Ransomware: Over Half of Attacks Are Targeting These Three Industries

Hackers Prey on Public Schools, Adding Stress Amid COVID Pandemic

Rural Towns Say They Need a Hand to Fight Off Hackers and Ransomware

Bracing for Cyber-Spying at the Olympics

Uproar in Israel Over Police Snooping Renews Privacy Debate

Researchers Use Natural Silk Fibers to Generate Secure Keys for Strong Authentication

Academic Journal Elsevier Claims it Fingerprints PDFs for ‘Ransomware,’ Not Surveillance

German Court Rules Websites Embedding Google Fonts Violates GDPR

The Top Reasons Countries Ask Google to Remove Content
Russian ‘Gamaredon’ Hackers Use 8 New Malware Payloads in Attacks

277,000 Routers Exposed to Eternal Silence Attacks via UPnP

600k WordPress Sites Impacted by Critical Plugin RCE Vulnerability

Samba Bug Can Let Remote Attackers Execute Code as Root

CISA Adds 8 Vulnerabilities to List of Actively Exploited Bugs

QNAP: DeadBolt Ransomware Exploits a Bug Patched in December

Microsoft Office 365 to Add Better Protection for Priority Accounts

Apple Pays $100.5K Bug Bounty for Mac Webcam Hack

Cengage to Buy Cybersecurity Training platform, Infosec


Biden’s Sanctions Plan Targets Russian Banks, Companies and Imports if Ukraine Is Attacked

Russia Will Hit Us With Cyberattack if Sanctioned, Cyber Expert Warns: ‘We Are Already in Warfare State’

U.S. Targets Russian Disinformation in Bid to Defend Ukraine

UK Warned to Bolster Defences Against Cyber Attacks as Russia Threatens Ukraine

U.S. Bans Major Chinese Telecom China Unicom Americas Over National Security Risks

EU to Create Pan-European Cyber Incident Coordination Framework

F.B.I. Secretly Bought Israeli Spyware and Explored Hacking U.S. Phones

The Battle for the World’s Most Powerful Cyberweapon

Finnish Diplomats’ Phones Infected With NSO Group Pegasus Spyware

Most Ransomware Infections Are Self-Installed

The IRS Is Reportedly Looking for ID.me Alternatives Amid Privacy Concerns

FTC: Americans Lost $770 Million From Social Media Fraud Surge

Krebs: Fake Investor John Bernard Sinks Norwegian Green Shipping Dreams

FBI Issues Warning Over Iranian Cyber Company Emennet Pasargad

Philippines Orders Law Enforcers to Probe Online ‘Assassination’ Threat Against Marcos Jr
Hackers Have Stolen $80 Million in Cryptocurrency From the Qubit DeFi Platform

Over 20,000 Data Center Management Systems Exposed to Hackers

Finland Warns of Facebook Accounts Hijacked via Messenger Phishing

LockBit Gang Claims It Stole Data From French Ministry of Justice

Joplin (MO) July 2021 Ransomware Attack Exposed Some Customer Information

Hackers Using Device Registration Trick to Attack Enterprises with Lateral Phishing

Hackers Are Taking Over CEO Accounts With Rogue OAuth Apps

Windows Vulnerability With New Public Exploits Lets You Become Admin

QNAP Users Still Struggling With Deadbolt Ransomware After Forced Firmware Updates

Microsoft Outlook RCE Zero-Day Exploits Now Selling for $400,000

Zerodium Spikes Payout for Zero-Click Outlook Zero-Days

Researchers Use GPU Fingerprinting to Track Users Online

Krebs: Who Wrote the ALPHV/BlackCat Ransomware Strain?

What’s the Deal With Anti-Cheat Software in Online Games?


Iran’s State Broadcaster Says It Was Hacked for 10 Seconds

U.S. Unveils Plan to Improve Cyber Defenses for Water Utilities

Insurers Want to Avoid Covering War. Ukraine Hacks Put That to the Test.

Shipment-Delivery Scams Become the Favored Way to Spread Malware

IT and DevOps Staff More Likely to Click on Phishing Links

Google Has a New Plan to Kill Cookies. People Are Still Mad.

