January 14, 2022
The digital attacks on businesses, governments, and other organizations continue to escalate as we transition to the second half of January.
January 14, 2022
A ransomware attack has struck Maryland's Health Department. The department is attempting to mitigate IT service outages, yet the process is plodding along at a slow pace.
January 13, 2022
Grass Valley, a city in California, has been hit by a cyber-attack. The attack exfiltrated financial data and personal information pertaining to vendors that do business with the city, employees of the city, dependents of those employees, and even the spouses of city employees.
January 12, 2022
A hacking collective in China is distributing Night Sky ransomware through Log4j exploits. Microsoft has been closely analyzing the crypto-locking malware to identify its source point, characteristics, and potential lines of defense.
January 12, 2022
Millions of popular routers have been exposed to RCE in recent weeks. RCE is an acronym that stands for remote code execution.
January 10, 2022
Norton 360 users should be aware the company's antivirus software contains a cryptomining tool. There has been a public outcry for the company to remove the cryptomining component as it chews up electricity and memory.
January 07, 2022
The new year has gotten off to quite the dramatic start in the context of digital attacks. Cyber miscreants are causing problems here in the United States and abroad even though the new year is merely one week old.
January 07, 2022
A new version of malware is forcing the fake shutdown of iPhones, providing an opportunity for hackers to spy on users secretly.
January 06, 2022
A group of cyber security specialists has figured out who is behind a sizable financial theft hacking operation. The hackers went to great lengths to conceal their identities.
January 05, 2022
Malsmoke, a hacking collective, is administering a campaign to steal information. The data theft is performed with the use of ZLoader malware.
January 04, 2022
Apple's iOS mobile operating system contains a DoS vulnerability. DoS is short for denial-of-service. This bug can cause targeted devices to either reboot over and over again or completely crash when synced up with an appliance that is Apple Home-compatible.
January 03, 2022
Living off the land tactics such as Cobalt Strike and additional red-team tools are legitimate threats to computer users of all types.
December 31, 2021
The final week of the year has been quite stressful for everyday people as well as those who work in the cybersecurity field.
December 31, 2021
Aquatic Panda, an advanced persistent threat group, uses Log4Shell exploit tools to attack colleges and universities in the United States.
December 30, 2021
Shutterfly, the popular picture-sharing website, has been hit by a ransomware attack. The company has not revealed much about the attack but for the fact that it has disrupted its operations.
December 29, 2021
Hellmann Worldwide Logistics is warning customers that they might be the target of social engineering attacks. Hellmann, a logistics provider, was struck by a ransomware attack earlier in December.
December 28, 2021
Digital security specialists are revealing the details of a malware framework dubbed DanderSpritz. The Equation Group Hackers are responsible for this hack.
December 27, 2021
Ransomware hackers are rapidly progressing. The digital thieves have advanced their attacks to include even more complex tactics for deploying malware on targeted systems.
December 27, 2021
Ransomware hackers have posted confidential police information on the shady corner of the internet known as the dark web. The data was stolen from the United Kingdom police.
December 27, 2021
Digital security specialists have found hidden backdoors within Auerswald VoIP systems. Made in Germany, these systems are intended to provide a secure means of engaging in voice calls.
December 27, 2021
More than 500,000 Android users are waking up to find their smartphone has a new form of malware. Dubbed Joker, the malware is transmitted in the form of an app through the Google Play Store.
December 25, 2021
PseudoManuscrypt has infiltrated a whopping 35,000+ computers in 2021. This malware botnet's name is a reference to Manuscrypt malware.
December 25, 2021
Hackers are making their presence felt across the globe as we transition to the new year. Sort through the latest digital security news, and you'll find a seemingly endless number of reports about spyware, malware, DDoS attacks, and other digital infiltrations.
December 25, 2021
A remote access Trojan based in JavaScipt avoids identification with a fileless approach. The Trojan is implemented through social engineering.
December 24, 2021
Hackers are using an IIS server module to target Microsoft exchange credentials. The hackers use a binary to steal the credentials.
December 24, 2021
The recent emergence of the bug known as Log4j can to lead to exploits for the foreseeable future. Digital security experts insist this unique vulnerability sets the stage for cyber miscreants to execute harmful attacks on websites owned and operated by businesses, governments, and other parties.
