News
-
"Security Teams Overwhelmed With Bugs, Bitten by Patch Prioritization"In the first half of the year, the number of vulnerabilities disclosed surpassed 11,800, forcing businesses to assess the impact of an average of 90 security issues per weekday. The figures come from the cybersecurity firm Flashpoint's "The State of…
-
"IoT Malware Attack Volume Up 123% in Healthcare"Malware attacks involving Internet of Things (IoT) devices in healthcare are becoming more common as connected health adoption grows and threat actors continue to seek out nontraditional attack vectors to exploit. According to a November 2021 report by…
-
"Legacy Authentication Methods Responsible for 80% Of Data Breaches on Financial Institutions, but Most Refuse To Upgrade"According to a report released by HYPR, even after experiencing data breaches, the majority of financial institutions did not change their authentication procedures. 500 data management and IT security experts from financial-related industries, including…
-
"FCC Warns of Rising Robotext Scams"The Federal Communications Commission (FCC) has recently noticed “substantial increases” in complaints about scam robotexts. The FCC is warning consumers that these texts are on the rise. It added that it also saw more reports of scam texts…
-
"N Korean APT Uses Browser Extension to Steal Emails From Foreign Policy, Nuclear Targets"Threat intelligence and incident response company Volexity stated that over the past year, North Korean advanced persistent threat (APT) actor Kimsuky has been observed using a browser extension to steal content from victims' webmail accounts. …
-
"Study Outlines Privacy Risks in Metaverse Virtual Worlds"In the paper titled, "Exploring the Unprecedented Privacy Risks of the Metaverse," researchers from UC Berkeley and the Technical University of Munich tested an "escape room" Virtual Reality (VR) game to better understand how much data a potential…
-
"OneTouchPoint Discloses Data Breach Impacting Over 30 Healthcare Firms"Mailing and printing services vendor OneTouchPoint has disclosed a data breach impacting more than 30 healthcare providers and health insurance carriers. OneTouchPoint offers print, marketing execution, and supply chain management services to…
-
"Malicious Npm Packages Designed to Steal Discord Tokens"Security researchers at Kaspersky have discovered yet another supply chain attack campaign using malicious npm packages, this time targeting Discord users. The researchers said they identified four suspicious packages in the popular npm repository…
-
"Secure Cryptography with Real-World Devices Is Now a Realistic Possibility"A new study published in Nature describes how an international team of researchers experimentally implemented a type of quantum cryptography thought to be the 'ultimate,' 'bug-proof' means of communication for the first time. In an experiment based on…
-
"RaaS Groups Forced to Change Tack as Payments Decline"Security researchers at Coveware found that Ransomware-as-a-service (RaaS) operators are evolving their tactics yet again in response to more aggressive law enforcement efforts. The researchers identified three characteristics of RaaS operations…
-
"Microsoft Links Raspberry Robin Malware to Evil Corp Attacks"Microsoft discovered that an access broker tracked as DEV-0206 uses the Raspberry Robin Windows worm to deploy a malware downloader on networks. Evidence of malicious activity matching Evil Corp tactics was also discovered. Microsoft researchers…
-
"Euro Police Bust 3m Euro Internet Fraud Gang"Spanish and Romanian police recently joined forces to take down a gang suspected of earning at least €3m ($3.1) from internet scams. Spanish National Police arrested three suspects in the southern city of Malaga, while their Romanian counterparts…