Florida Considers Deepfake Ban

DeepDotWeb Operator Sentenced to Eight Years for Money Laundering

Indonesia Bars Financial Institutions From Offering Crypto Services

Court Papers Indicate Text Messages From HMRC’s 60886 Number Could Snoop on Brit Taxpayers’ Locations

China Orders Web Operators to Spring Clean Its Entire Internet
Taiwanese Apple and Tesla Contractor Delta Electronics Hit by Conti Ransomware

Data Breach at St. Lucie County (FL) Drug Screening Lab Drug Screening Lab

Hacker Flags Flaw in Swiss Railway System, Exposing Personal Data on 500k

Russian APT29 Hackers’ Stealthy Malware Undetected for Years

Lazarus Hackers Use Windows Update to Deploy Malware

Microsoft Mitigated a Record 3.47 Tbps DDoS Attack on Azure Users

Microsoft Warns of Multi-Stage Phishing Campaign Leveraging Azure AD

2FA App Loaded with Banking Trojan ‘Vultur’ Infests 10K Victims via Google Play

BotenaGo Botnet Code Leaked to GitHub, Impacting Millions of Devices


Cyber-Attack Briefly Takes Down Ukrainian Ministry’s Promotional Website

N.Korean Internet Downed by Suspected Cyber Attacks -Researchers

German Gov’t Warns of APT27 Hackers Backdooring Business Networks

White House Moves to Boost Cybersecurity at Federal Agencies

‘Zero Trust’

The U.S. Says It Will Stand Firm Against Major Russian Demands as Tension Rises

What Is SWIFT and Why It Might Be the Weapon Russia Fears Most

Crypto Money Laundering Rises 30%, Report Finds

Mark Zuckerberg’s Botched Cryptocurrency Project Is Reportedly for Sale

Thousands of TracFone Users Saw Their Numbers Ported to Other Carriers Without Their Consent

Let’s Encrypt to Revoke About 2 Million HTTPS Certificates in Two Days

Cybersecurity Is Broken: How We Got Here & How to Start Fixing It

Searching for Susy Thunder
Nobel Foundation Site Hit by DDoS Attack on Award Day

Cyberattacks on Squid Game Minecraft Tourney Take Down Andorra’s Internet

People Are Still Getting Pwned a Week After a Muiltichain Hack Was ‘Contained’

Files Obtained From Butler County Community College in November Ransomware Attack

Secret Report Finds Flaw in Georgia Voting System, but State in the Dark

Initial Access Broker Involved in Log4Shell Attacks Against VMware Horizon Servers

Linux Version of LockBit Ransomware Targets VMware ESXi Servers

Threat Actors Blanket Androids with Flubot, Teabot Campaigns

‘Dark Herring’ Billing Malware Swims onto 105M Android Devices

Chaes Banking Trojan Hijacks Chrome With Malicious Extensions

QNAP Warns of New DeadBolt Ransomware Encrypting NAS Devices

Apple Fixes 2 Zero-Day Security Bugs, One Exploited in the Wild


“Death Star” Response From U.S. Would Lock Russia Out of 5G, Advanced Chips

NSO Chairman Steps Down After Domestic Spying Allegations in Israel

Belarus Hackers Say They’ve Targeted Railway to Impede Russian Troop Movements

Why the Belarus Railways Hack Marks a First for Ransomware

Sophos: Log4Shell Would Have Been a Catastrophe Without the Y2k-esque Mobilisation of Engineers

TrickBot Now Crashes Researchers’ Browsers to Block Malware Analysis

Google Drive Now Warns You of Suspicious Phishing, Malware Docs

Google Drive Flags Nearly Empty Files for ‘Copyright Infringement’

Krebs: Scary Fraud Ensues When ID Theft & Usury Collide

His Son’s School Was Hacked. Then the Ransomware Gang Called Him at Home.

SEC Chair Eyes Tougher Cyber Rules to Protect Investors Against Hackers

UK Gov’t Releasing Nmap Scripts to Find Unpatched Vulnerabilities

LA Launches Cyber Resilience Center

Russia Arrests Leader of “Infraud Organization” Hacker Group
Segway Hit by Magecart Attack Hiding in a Favicon

Data Breach Compromises Personal Information of Koons Customers

Spokane Regional Health District (WA) Data Breach May Have Exposed 1,058 People

Kings County (CA) Admits COVID-19 Healthcare Data Breach

Linn County (OR) Affected by Ransomware Attack, ‘Several Systems Are Offline’

Coin Bureau YouTube Channel Hacked Despite 2FA Protection

Hackers Exploited MSHTML Flaw to Spy on Government and Defense Targets

MacOS Malware ‘DazzleSpy’ Used in Watering-Hole Attacks

Linux System Service Bug Gives Root on All Major Distros, Exploit Released

Linux Kernel Bug Can Let Hackers Escape Kubernetes Containers

VMware: Patch Horizon Servers Against Ongoing Log4j Attacks!