December 24, 2021
An enormous online attack targeting 1. 6 million WordPress sites is wreaking havoc on the web. Nearly 14 million attacks were made in the past 36 hours.
December 23, 2021
The second week of December has been quite active in the context of cyber security. Digital attacks are escalating as the year comes to a close.
December 23, 2021
Microsoft recently announced it seized more than 40 domains owned by hackers in China. The Chinese digital espionage group used the domains to target organizations in the United States and 28 other countries.
December 23, 2021
The hackers behind the SolarWinds hack in 2019 are back. This time, the SolarWinds hackers are zeroing in on businesses and governments worldwide.
December 22, 2021
HP printers are revered for their quality and reliability. To the surprise of industry veterans, the computer accessories giant is in the news for a digital security flaw as the year draws to a close.
December 22, 2021
The internet is being inundated with grinchbots as the holidays approach. The considerable increase in grinchbot activity has e-tailers, businesses, consumers, and governments concerned.
December 22, 2021
This has been quite an active week in terms of cyberattacks. Sort through the digital attacks in the previous seven days, and you will be inundated with an avalanche of news.
December 21, 2021
Consumer electronics monolith, Panasonic, endured an embarrassing digital attack in recent months. The security breach of the Japan-based electronics specialist resulted in the unauthorized access of data from a file server.
December 20, 2021
Several malvertising campaigns are tricking people into downloading damaging Google Chrome extensions and backdoors. This covert digital attack aims to steal user credentials and valuable data and sell them to identity thieves.
December 17, 2021
A botnet dubbed "EwDoor" targets AT&T devices in the United States. The moniker of "EwDoor" was selected as it combines the words Edgewater and backdoor.
December 16, 2021
Apple is in the news after suing NSO Group, a state-sponsored spyware organization. Apple is not alone in the ever-growing corporate outcry against NSO Group.
December 15, 2021
Canadian authorities have arrested a suspected ransomware attacker. The Ottawa, Ontario resident was arrested on suspicion of executing several ransomware attacks.
December 14, 2021
The US Treasury Department recently announced a new partnership with Israel to expand efforts to combat ransomware attacks across the globe.
December 13, 2021
A ransomware attack on a school in Pennsylvania may have leaked personal data belonging to thousands of students and staff. Threat actors targeted a computer server that stored the information with the hacker bypassing several security measures that were already in place.
December 10, 2021
The FBI and other federal agencies raided several Chinese POS terminals owned by PAX Technology in Florida on October 26, 2021.
December 09, 2021
Cryptocurrency has gained increasing popularity in recent times. However, a new trend shows cybercriminals and other threat actors are also drawn to these crypto platforms, moving from targeting users via emails.
December 08, 2021
Electronic Warfare Associates (EWA), a US government defense contractor, has disclosed that a data breach hit it following an email phishing incident.
December 07, 2021
The UK Labor Party has disclosed that it suffered a significant cyberattack. Threat actors targeted a supplier handling the party's data.
December 06, 2021
Trading platform Robinhood experienced a data breach which resulted in a leak of its confidential documents and customer details.
December 03, 2021
Hackers have targeted the FBI's email servers and sent out thousands of fake messages that notified recipients of being victims of a "sophisticated chain attack.
December 02, 2021
Most security leaders in critical infrastructure organizations are underestimating the scale of cyber-threats to their operations, despite having suffered breaches over the past three years.
December 01, 2021
Last week, a bill was introduced in Congress to protect America's finances from the threat of ransomware. This is coming in response to the ever-increasing rate of ransomware attacks in the US, with 121 incidents reported in just the first half of 2021.
November 30, 2021
An error has leaked personal and financial data belonging to millions of Indian investors. The Indian Central Depository Services Limited subsidiary - CDSL Ventures Limited (CVL) - announced this while reporting a data breach on its network.
November 30, 2021
The Desorden hacking group, believed to be behind Acer's recent data breach, has struck again. This time they infiltrated the Centara Hotels & Resorts Thai luxury hotel chain.
