Researchers at CrowdStrike discovered that the average time it takes threat actors to move from initial access to lateral movement has fallen by 67% over the past year, putting extra pressure on security operations (SecOps) teams.  The findings come…

Researchers at Kaspersky have found that the number of attacks targeting IoT devices has almost doubled from the second half of 2020 to the first six months of this year.  The researchers collected data from a network of honeypots to mimic…

September 28 - October 1

Join us for a virtual event hosted by USC CEO, September 21 – 24, 2021. Learn how your ERGs can continue to enhance your company’s strategy, performance, culture, and return on investment (ROI). More information here.

The WiCyS 2021 Annual Conference will be held on September 8-10, 2021 at the Gaylord Rockies Resort and Convention Center. WiCyS is the premier event to RECRUIT, RETAIN and ADVANCE women in cybersecurity. WiCyS brings together women in cybersecurity from…

Attackers are actively exploiting a flaw in Microsoft Windows that has not been patched yet. In a recently released security alert, Microsoft says the remote execution vulnerability exists in MSHTML, also known as Trident, an HTML engine built into…

The Federal Bureau of Investigation (FBI) issued a Private Industry Notification (PIN) warning organizations in the food and agriculture sector about an increase in ransomware attacks that could affect the food supply chain. The growing reliance on smart…

Online scam targets gift cards and loyalty cards Over 100,000 inboxes are the target of an under the radar approach to extracting small amounts of funds from gift cards, credits, and other valuables that show up in people’s inboxes. This cybercrime group…

Classes were canceled at a private university in Washington DC yesterday following a cyberattack. Unusual activity was discovered on the Howard University (HU) network last Friday by HU's information technology team. On Monday, the university announced…

An infamous ransomware group that appeared to shutter its operations following a significant supply chain attack on IT software provider Kaseya seems to be back in business.  REvil/Sodinokibi rasnomware has been used by countless affiliates to…

Researchers on FireEye's Mandiant advanced practices team have discovered a new memory-resident malware family named PRIVATELOG and its installer called STASHLOG. According to the researchers, PRIVATELOG and STASHLOG apply a unique and stealthy approach…

One of America’s largest school districts has informed students, alumni, parents, and employees that personal data from the past 11 years was exposed after a third party gained unauthorized access to it on August 8th.  The Dallas Independent School…