GitHub Enables Two-Factor Authentication Mechanism Through iOS, Android App

Striking a Balance Between Cybersecurity Awareness and Anxiety


Canada’s Foreign Ministry Hacked, Services Hit

DHS Warns Russia Could Launch Cyberattack on U.S.

Hackers Say They Encrypted Belarusian Railway Servers in Protest

Australian Prime Minister’s WeChat Shanghaied by Chinese Patriots

Myanmar’s Military Junta Seeks Ban on VPNs and Digital Currency

Ransomware Gangs Increase Efforts to Enlist Insiders for Attacks

Cracking a $2 Million Crypto Wallet

VW Fired Senior Employee After They Raised Cyber Security Concerns

Wikileaks Founder Julian Assange Wins Right to Take Extradition Case to UK’s Top Court

Brazil Changes Visa Rules to Attract Digital Nomads

Tor Project Appeals Russian Court’s Decision to Block Access to Tor

NSF Awards $29M to Cybersecurity Scholarships
Dark Souls Servers Taken Down to Prevent Hacks Using Critical Bug

Personal Data Could Be Stolen in Pembroke Pines (FL) Cyberattack, Expert Says

Unusual ‘Donald Trump’ Packer Malware Delivers RATs, Infostealers

Android Malware BRATA Wipes Your Device After Stealing Data

Log4j: Mirai Botnet Found Targeting ZyXEL Networking Devices

Emotet Now Using Unconventional IP Address Formats to Evade Detection

Linux Servers at Risk of RCE Due to Critical CWP Bugs

Attackers Now Actively Targeting Critical SonicWall RCE Bug

Researchers Break Down WhisperGate Wiper Malware Used in Ukraine Website Defacement

Push to Explain What Software Contains Gains Steam After Log4j Flaw

A CISO’s Playbook for Responding to Zero-Day Exploits


Russia Hatching Plot to Replace Ukraine Government, U.K. Says

Blinken Says ‘A Single Additional Russian Force’ Entering Ukraine Would Trigger U.S. Response

U.S. Orders Diplomats’ Families to Leave Ukraine, Urges Americans to Depart

Experts Find Strategic Similarities b/w NotPetya and WhisperGate Attacks on Ukraine

Israel’s Attorney General Orders Probe Into Police Spyware Allegations

Krebs: Crime Shop Sells Hacked Logins to Other Crime Shops

Ransomware Group Exploits Parler’s Hands-off Approach to Shake Down Victims

After Ransomware Arrests, Some Dark Web Criminals Are Getting Worried

Are Embedded Devices the Next Ransomware Target?

How to Protect Your PC From Ransomware Using Windows’ Built-in Protection

Ransomware and Phishing: Google Drive Will Now Warn You About Suspicious Files

Ozzy Osbourne’s NFT Project Shared a Scam Link, and Followers Lost Thousands of Dollars

Federal Reserve Is Taking the Next Step Toward Possibly Launching a Digital Dollar

How the U.S. Messed Up Its New 5G Rollout: ‘It Wasn’t Our Finest Hour’

Merck Wins $1.4bn NotPetya Payout from Insurer

Illinois School District Reports a 334% Hike in Cybersecurity Insurance Costs

Homelife of Connecticut Residents Secretly Recorded

Now Is a Good Time to Update Your Recovery Email Addresses

Looking Beyond Biden’s Binding Security Directive
Pennsylvania Confirms ‘Bank Hijacking’ of Unemployment System

Jefferson Health (PA) Data Breach Exposed Billing Info of 9,000 Patients

Luminis Health (MD) Patient Information Exposed in Email Breach

Ransomware Incident Launched Against YMCA of Greater Charlotte (NC)

Hackers Broke Into Pembroke Pines (FL) City Hall Computers

Memorial Health System (OH) Confirms Data Breach

Sacramento County Phishing Scam Data Breach Exposed Health and Personal Info

Valley Regional Transit (ID): Cyber Attack Put Personal Information at Risk

FBI Warns of Malicious QR Codes Used to Steal Your Money

Phishing Impersonates Shipping Giant Maersk to Push STRRAT Malware

Spyware Blitzes Compromise, Cannibalize ICS Networks

Molerats Hackers Hiding New Espionage Attacks Behind Public Cloud Infrastructure

Over 90 WordPress Themes, Plugins Backdoored in Supply Chain Attack

McAfee Bug Can Be Exploited to Gain Windows SYSTEM Privileges

Dark Souls 3 Exploit Could Let Hackers Take Control of Your Entire Computer

Microsoft Disables Excel 4.0 Macros by Default to Block Malware

CISA Adds 17 Vulnerabilities to List of Bugs Exploited in Attacks

Dutch Cybersecurity Agency Warns of Lingering Log4j Risks


U.S. Sanctions Former Ukrainian Official for Helping Russian Cyberspies

Australia, UK to ‘Fight Back’ Against Hostile States in Cyber – Minister

Ukraine Hacks Signal Broad Risks of Cyberwar Even as Limited Scope Confounds Experts

