19 Vaccine Rollout Vulnerable to Fraud, Theft

Healthcare in Crisis: Diagnosing Cybersecurity Shortcomings in Unprecedented Times

BTC-e Founder Sentenced to Five Years in Prison for Laundering Ransomware Funds

NortonLifeLock to Acquire Avira

Microsoft Announces Azure Cloud for Top Secret Government Data
Foxconn Electronics Giant Hit by Ransomware, $34 Million Ransom

Hackers Leak Data From Embraer, World’s Third-Largest Airplane Maker

Ransomware Incident Impacts Greater Baltimore Medical Center Systems

Snyder City Hall (TX) Temporarily Closed After Ransomware Attack

Ransomware Cripples Municipal Computers in Texarkana

Independence (MO) Dealing With Ransomware Attack on City Technology

‘Free’ Cyberpunk 2077 Downloads Lead to Data Harvesting

Iranian Rana Android Malware Updates Allow WhatsApp, Telegram IM Snooping

PlayStation Now Bugs Let Sites Run Malicious Code on Windows PCs

QNAP High-Severity Flaws Plague NAS Systems

Cisco Fixes Security Manager Vulnerabilities With Public Exploits


Biden Says China Must Play by ‘International Norms’

U.S. and Australia to Develop Shared Cyberattack Training Platform

Middle East Facing ‘Cyber Pandemic’ as COVID Exposes Security Vulnerabilities, Cyber Chief Says

UAE Target of Cyber-Attacks After Israel Deal

Krebs: IRS to Make ID Protection PIN Open to All

FBI: You May Be a Money Mule and Not Even Know It

ACLU Sues Government Over Secret Purchasing of GPS Data

AI Collaborative Research Institute Launched

Smart Sex Toy Sales Surge Poses Security Risk

Tech CEO Danny Boice Pleads Guilty to Investment Fraud

Italian Police Arrest Two in Data Theft Cyberattack on Leonardo Defense Corp
Largest Global Staffing Agency Randstad Hit by Egregor Ransomware

Ransomware Hits Helicopter Maker Kopter

BlackShadow Hackers Extort Israeli Insurance Company Shirbit for $1 Million

Ransomware Gangs Are Now Cold-Calling Victims if They Restore From Backups Without Paying

The No. 1 Rule For Anyone Infected With Ransomware

Walsall Construction Firm RMD Kwikform Targeted in Cyber Attack

River City Bank (Sacramento, CA) Warns Customers of Data Breach

Hackers Use Monero Cryptojacking as Decoy for More Invasive Attacks

MetaMask Phishing Steals Cryptocurrency Wallets via Google Ads

High-Severity Chrome Bugs Allow Browser Hacks

VMware Rolls a Fix for Formerly Critical Zero-Day Bug


Coronavirus: Hackers Targeted COVID Vaccine Supply ‘Cold Chain’ According to IBM

U.S. in Talks With Huawei Finance Chief Meng Wanzhou About Resolving Criminal Charges 

Bill to Crack Down on Fraudulent Foreign Firms Listed in U.S. Heads to Trump’s Desk

Edward Snowden Asks Trump to Pardon Wikileaks Founder Julian Assange

Trump Signs Another Executive Order on Governmental AI Development

Op-Ed: Why President-Elect Biden Needs to Appoint a Cybersecurity Czar

Universities Attacked by Phishing Campaign

Credit Card Stealing Malware Hides in Social Media Sharing Icons
Data of 243 Million Brazilians Exposed Online via Website Source Code

As Many as 113,000 Alaskans Impacted by Hack on Voter Registration System

Kmart, Latest Victim of Egregor Ransomware

Metro Vancouver’s Transit System Hit by Ransomware Attack

Clop Gang Gallops Off with 2M Credit Cards from E-Land

DeathStalker APT Spices Things Up with PowerPepper Malware

TrickBot Returns with a Vengeance, Sporting Rare Bootkit Functions

Google Play Apps Remain Vulnerable to High-Severity Flaw


Top Intelligence Official Says China Targeting Foreign Influence at Incoming Biden Administration