November 26, 2021
The U.S. Justice Department announced that law enforcement officials seized around $6 million in ransom payments from the REvil ransomware group and the cyberattacks they carried Criminal charges were also filed against two foreign nationals who allegedly coordinated the ransomware attacks.
November 22, 2021
The Viverant PT physical therapy center in Minneapolis was recently hit with a data breach that affected the personal information of over 6500 of their current and former patients and employers.
November 19, 2021
A huge amount of police helicopter footage allegedly leaked from police departments in Texas and Georgia on a website on November 5, reportedly exposing about 1.
November 18, 2021
The Toronto Transit Commission (TTC), which oversees the city's public transport system, reported a ransomware cyberattack on Friday, Oct 29.
November 16, 2021
Phishing remains the main attack strategy for cybercriminals, increasing by 31. 5 percent over 2020. PhishLabs revealed this in their Quarterly Threat Trends and Intelligence Report.
November 15, 2021
Russian group Conti hacked confidential documents from multinational jewellery company Graff in an attempt to extort money. The notorious gang has sought a multi-million dollar ransom to avoid leaking sensitive information on the company's customers.
November 12, 2021
After an extensive 2-year investigation, Europol announced Friday that they had captured individuals across different criminal organizations suspected to be instrumental in ransomware attacks that have hit organizations worldwide.
November 11, 2021
Files from what appears to be from the The National Rifle Association (NRA) have been posted to the dark web by Russian hacking group Grief Gang.
November 10, 2021
It has been reported that the Scottish Environment Protection Agency (SEPA), which is still recovering from a previous breach, has been targeted by the same hackers in an attempt to disrupt attempts to rectify issues from the last cyber attack.
November 09, 2021
The U.S. State Department is creating a new bureau of cyberspace and digital policy as part of an overall strategy to confront global cybersecurity challenges such as phishing and ransomware attacks.
November 08, 2021
SCUF Gaming International recently sent emails to customers, alerting them that a previous data breach at the company has put their credit cards at potential risk and that customers should closely monitor their accounts.
November 05, 2021
Cyberattacks targeting the Tokyo Olympic-related events broke previous records as the largest sporting competition went underway.
November 04, 2021
REvil, the hacking gang responsible for a variety of ransomware attacks is offline. According to Reuters, the US government has successfully hacked the gang's dark web websites.
November 02, 2021
Three fraudulent websites attempting to steal citizens' driver information were shut down by the Florida Department of Law Enforcement (FDLE) on the 19th of October.
November 01, 2021
Google and Alphabet Inc. CEO Sundar Pichai shared his thoughts on the state of tech innovation in the United States and the need for new regulations in a wide-ranging interview at the WSJ Tech Live conference.
November 01, 2021
New Jersey's Acting Attorney General has announced that the Diamond Institute of Infertility reached a settlement with the state to resolve an inquiry into a data breach.
October 29, 2021
Data has never had more value than it does now. It is the lifeblood of every company or organization and key to many company processes and functions.
October 29, 2021
In the news this week are multiple stories of the Ragnar Locker gang using scare tactics to keep victims silent and prevent them from alerting local law enforcement or the FBI.
October 29, 2021
Data Breach Today reports that two hospitals in Indiana were hit hard by cyberattacks last week as the hospital's administration had to make the decision to divert patients to other unaffected care providers.
October 28, 2021
The Cybersecurity Subcommittee in Congress is pushing for a legislative mandate for companies to promptly report cases of data breaches.
October 28, 2021
Threatpost reported this morning that a vulnerability in the Squirrel programming language could allow bad actors to execute malicious code within a gaming virtual machine (VM), giving them complete control over it.
October 28, 2021
Microsoft announced that it would soon fix a bug that could allow bad actors to use brute-force attacks to gain access to its Azure Active Directory service.
October 28, 2021
The NCC Group discovered a new cybercrime threat actor with a unique mode of operation on October 11. Dubbed "SnapMC," it has proven to be efficient in extracting data from organizational networks without disrupting the victim's activities.
October 28, 2021
A huge telecom provider working with AT&T, T-Mobile, Verizon, and others admits it was the victim of a data breach lasting five years affecting 200+ of its clients and millions of cell phone owners.
