Fortune 500 service provider says ransomware attack led to leak of more than 500k SSNs

Morley Companies, an organization that provides business services to dozens of Fortune 500 companies, said this week it was hit with a ransomware attack last year that led to the…

Mozilla adds four privacy-centric orgs to Data Futures Lab, awards each with $100,000

Mozilla announced this week that four organizations have joined its latest Data Futures Lab cohort. Place Trust, Driver’s Seat Cooperative, Drivers Coop and Digital Democracy will all get $100,000 grants…

Argo CD releases patch for 0-day vulnerability

Argo CD released a patch this week for a zero-day vulnerability enabling attackers to access sensitive information like passwords and API keys. The vulnerability was discovered by Apiiro’s Security Research…

Republican senators demand briefing on IRS decision to require ID.me 'selfies'

A group of Republican senators on the Finance Committee have formally called for the Internal Revenue Service (IRS) to provide more information about its plan to incorporate facial recognition provider ID.me…

Ransomware spree hitting European oil, transport companies

Written by Tim Starks Feb 4, 2022 | CYBERSCOOP European oil and transportation services have spent all week under attack by ransomware. The latest victim, aviation services company Swissport, announced…

Threat Roundup for January 28 to February 4

Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between Jan. 28 and Feb. 4. As with previous roundups, this post isn’t meant to be an…

Investment in data privacy in Brazil falls below global average

According to a study released by Cisco, investments in data privacy among Brazilian organizations are falling below the global average. The study interviewed 4,900 professionals in 27 countries and found…

‘Long Live Log4Shell’: CVE-2021-44228 Not Dead Yet

The ubiquitous Log4j bug will be with us for years. John Hammond, senior security researcher at Huntress, discusses what’s next. Jen Easterly, the director of the Cybersecurity and Infrastructure Security…

Freeze out hackers during the 2022 Winter Olympic Games

Attackers have increasingly targeted the Olympics with cyberattacks. The 2022 Winter Olympics kick off in Beijing this week, and this trend will likely continue. In fact, this Tuesday, the FBI issued…

Major Vulnerability Found in Argo CD

Major Vulnerability Found in Argo CD Security researchers at Apiiro have discovered a significant software supply chain zero-day vulnerability in the popular open-source continuous delivery platform, Argo CD. Used by thousands of organizations…