Destructive Wiper Targeting Ukraine Aimed at Eroding Trust, Experts Say

Canada Agency Says Russian-Backed Actors Targeting Infrastructure

Canadian Password Manager 1Password Valued at $6.8 Billion in New Funding Round

UK Mulls Subjecting MSPs to Mandatory Security Standards Where They Provide Critical Infrastructure

Google Calls for a Secure ‘Data Transfer Framework’ Between the U.S. and EU

ProtonMail Introduces a New Enhanced Email Tracker Blocking System

Research: Why Employees Violate Cybersecurity Policies
Crypto.com Admits Over $30 Million Stolen by Hackers

Indonesia’s Central Bank Confirms Ransomware Attack, Conti Leaks Data

Griggsville-Perry Schools (IL) Hit With Ransomware Attack, Closes School

Firmware Bootkit ‘MoonBounce’ Discovered, Used by APT41

FBI Links Diavol Ransomware to the TrickBot Cybercrime Group

‘Anomalous’ Spyware Stealing Credentials in Industrial Firms

Critical Cisco StarOS Bug Grants Root Access via Debug Mode

WordPress Plugin Flaw Puts Users of 20,000 Sites at Phishing Risk

More Than Half of Medical Devices Found to Have Critical Vulnerabilities

You’re Not a Fan of Microsoft’s New Pluton TPM Chip? Lenovo Won’t Switch It on by Default


Biden Administration Sets New Requirements for U.S. Secure Networks

Official Beijing 2022 Olympics Mobile App Is Marred by Security Flaws, Researchers Say

UK’s Cyber Security Center Publishes New Guidance to Fight Smishing

Cloned Dept. of Labor Site Hawks Fake Government Contracts

CISA Urges U.S. Orgs to Prepare for Data-Wiping Cyberattacks

Krebs: IRS Will Soon Require Selfies for Online Access

Facebook Messenger: The Battle Over End-To-End Encryption

Europe’s Move Against Google Analytics Is Just the Beginning

Man Charged with Smuggling Tech Exports to Iran

Interpol and Nigerian Police Bust Cybercrime BEC Ring
Red Cross Hit With Cyberattack That Compromised Data of 515,000 ‘Highly Vulnerable People’

Marketing Giant RR Donnelly Confirms Data Theft in Conti Ransomware Attack

Aditya Birla Fashion Says Back After Data Breach; Hackers Say Site Still Vulnerable

Visalia Unified School District (CA) Says ‘Ransomware Attack Failed’

Russian Hackers Heavily Using Malicious Traffic Direction System to Distribute Malware

New BHUNT Malware Targets Your Crypto Wallets and Passwords

Microsoft: SolarWinds Fixes Serv-U bug Exploited for Log4j Attacks

Deloitte Launches New SaaS Cyber Threat Detection and Response Platform

Ukraine: Cyber Warfare — Call It What It Is


Israel Police Uses NSO’s Pegasus to Spy on Citizens

U.S. Aims Sanctions at Pro-Russian Agents as Blinken Plans Ukraine, Russia Meetings

Poland Raises Cybersecurity Terror Threat After Ukraine Cyber Attack

Gloucester Council Cyber Attack Linked to Russian Hackers

From 6G to Big Data, China Is Looking to Boost Tech’s Share of Its Economy

Beijing 2022 Winter Olympics App Bursting With Privacy Risks

Winter Olympics: Athletes Advised to Use Burner Phones in Beijing

Airlines Warn of ‘Catastrophic’ Crisis When New 5G Service Is Deployed

Drugmaker Gilead Alleges Counterfeiting Ring Sold Its HIV Drugs

Will 2022 Be the Year of the Software Bill of Materials?

