Microsoft is warning that China-based nation state threat actors are taking advantage of a one-year-old law to "stockpile" zero-days for use in sustained malware attacks.  According to Microsoft, China's government hacking groups have become "…

The Calgary Police Service, the University of Calgary, and the cybersecurity firm ENFOCOM Corporation have formed a new public-private partnership to develop the infrastructure and processes required to pursue cybercriminals. The collaboration, which…

Zurich American Insurance and Mondelez International have recently settled their dispute over the confectionary giant's $100m claim related to the 2017 NotPetya cyberattack.  The lawsuit has been widely considered a test case for property war…

Texas-based IT management solutions provider SolarWinds has recently agreed to pay $26 million to settle a shareholder lawsuit over the data breach disclosed by the company in 2020.  The cyberattack involved Russia-linked threat actors breaching…

The midterm elections face digital threats, ranging from stolen Twitter accounts to hacked election websites, which could confusion and unrest long after the polls close. There is a risk that hackers could infiltrate voting machines and other election…

The Federal Communications Commission (FCC) recently voted to approve a notice of proposed rulemaking aimed at improving the cybersecurity of the nation's public warning system, in part by requiring Emergency Alert System (EAS) operators to report any…

Apple recently announced a security update for the Xcode macOS development environment to resolve three Git vulnerabilities, including one leading to arbitrary code execution.  The first of the issues, CVE-2022-29187, is a variant of CVE-2022-24765…

Japan recently has become the latest US ally to join NATO's Cooperative Cyber Defence Centre of Excellence (CCDCOE), in a move likely to anger Moscow.  Defense Minister Seiichi Hamada stated that Japan's Ministry of Defense (JMOD) will formally join…

Researchers have discovered a new Business Email Compromise (BEC) group that has impersonated legitimate attorneys, law firms, and debt collection services to con accounting employees into paying fake invoices. The group, dubbed Crimson Kingsnake by…

Medibank revealed that a cyberattack on the company's systems in October impacted 9.7 million current and former customers, with the number of those affected being significantly higher than previously thought. The company, one of Australia's largest…

LastPass published the findings of its fifth annual Psychology of Password report, which revealed that, despite increased cybersecurity education, password hygiene has not improved. Regardless of generational differences between Boomers, Millennials, and…

The RomCom threat group is actively targeting various English-speaking countries, especially the UK, with a Remote Access Trojan (RAT) using trojanized versions of popular software products such as SolarWinds Network Performance Monitor, KeePass Open-…