North Korea-Linked Hackers Targeted Johnson & Johnson, Novavax in Hunt for COVID Research

APT Turla’s ‘Crutch’ Backdoor Leverages Dropbox in Espionage Attacks

Phishing Targets U.S. Brokerage Firms Using FINRA Lookalike Domain

HMRC Phishing Scam Abuses Mail Service to Bypass Spam Filters

Spotify Wrapped 2020 Rollout Marred by Pop Star Hacks

Krebs: Account Hijacking Site OGUsers Hacked, Again

Microsoft Revamps ‘Invasive’ M365 Feature After Privacy Backlash

Hacker Given Three Years for Stealing Secret Nintendo Switch Blueprints, Collecting Child Sex Abuse Videos
Brazilian Aerospace Firm Embraer Hit by Cyberattack

South Africa Absa Bank Embroiled in Data Leak, Rogue Employee Accused of Theft

Cyber Attack Robs Philabundance of Nearly $1M

Online Schooling Giant K12 Inc. Pays Ryuk Ransomware to Stop Data Leak

Electronic Health Records Provider NTreatment Caught Out in Data Breach

Housing Authority of Mcdonough County (IL) Experiences Ransomware Data Breach

Half of Docker Hub Images Feature Critical Flaws

Xerox DocuShare Bugs Allows Data Leaks

Flaw Allowed iPhone Hacking Remotely Through WI-Fi


China Drafts Rules on Mobile Apps’ Collection of Personal Data

Federal Agencies Warn That Hackers Are Targeting U.S. Think Tanks

FBI Warns of BEC Scammers Using Email Auto-Forwarding in Attacks

Vietnamese State Hackers APT32 (aka Ocean Lotus, BISMUTH) Deploy Coin Miners to Victims

Zoom Impersonation Attacks Aim to Steal Credentials

Amazon Says Sellers Racked up More Than $4.8 Billion in Sales Over Weekend

Facebook-Backed Libra Association Changes Its Name to Diem

Supreme Court Weighs Breadth of Computer Hacking Law

Krebs: Bomb Threat, DDoS Purveyor Gets Eight Years
Personal Information Leaked in Suspected Cyberattack on Israeli Company Shirbit Insurance

Stuller Headquarters (LA) Hit by Cyber Attack

Electronic Medical Records Cracked Open by OpenClinic Bugs

Cayman Islands Bank Records Exposed in Open Azure Blob

Critical Oracle WebLogic Flaw Actively Exploited by DarkIRC Malware

Android Messenger App Still Leaking Photos, Videos

Salesforce to Acquire Slack for $28 Billion

Uber Completes $2.65 Billion Postmates Acquisition


UK Bans Installation of Huawei 5G Equipment From September

Pandemic, A Driving Force in 2021 Financial Crime

Baltimore Students Told to Ditch Windows PCs After Ransomware Attack

Multiple Red Flags

Vermont Hospitals Still Recovering From October Ransomware Attack

Manchester United Cyberattack Highlights Controversy in Paying Ransomware Attackers

Company Director Disqualified After AMS Marketing Limited Made 75,000 Nuisance Calls

Ajit Pai Formally Announces Plans to Leave FCC

Cybersecurity In The New Normal: Good Enough Is No Longer Enough

Companies Urged to Adjust Hiring Requirements for Cyber Jobs
Healthcare Provider AspenPointe Data Breach Affects 295k Patients

Huntsville City Schools (AL) Close Early for Cybersecurity Threat

Someone Just Moved $5m in BTC From the 2016 Bitfinex Hack

WhatsApp Hack Could Let People Steal Messages, Users Urged to Take Precautions

MacOS Users Targeted By OceanLotus Backdoor

Docker Malware Is Now Common, So Devs Need to Take Docker Security Seriously

Gootkit Malware Returns to Life Alongside REvil Ransomware

Credit card skimmer fills fake PayPal forms with stolen order info

Microsoft Defender for Identity Now Detects Zerologon Attacks