Half of Global Cyber Defence Investment Has Been in Israel -PM Bennett

Europol Shuts Down VPNLab, Cybercriminals’ Favourite VPN Service

Democrats Propose Bill to Ban “Surveillance Advertising”
Parasol’s Sister Firms, SJD Accountancy and Nixon Williams, Confirm Cyberattack

Fashion Giant Moncler Confirms Data Breach After Ransomware Attack

Entira Family Clinics (MN) Notifies Patients of Data Breach 1 Year Later

Oscar Health Notifies Members of Data Breach

Crypto.com Acknowledges ‘Unauthorized Activity’ on Servers, Maintains No Funds Lost

Telegram Is a Hotspot for the Sale of Stolen Financial Accounts

Cybercriminals Actively Target VMware vSphere with Cryptominers

‘White Rabbit’ Ransomware May Be FIN8’s Latest Tool

Researchers Bypass SMS-based Multi-Factor Authentication Protecting Box Accounts

‘Zero-Click’ Zoom Vulnerabilities Could Have Exposed Calls Raises Concerns

Microsoft Issues Out-of-Band Update for Patch Tuesday Problems

Organizations Face a ‘Losing Battle’ Against Vulnerabilities

Open Source Developers, Who Work for Free, Are Discovering They Have Power


Destructive Hacks Against Ukraine Echo Its Last Cyberwar

Cyber Espionage Campaign Targets Renewable Energy Companies

DHL, Microsoft, WhatsApp Top Phishing List of Most Imitated Brands

Nintendo Warns of Spoofed Sites Pushing Fake Switch Discounts

Firefox Relay’s Addition to Disposable Email Blocklist Upsets Users
Umbrella Company Parasol Group Confirms Cyber Attack as ‘Root Cause’ of Prolonged Network Outage

UK – Brookson Legal Hit by Cyber-Attack, Confirms No Data Was Removed

Jackson Hospital (FL) Fends off Recent Ransomware Attack

Microsoft: Edge Will Mitigate ‘Unforeseen Active’ Zero Day Bugs

Zoho Patches New Critical Authentication Bypass in Desktop Central

Chrome Limits Websites’ Direct Access to Private Networks for Security Reasons


Krebs: At Request of U.S., Russia Rounds Up 14 REvil Ransomware Affiliates

Biden Administration Says Russia Arrested Colonial Pipeline Hacker

What Russia’s Arrest of REvil Hackers Means for Ransomware

Ukraine: ‘Massive Cyber Attack’ Shuts Down Government Websites

Hackers Likely Used Software Administration Rights of Third Party to Hit Ukrainian Sites, Kyiv Says

Some Signs That Cyber Attack Linked to Hacker Groups Associated With Russia

Ukraine Suspects Group Linked to Belarus Intelligence Over Cyberattack

Microsoft: Fake Ransomware Targets Ukraine in Data-Wiping Attacks

No Lights, No Heat, No Money – That’s Life in Ukraine During Cyber Warfare

U.S. Offers Support After Ukraine Hit By Massive Cyberattack

U.S. Considers Backing an Insurgency if Russia Invades Ukraine

Researchers Develop CAPTCHA Solver to Aid Dark Web Research

The Race Towards Renewable Energy Is Creating New Cybersecurity Risks

States Push Forward With Facebook Antitrust Case, Reportedly Probe VR Unit

Former DHS Official Charged With Stealing Gov’t Employees’ PII

Prosecutors Recommend Dropping Case Over China Ties Against MIT Scientist
Defense Contractor Hensoldt Confirms Lorenz Ransomware Attack

Goodwill Discloses Data Breach on Its ShopGoodwill Platform

Crawford County (AR) Grappling With Ransomware Attack Aftermath

Multi-Day IT Systems Outage Whacks Umbrella Biz Parasol Group Amid Fears of a Cyber Attack

Google Might’ve Accidentally Approved an Ad for a Target Gift Card Scam

eNom Data Center Migration Mistakenly Knocks Sites Offline

npm Dependency Is Breaking Some React Apps Today — Here’s the Fix

Watch Out, That Microsoft Edge Update Is Actually Ransomware

QLocker Ransomware Returns to Target QNAP NAS Devices Worldwide

Safari 15 Bug Can Leak Your Recent Browsing Activity and Personal Identifiers

Three Plugins With Same Bug Put 84k WordPress Sites at Risk

Critical Cisco Contact Center Bug Threatens Customer-Service Havoc

Flaw Found in IDEMIA Biometric ID Devices

New Intel Chips Won’t Play Blu-Ray Disks Due to SGX Deprecation

The Cybersecurity Measures CTOs Are Actually Implementing

Why Is Data Destruction the Best Way to Impede Data Breach Risks?

