CyberNews

Screenshots by Jason Cipriani/ZDNet It’s time to update your Apple devices once again.  Apple on Wednesday released several security updates for the iPhone, iPad, Apple TV, Apple Watch, and Mac

Best Cybersecurity Research Paper Revealed The National Security Agency has announced the winning entry to its ninth annual Best Cybersecurity Research Paper Competition. The winning paper was written by Yanyi Liu from Cornell University

EyeMed Fined $600k Over Data Breach An Ohio-based healthcare provider has been fined $600k over a data breach that exposed the records of 2.1 million patients across America.  Cyber-criminals targeted EyeMed Vision Care

#DataPrivacyWeek: Online Trackers Can Detect 80% of Users' Browsing History Online trackers can capture up to 80% of users’ browsing histories, with the practice far more pervasive than previously realized.

Ransomware is the number one cybersecurity concern for Chief Information Security Officers (CISO) are facing at the beginning of 2022, but it’s just one of many issues which they’re attempting

Cybercriminals managed to launder at least $8.6 billion worth of cryptocurrency in 2021, according to a new report from blockchain analytics company Chainalysis. The company said the $8.6 billion represents

Initial access broker group, Prophet Spider, has been found exploiting the Log4J vulnerability in VMware Horizon, according to a new report from researchers with BlackBerry Research & Intelligence and Incident

Amazon Athena is a popular cloud service that enables lightning-fast queries on huge volumes of data in Amazon S3. It is 100% serverless, working without setting up a server the

Finding a new vulnerability is exciting and, depending on the vulnerability and organization, can be lucrative. However, finding the vulnerability is only part of the process. Reporting a vulnerability to

Log4Shell affected hundreds of millions of devices and was cast as a critical tech emergency that would almost certainly be exploited attackers around the globe.  But a month after the

Researchers have uncovered a new strain of macOS malware in targeted attacks against visitors to a Hong Kong pro-democracy radio station website.  The website was used to facilitate a watering

Experts Reveals 29% Surge in Bugs Used by Ransomware Actors There’s been a 29% increase in the number of vulnerabilities exploited by ransomware groups to compromise their targets over the

Government Trials Effort to Make Bug Scanning Easier The UK’s leading cybersecurity agency has revealed details of a new initiative designed to make it easier for system administrators to root

Home Working Drives 44% Surge in Insider Threats Insider threats cost organizations an average of over $15m annually to remediate last year, with stolen credentials a growing risk, according to Proofpoint. The

The Trickbot Trojan has been revised with a new set of anti-reverse engineering features including the capability to crash computers if analysis tools are detected. Over the years, Trickbot has

The UK’s National Cyber Security Center (NCSC) has released NMAP scripts to help defenders search for specific vulnerabilities in their networks.  On January 25, the NCSC said the trial project

GitHub announced that two-factor authentication will be available to all users through GitHub Mobile this week. In a blog post, GitHub’s Berk Veral said GitHub Mobile 2FA will be available

Application security company F5 Networks delivered better-than-expected Q1 financial results, reporting non-GAAP net income of $179 million, or $2.89 per diluted share, and a GAAP revenue of $687 million. But

LA Launches Cyber Resilience Center The Port of Los Angeles has opened a new Cyber Resilience Center (CRC) that will detect and protect against cyber-threats that could potentially impact cargo

New Mexico Files Cybersecurity Bills Lawmakers in New Mexico from both sides of the aisle have introduced new legislation to defend the state against cyber-threats.  In the past six days,

Google has provided new information on the end of the troubled development process for the FLoC (Federated Learning of Cohorts) it had hoped to use as a replacement for cookies,

Tile Sometimes, I question if my keys and wallet are like the toys in Toy Story, having their own entities and tip-toeing away when I’m not looking. True or not,

Cyber-Attack on Global Affairs Canada Cyber-criminals have attacked the federal government entity responsible for Canada’s diplomatic and global relations.  Global Affairs Canada was hit on Wednesday – one day before

Hackers are hijacking the Instagram accounts of companies and influencers with huge followings in a new phishing campaign identified by Secureworks. The cybersecurity company said it discovered the effort in

Hackers are using Microsoft OneDrive in a multi-stage espionage campaign aimed at high-ranking government officials in Western Asia, according to a new report from Trellix.  Researchers with Trellix named the

Password guessing is essentially an art form when this attack is performed on a large scale against a large group of users. Password spraying attacks are part of this landscape,