October 28, 2021
Multiple news outlets reported today about a ransomware attack on Sinclair T.V. stations, knocking them offline. Viewers took to Twitter to complain about multiple T.V. channels offline.
October 28, 2021
The good guys recently scored a win when Europol shut down an Italian Mafia criminal gang involved in online fraud, money laundering, drug trafficking, and property crime.
October 28, 2021
Some hacker gangs employ a moral code and avoid attacking certain types of businesses. One of those is schools and educational organizations.
October 28, 2021
New laws regarding personal privacy are in the news often. Personal freedom experts are highly concerned about the effect of a new geofence location warrant that police can use to obtain your whereabouts.
October 28, 2021
Government and U.S. intelligence agencies warn five states that ransomware hackers continue to target U.S. water supply facilities, posing a serious and terrifying threat for Americans.
October 27, 2021
Business Insider reported yesterday that a pentagon official quit because the U.S. had no chance of fighting Chinese hackers.
October 27, 2021
Every year, America observes Cyber Security Awareness month in October. To mark this year's observance, Oregon's Attorney General announced that she received 131 reports of data breaches between January and September.
October 27, 2021
On Monday, October 11, unknown persons carried out multiple unauthorized actions on user accounts on Visible. This made many people believe that the Verizon-owned digital carrier might have experienced a data breach.
October 27, 2021
Sinclair Broadcast Group, a telecommunications company that operates multiple TV stations across the U.S, has announced a data breach on its network.
October 27, 2021
IBM's X-Force reports that threat actors using Trickbot have expanded their distribution channels to allow them more coverage and the use of Conti ransomware along with their usual Trickbot and BazarLoader malware.
October 27, 2021
Threat researchers discover a new vulnerability with Intel processors potentially allowing bad actors to take control of users' computers and execute malicious commands.
October 27, 2021
In what appears to be a practical joke, hackers took over the U.S. Navy's Facebook page for its destroyer, the USS Kidd, and streamed live gameplay for the Age of the Empires online game.
October 27, 2021
In August, hackers used the U.S. Department of Transportation as a ploy in a two-day phishing campaign designed to steal Microsoft credentials.
October 27, 2021
In a blatant scam, a hacker group is targeting more than 100,000 inboxes per day to steal gift card codes and loyalty program information for resale on the dark web.
October 27, 2021
Threat researchers have discovered a new malware variant called Capoae that hackers are using to target WordPress sites and enslave them in a malicious network aimed at mining cryptocurrency.
October 27, 2021
Microsoft is in the news again with another data leak researchers are calling a "flaw," but the company denies any issue with the Power Apps platform.
October 27, 2021
Last week the United Nations admitted that they had suffered a ransomware attack earlier this year, which led to a slew of follow-up attacks.
October 27, 2021
SAC Wireless is the latest victim of Conti ransomware and subsequent data breach. SAC Wireless is a U.S.-based Nokia subsidiary.
October 27, 2021
A massive security breach on Acer's servers resulted in the loss of critical internal business information belonging to millions of customers.
October 26, 2021
A Boston cybersecurity company, Cybereason, has discovered new attacks targeting aerospace and telecom companies in the Middle East.
October 26, 2021
In another blatant example of misconfigured web services, McDonalds recently exposed the database name and login credentials for its Monopoly Game in the UK to all winners who received email notifications.
October 25, 2021
Australia's government is taking a hard line against ransomware attacks. New laws demand that businesses report ransomware attacks to the government and include assistance for victims and harsher criminal penalties for hackers.
October 22, 2021
Hackers are using a brand new spoofing email to lure victims into handing over credentials and other personal information. The trick uses a secure email coming from a Baptist church domain.
October 22, 2021
Yesterday was Patch Tuesday for Microsoft, and the tech giant rolled out an update to eliminate 71 vulnerabilities in the Windows operating system.
October 22, 2021
On Monday, Apple released an urgent update to iOS and iPad OS to patch a critical zero-day flaw currently being exported in the wild by hackers.
October 21, 2021
Users of the popular gaming platform Twitch should be on alert; a recent data breach has exposed all customers' data, including encrypted passwords and payout details.