If You Use The Same Password Everywhere, This is For You


Apple, Amazon Executives to Meet With White House to Discuss Software Security

Google Calls for New Government Action to Protect Open-Source Software Projects

FCC Proposes New Data Breach Rules for Phone Companies

NSO Group Spyware Targeted Dozens of Reporters in El Salvador

North Korean Hackers Stole Almost $400M in Cryptocurrency in 2021

BlueNoroff Hackers Steal Crypto Using fake MetaMask Extension

Ukrainian Cops Nab Husband and Wife Suspected to Be Part of $1M Ransomware Operation

Florida Woman Vice Principal Charged with Cyber-Stalking

Carding Site UniCC Retires After Generating $358 Million in Sales

How Cryptojacking Can Raise Your Energy Bills

Cybersecurity Labels for Products?
North Port (FL) Officials Investigate Potential Hack on City Network

New GootLoader Campaign Targets Accounting, Law Firms

Adobe Cloud Abused to Steal Office 365, Gmail Credentials

Researchers Decrypted Qakbot Banking Trojan’s Encrypted Registry Keys

Microsoft Defender Weakness Lets Hackers Bypass Malware Detection

Microsoft Yanks Buggy Windows Server Updates

Windows ‘RemotePotato0’ Zero-day Gets An Unofficial Patch

Android Users Can Now Disable 2G to Block Stingray Attacks

AWS Fixes Security Flaws That Exposed AWS Customer Data

New Vulnerabilities Highlight Risks of Trust in Public Cloud


U.S. Links MuddyWater Hacking Group to Iranian Intelligence Agency

Hackers Take Over Diplomat’s Email, Target Russian Deputy Minister

Teen Hacker Claims Ability to Control 25 Teslas Worldwide

The Latest Phishing Scam: Fraudulent QR Codes on Parking Meters

Stolen TikTok Videos, Bent on Fraud, Invade YouTube Shorts

Krebs: Who is the Network Access Broker ‘Wazawaka?’

Inside the December Ransomware Hit at Nordic Choice Hotels

EU to Stage Large-Scale Cyberattack Exercise on Supply Chains

The ESA Wants You to Hack Its Satellite for Cybersecurity Reasons

Two Years for UK Man Who Used RATs to Spy on Women and Children
Medical Review Institute of America (MRIoA) Reports Data Breach

FIFA Ultimate Team Account Takeovers Plague EA Gamers

Cyber Attack Causes Albuquerque Public Schools to Cancel Classes Thursday

Ransomware to Blame for Maryland Department of Health Service Delays

OceanLotus Hackers Turn to Web Archive Files to Deploy Backdoors

Magniber Ransomware Using Signed APPX Files to Infect Systems

TellYouThePass Ransomware Returns as a Cross-platform Golang Threat

Amazon, Azure Clouds Host RAT-ty Trio in Infostealing Campaign

Widespread, Easily Exploitable Windows RDP Bug Opens Users to Data Theft

Apple Fixes doorLock Bug That Can Disable iPhones and iPads


World Economic Forum: Cybersecurity an Increasing Global Threat

CISA Alerts Federal Agencies of Ancient Bugs Still Being Exploited

CISA: Russian State-Sponsored Groups Exploited Vulnerabilities in Microsoft, Cisco, Oracle Tools

New RedLine Malware Version Spread as Fake Omicron Stat Counter

DDoS Attacks That Come Combined With Extortion Demands Are on the Rise

Kaspersky Research Uncovers Cybersecurity Budgets, Insurance, and Vendor Expectations for 2022

Top Jobs in the U.S.: Information Security Analyst, #1

Moxie Marlinspike Leaves Encrypted-Messaging App Signal

Medigate Acquired by Claroty

Pentera Announces $150M Series C at $1 Billion Valuation to Disrupt Legacy Vulnerability Management Market

A Missouri Reporter Is Getting Blamed For the Security Flaw He Exposed
FinalSite: No School Data Stolen in Ransomware Attack Behind Site Outages

Children’s Data Is Showing up More Often on the Dark Web

Bernalillo County (NM) Ransomware Attack Left Jail Offline, Leaving Inmates in Lockdown

‘Fully Undetected’ SysJoker Backdoor Malware Targets Windows, Linux & macOS

Millions of Routers Exposed to RCE by USB Kernel Bug

Four Million Outdated Log4j Downloads Were Served From Apache Maven Central Alone Despite Vuln Publicity Blitz

