Qakbot’s Low-Volume Resurgence Targets Hospitality
Cybersecurity researchers spotted new Qakbot activity targeting the hospitality industry last week.According to a Saturday post on X (formerly Twitter)...
Premium Members Content
Incident Response and Management: A Comprehensive Tip for the Week
Cyber-attacks are an ever-looming threat in our increasingly digital world. These incidents can be disastrous, leading to the theft, alteration...
Over 45,000 Employees Hit By Nuclear Research Lab Breach
Tens of thousands of current and former employees of a leading US cybersecurity and nuclear research laboratory were impacted by...
Four Charged in Connection With $80m Pig Butchering Scheme
Four US residents have been charged with a series of money laundering offenses connected to a major “pig butchering” fraud...
UK Plans Tough New Security Rules For Datacenters
The UK government has proposed new rules designed to regulate the datacenter sector, in a bid to improve baseline cybersecurity and...
Microsoft Targets Prolific Outlook Fraudster Storm-1152
Microsoft has gone after a prolific Vietnam-based threat group it describes as “the number one seller and creator” of fake...
Approval Phishing Scams Drain $1bn of Cryptocurrency from Victims
Approval phishing scams have been used to steal at least $1bn in cryptocurrency since May 2021, according to a new...
GambleForce Group Targets Websites With SQL Injection
Security researchers have warned of a new threat group targeting gambling, government, retail and travel websites to steal sensitive information...
Cozy Bear Hackers Target JetBrains TeamCity Servers in Global Campaign
Cozy Bear, a threat group linked with the Russian foreign intelligence service (SVR), has been conducting a global hacking campaign...
Vulnerabilities Now Top Initial Access Route For Ransomware
Threat actors are switching tactics to compromise their victims with ransomware, with more attacks now exploiting vulnerabilities rather than using phishing...
UK Ministry of Defence Fined For Afghan Data Breach
The UK’s data protection regulator has fined the Ministry of Defence (MoD) £350,000 ($439,000) after a serious email error which...
Ukraine Claims it “Paralyzed” Russia’s Tax System
Ukraine has claimed a major scalp in the ongoing cyber-war with Russia, saying it has effectively crippled the Kremlin’s tax...
MITRE Launches Critical Infrastructure Threat Model Framework
The cyber threat to critical infrastructure is increasing, prompting cyber government agencies to issue more warnings and advisories for industrial...
Microsoft Fixes 34 CVEs and One Zero-Day in December Patch Tuesday
Microsoft ended the year with a relatively light patch-load, issuing updates for 34 vulnerabilities including one zero-day first reported back...
Russia Set to Ramp Up Attacks on Ukraine’s Allies This Winter
Russia is set to ramp up cyber campaigns targeting Ukraine’s allies as kinetic warfare slows this winter, according to a...
UK at High Risk of Catastrophic Ransomware Attack, Government Ill-Prepared
The UK is at high risk of a “catastrophic” ransomware attack, with the government ill-prepared to deal with this threat,...
Apache Warns of Critical Vulnerability in Struts 2
Apache has warned customers of a critical remote code execution (RCE) vulnerability in its popular Struts 2 framework.Apache Struts 2...
Ukraine’s Largest Phone Operator Hack Tied to War With Russia
Kyivstar, Ukraine’s leading mobile network operator, is experiencing a significant shutdown allegedly due to a cyber-attack.The company, owned by Amsterdam-based...
Widespread Security Flaws Blamed for Northern Ireland Police Data Breach
The most significant data breach that has ever occurred in the history of UK policing was due to force-wide security...
Backup Migration WordPress Plugin Flaw Impacts 90,000 Sites
Security researchers have warned users of a popular WordPress plugin that they need to patch urgently or risk their site...
Threat Actor Targets Recruiters With Malware
Proofpoint has warned recruiters of a skilled threat actor targeting them with emails designed to deploy malware.TA4557 is a financially...
Two-Fifths of Log4j Apps Use Vulnerable Versions
Organizations are still exposed to critical vulnerabilities in Log4j, two years after a maximum severity bug was found in the...
Police Arrest Hundreds of Human Traffickers Linked to Cyber Fraud
Interpol has repeated warnings that human traffickers are fueling an online fraud epidemic in South East Asia and beyond, after...
EU Reaches Agreement on AI Act Amid Three-Day Negotiations
The EU reached a provisional deal on the AI Act on December 8, 2023, following record-breaking 36-hour-long ‘trilogue’ negotiations between...