News
-
"QBot Malware Infects Over 800 Corporate Users in New, Ongoing Campaign"Security researchers at Kaspersky have found that more than 800 corporate users have been infected in a new QBot malware distribution campaign since September 28. Also known as Qakbot and Pinkslipbot, QBot is an information stealer with backdoor…
-
"Transformation of Suspicious Activity Reporting to Combat Financial and Cyber Crime"Suspicious Activity Reports (SARs) are an important part of how the UK combats money laundering criminality. The Drug Trafficking Offences Act established these in 1986, and they have evolved through the 2002 Proceeds of Crime Act and the 2019 Money…
-
"Chrome 106 Update Patches Several High-Severity Vulnerabilities"Google recently announced that the latest Chrome update patches six high-severity vulnerabilities, including four use-after-free bugs. Google noted that external researchers discovered all the newly resolved vulnerabilities, and Google handed out $…
-
"Data Security Incident Exposes PHI For Over 1K Zomo Health Members"Healthcare software company Zomo Health recently disclosed a data security incident to HHS that involved the protected health information (PHI) of 1,359 individuals accidentally being exposed. According to Zomo Health, they became aware of a…
-
"Patent Filed for Satellite Cryptography"The province of Lower Austria presented the best inventions and discoveries made by Lower Austrian researchers in celebration of the province's 100th anniversary. One of the presentations highlighted a patent filed for satellite cryptography. Univ.-Doz.…
-
"Identity Theft Resource Center Q3 2022 Data Breach Report: Compromises & Victims Up from Q2 - Record High Year Unlikely"Recently the Identity Theft Resource Center (ITRC), a nationally recognized nonprofit organization established to support victims of identity crime, released its U.S. data breach findings for the third quarter (Q3) of 2022. According to the Q3 2022…
-
"For Most Companies Ransomware Is the Scariest of All Cyberattacks"According to SonicWall's 2022 Threat Mindset Survey, 66 percent of customers are more concerned about cyberattacks in 2022, with the main threat being financially motivated attacks such as ransomware. Companies are losing millions of dollars to unending…
-
"Android 'Always-on VPN' Reportedly Leaks Some Data — Does it Include IP Addresses?"Mullvad VPN discovered that Android leaks traffic whenever the device connects to a Wi-Fi network, even when the "Block connections without VPN" or "Always-on VPN" features are enabled. Source IP addresses, DNS lookups, HTTPS traffic, and possibly NTP…
-
"Microsoft Addresses Zero-Days, but Exchange Server Exploit Chain Remains Unpatched"Microsoft addressed a critical security vulnerability in its Azure cloud service in its October Patch Tuesday update, which earned a rare 10-out-of-10 rating on the CVSS vulnerability-severity scale. The company also patched two "important" zero-day bugs…
-
"Patch Tuesday: Critical Flaws in ColdFusion, Adobe Commerce"Adobe recently released security patches for 29 documented vulnerabilities across multiple enterprise-facing products and warned that hackers could exploit these bugs to take complete control of vulnerable machines. Adobe warned the vulnerabilities…
-
"LockBit Affiliates Compromise Microsoft Exchange Servers to Deploy Ransomware"According to the South Korean cybersecurity firm AhnLab, LockBit ransomware affiliates are distributing their malware through compromised Microsoft Exchange servers. LockBit 3.0 ransomware infected two servers operated by the security firm's customer in…
-
"Google Forms Abused in New COVID-19 Phishing Wave in the US"COVID-19-themed phishing messages are on the rise in the US. According to a report shared by email security company INKY, malspam volumes more than doubled in September compared to the previous three months and are expected to rise even further. In the…