Critical SonicWall NAC Vulnerability Stems from Apache Mods

State Hackers APT35 Use New PowerShell Backdoor in Log4j Attacks

Night Sky Ransomware Uses Log4j Bug to Hack VMware Horizon Servers

Firefox Focus Now Blocks Cross-Site Tracking on Android Devices

Krebs: ‘Wormable’ Flaw Leads January 2022 Patch Tuesday


Cyber-Spike 2021: Orgs Suffer 925 Attacks per Week, an All-Time High

CISA Director: ‘We Have Not Seen Significant Intrusions’ From Log4j…. Yet

Extortion DDoS Attacks Grow Stronger and More Common

‘PatchWork’ Cyberspies Infect Themselves With Their Own Malware, Exposing Operations

Why Politically Motivated Cyber-Attacks Are a Threat to Democracy

The End of Car Keys, Passwords and Fumbling With Your Phone at Checkout

Castor, Schakowsky Seek Information on Children’s Online Safety Program

Europol Ordered to Erase Data on Those Not Linked to Crime

UK Jails Forensics Expert Who Kept Murder Snaps on PC
Cyber-Thieves Raid Grass Valley (CA)

Loyola Medical Center (IL) Email Breach Exposes Nearly 17,000 Patients’ Info

Singapore Retailer OG Hit by Data Breach

Ragnar_Locker Claims Successful Hack Of Broomfield (CO) Cybersecurity Firm

Panasonic Says Hackers Accessed Personal Data of Job Candidates During November Attack

Abcbot Botnet Linked to Operators of Xanthe Cryptomining Malware

Linux Version of AvosLocker Ransomware Targets VMware ESXi Servers

URL Parsing Bugs Allow DoS, RCE, Spoofing & More

Microsoft: Powerdir Bug Gives Access to Protected macOS User Data

WordPress 5.8.3 Security Update Fixes SQL Injection, XSS Flaws


Hackers Have Been Sending Malware-Filled USB Sticks to U.S. Companies Disguised as Presents

Trojanized dnSspy App Drops Malware Cocktail on Researchers, Devs

U.S. Counterintelligence Shares Tips to Block Spyware Attacks

China’s Next Regulatory Target — Algorithms, the Secret of Many Tech Giants’ Success

Walmart in China’s Spotlight Again as Regulator Cites Infractions

Monsanto Employee Stole Trade Secret to Sell to China

EoL Systems Stonewalling Log4j Fixes for Fed Agencies

Attackers Exploit Flaw in Google Docs’ Comments Feature

Google Voice Authentication Scam Leaves Victims on the Hook

COVID Test Data Breach at British School

Krebs: Norton 360 Now Comes With a Cryptominer

Krebs: 500M Avira Antivirus Users Introduced to Cryptomining

This Tesla Owner Says He Mines up to $800 a Month in Cryptocurrency With His Car

France Fines Google, Facebook for Privacy Violations

Facebook Launches ‘Privacy Center’ to Educate Users on Data Collection and Privacy Options

Swiss Army Bans All Chat Apps but Locally-Developed Threema

U.S. Arrests Suspect Who Stole Unpublished Books in Phishing Attacks

Victims of $200 Million Hack of BitMart Crypto Exchange Still Waiting to Get Their Money Back

Iranian Immigrant Lost $53,000 in Crypto Hack, Says He Faces Ruin if BitMart Doesn’t Pay Him Back
Thousands of Schools Impacted After IT Provider Finalsite Hit by Ransomware

Cyberattackers Hit Data of 80K Patients at Fertility Centers of Illinois

Ciox Health Data Breach Affects ​​AdventHealth, Northwestern and 30 More Providers

3.7M FlexBooker Records Dumped on Hacker Forum

U.S. Online Pharmacy Ravkoo Links Data Breach to AWS Portal Incident

SonicWall: Y2K22 Bug Hits Email Security, Firewall Products

Night Sky Is the Latest Ransomware Targeting Corporate Networks

FluBot Malware Now Targets Europe Posing as Flash Player App

Dev Corrupts NPM Libs ‘Colors’ and ‘Faker’ Breaking Thousands of Apps

QNAP: Get NAS Devices Off the Internet Now

Partially Unpatched VMware Bug Opens Door to Hypervisor Takeover

NHS Warns of Hackers Exploiting Log4Shell in VMware Horizon

Log4J-Related RCE Flaw in H2 Database Earns Critical Rating

Rapid Window Title Changes Cause ‘White Screen of Death’

Cybersecurity Training Isn’t Working. And Hacking Attacks Are Only Getting Worse

Cybersecurity Moving Forward: Four Big Things to Watch in 2022


China Says Apps That Could Influence Public Opinion Require a Security Review

U.S. Army Journal’s Top Paper From 2021 Says Taiwan Should Destroy TSMC if China Invades

