K-12 Cybersecurity Act Signed Into Law

Security Intelligence – Security Intelligence – K-12 Cybersecurity Act Signed Into Law Present Joe Biden signed the K-12 Cybersecurity Act into law, which lays out four objectives with the goal…

DHS issues emergency directive ordering all federal civilian agencies to address Log4j flaw

Written by AJ Vicens Dec 17, 2021 | CYBERSCOOP U.S. cyber officials issued an emergency directive Friday giving all federal civilian agencies until Dec. 23 to assess their internet-facing networks…

Nation-state hackers aim to exploit Log4j software flaw, Microsoft warns

Written by AJ Vicens and Tim Starks Dec 15, 2021 | CYBERSCOOP Hackers associated with the governments of China, Iran, North Korea and Turkey have been trying to find ways…

CISA to brief critical infrastructure companies about urgent new Log4j vulnerability

Written by Tonya Riley Dec 13, 2021 | CYBERSCOOP The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency will host a call with critical infrastructure stakeholders Monday afternoon about…

Online Shoppers at Risk of Losing Over $53 Million

The Federal Bureau of Investigation has warned that internet buyers might lose more than $53 million during the holiday season this year. The FBI Internet Crime Complaint Center (IC3) received…

Microsoft Exchange and Fortinet Vulnerabilities Exploited by Iranian APT

An APT assault generally involves a group of highly competent hackers with very specific targets and a “slow and steady” approach to planning and executing their crimes.As Elena mentioned, APT…

Election officials don't need to report cyber incidents to the feds. That could soon change.

Written by AJ Vicens Oct 28, 2021 | CYBERSCOOP Security personnel charged with the challenging and high-stakes work of protecting election systems from digital threats might soon have another task…

CISA warns of trojanized versions of JavaScript library’s NPM package

The warning comes days after three rogue packages, okhsa, klow, and klown discovered by DevSecOps firm Sonatype, were removed from the NPM repository. On Friday, the US Cybersecurity and Infrastructure…

CISA – Ransomware targeted SCADA systems of 3 US water facilities

United States has warned of more ransomware attacks on information technology (IT) and operational technology (OT) networks of country’s Water and Wastewater Systems (WWS) Sector facilities. On Thursday, multiple US…

FBI, CISA warn water facility operators of ongoing malicious cyber activity

Written by AJ Vicens Oct 14, 2021 | CYBERSCOOP Ransomware attackers are continuing to target water and wastewater facilities, U.S. intelligence and law enforcement officials warned in a new bulletin…