Progressives Put Pressure on Google

How Ransomware Gangs Went Pro

Defending Against Modern Ransomware Tactics

Putting Ransomware Gangs Out of Business With AI

Why Words Matter In Cybersecurity

‘Bulli Bai’ Three Arrested in India for Online Harassment of Muslim Women

1.1M Compromised Accounts Found at 17 Major Companies: NY AG

70 Investors Lose $50 Million to Fraudsters Posing as Broker-Dealers

Crypto Platform ARBIX Flagged as a Rugpull, Transfers $10 Million
Canadian Heavy Equipment Maker Weldco-Beales Confirms Cyber Attack by Karakurt

Franklin Park Conservatory (OH) Experiences Data Breach; Notifying Affected Patrons

Bernalillo County (NM) Reports Suspected Ransomware Attack

Samoan Meteorology Service (SMS) Website May Have Suffered Cyber Attack

‘Elephant Beetle’ Lurks for Months in Networks

‘Malsmoke’ Exploits Microsoft’s E-Signature Verification Using Zloader

iOS Malware Can Fake iPhone Shut Downs to Snoop on Camera, Microphone

Google Chrome Update Includes 37 Security Fixes

Microsoft Defender for Endpoint Adds Zero-Touch iOS Onboarding

CrowdStrike Incorporates Intel CPU Telemetry Into Falcon Sensor


FTC Warns Companies to Secure Consumer Data From Log4j Attacks

Fears Mount About Russian Cyberattacks in Ukraine

China to Make Some Firms Undergo a Data Security Review Before Listing Overseas

Coming to a Laptop Near You: A New Type of Security Chip From Microsoft: ‘Pluton’; AMD to Integrate Into Upcoming Ryzen CPUs

Upskilling, Better Training Keys to Increasing Cyber Talent Pool

Opportunity Not Fear: Reframing Cybersecurity to Build a Safer Net for All

Come the Metaverse, Can Privacy Exist?

Bulli Bai: India App That Put Muslim Women up for Sale Is Shut

Google Acquires its First Non-American Cybersecurity Firm Siemplify
Have I Been Pwned Warns of DatPiff Data Breach Impacting Millions

Data Skimmer Hits 100+ Sotheby’s Real Estate Websites

UScellular Discloses Data Breach After Billing System Hack

Cyberattack Hits Quasi-State Agency Illinois Office of the Special Deputy Receiver (OSD) For $6.8 Million

Montreal Tourism Agency Confirms Cyber Attack

Carthage Schools (MO) Confirm Ransomware Attack Caused Outage in December

McMenamins December Data Breach Affects 12 Years of Employee Info

SAILFISH System to Find State-Inconsistency Bugs in Smart Contracts


Companies Face Stricter Cyber Rules in 2022

Novel Method for Detecting Evasive Malware on IoT Devices Using Electromagnetic Field Emanations

Log4j Highlights Need for Better Handle on Software Dependencies

Don’t Copy-Paste Commands From Webpages — You Can Get Hacked

Microsoft Skype Makes You Solve a Complex CAPTCHA 10 Times to Sign Up

Connecting the Dots on Diversity in Cybersecurity Recruitment

Creating the Next Generation of Secure Developers
UK Defence School Hit by Sick Cyber Attack by ‘Russia or China’ Causing ‘Significant’ Damage in Early 2021

Jerusalem Post Targeted by Pro-Iranian Hackers on Soleimani Assassination Anniversary

Portuguese Media Group Impresa Knocked Offline in Ransomware Attack

Purple Fox Malware Distributed via Malicious Telegram Installers

An Apple HomeKit Bug Can Send iOS Devices Into a Death Spiral

Microsoft Issues Fix for Exchange Y2K22 Bug That Crippled Email Delivery Service


Fake Vaccine Card Sales a Booming Business as Omicron Surges

The Biggest Data Breaches, Hacks of 2021

Top Cybersecurity and Tech Stories of 2021

Top 10 Healthcare Breaches in the U.S. Exposed Data of 19 Million

Copycat and Fad Hackers Will Be the Bane of Supply Chain Security in 2022

Tech That Will Change Your Life in 2022

Can Social Media Alter a War?
Cyber Attack Disrupts Gloucestershire Council’s Website

PulseTV Discloses Potential Compromise of 200,000 Credit Cards

Broward Health (FL) Suffers Data Breach, Including Medical Info, Through 3rd Party

Popular Q&A App Curious Cat Loses Domain, Posts Bizarre Tweets

Uber Ignores Vulnerability That Lets You Send Any Email From Uber.com

Netgear Leaves Vulnerabilities Unpatched in Nighthawk Router