Heimdal™ and Sumillion Partner Up for Educational Cyberattack Prevention Webinar
Copenhagen, October 11th, 2021 – Heimdal™ Security (Heimdal™) partnered with reseller Sumillion to deliver a highly educational webinar on the current cyberattack landscape and how it impacts small to medium
More and More Companies Are Getting Hit with Ransomware
The increasing frequency and size of ransomware attacks are becoming a huge concern for thousands of organizations globally. All over the world, threat actors take advantage of security vulnerabilities and
Firefox Suggest to display sponsored ads but users can disable them
The company maintains that it has to help fund Firefox’s optimization/development, and therefore, it has introduced a new feature called Firefox Suggest in Firefox 93. Mozilla, as we know it,
Beware- FontOnLake Rootkit Malware Attacking Linux Systems
According to ESET’s researchers, components of FontOnLake malware are divided into three groups: Trojamized app, Rootkit, and Backdoor. Researchers at Slovak cybersecurity company ESET have identified a new malware family
ECU Student Charged with Cyber-stalking
ECU Student Charged with Cyber-stalking A student at East Carolina University has been charged with cyber-stalking after allegedly posing as a member of a rival fraternity to upload a racist
A Brief Walkthrough On CMMS Cybersecurity
CMMS platforms can also be compromised like peer software which brings us to our today’s discussion topic of how to prevent cyber attacks. A Computer Maintenance Management Software (CMMS) can
Brewer’s Token Gaffe Causes Massive PII Breach
Brewer’s Token Gaffe Causes Massive PII Breach An authentication error left the personal data of hundreds of thousands of BrewDog customers and Equity for Punks shareholders exposed for a year and a
Twitch data breach resulted from server configuration error
Twitch Data Breach took place a couple of days ago when an anonymous hacker published a torrent file with 125 GB worth of data on the 4chan messaging board. As
US Shutters Psychic Mass Mail Fraud
US Shutters Psychic Mass Mail Fraud An international psychic mail fraud scheme that sold the promise of good fortune to tens of thousands of victims has been shut down by
Former TD Bank, Bank of America employee allegedly helped email scammers launder money
Written by Jeff Stone Oct 8, 2021 | CYBERSCOOP An accused money launderer allegedly used his position as an employee at Bank of America and TD Bank to aid an
AVD Bug Fixed by Microsoft
An AVD bug has been recently fixed by Microsoft. What the flaw did was to block various Azure Virtual Desktop devices, not letting them downloading and running the monthly updates.
What is a data breach & how to prevent one?
What is a data breach? A data breach is a security lapse where a non-authorized person can assess sensitive information without authorization. Let’s dig deeper into data breach prevention measures.
FIN12 Ransomware Group Hits Healthcare Sector
It is a well-known fact that the majority of ransomware actors are spending time on the victim network looking for important data to steal. FIN12 does not follow this course
Apache Releases Yet Another Emergency Update to Address Exploited Vulnerabilities
Earlier this week, Apache HTTP Server users have been urged to immediately patch as a zero-day bug in the open-source cross-platform web server software is actively being exploited in the wild.
Excel 4.0 Macros Will Be Disabled in Order to Protect Users
The macros that will be disabled by default are found in Microsoft 365. The company is aiming to protect its customers from malicious documents by taking this action. What Are
14,000 Gmail Users Warned by Google of Phishing Campaign
The American multinational tech company Google has alerted more than 14,000 Gmail users about a phishing campaign targeting them. The operation is allegedly conducted by a hacking group that has
Top SMB Security Tips for Cybersecurity Awareness Month
October is CyberSecurity Awareness Month. Many CISOs might argue that every month should be so designated, given the importance of cybersecurity. But in any case the campaign serves as a
Vidar Stealer Returns and Has a New Target: Mastodon
Vidar stealer is back and has a new target: this time, the Mastodon social media network is being abused in a fresh malicious campaign. The goal is C2 configuration achievement
Microsoft: Russia Dominates State-Sponsored Attacks
Microsoft: Russia Dominates State-Sponsored Attacks Russia accounted for the majority of state-sponsored attacks over the past year, with the SolarWinds attackers dominating threat activity, according to Microsoft data. The firm’s Digital
NatWest Pleads Guilty in £400m Money Laundering Case
NatWest Pleads Guilty in £400m Money Laundering Case A leading UK high street bank has pleaded guilty to failing to stop a massive money-laundering operation carried out by a business
UK Firms Hit by One Attack Every 47 Seconds Over Summer
UK Firms Hit by One Attack Every 47 Seconds Over Summer Cyber-attacks targeting UK firms are back on the increase, reaching a rate of one every 47 seconds over the
New guidelines for responding to cyber attacks don’t go far enough
Padlokr – If Australia’s electricity grid was targeted by cyber attack the fall out could be severe. Shutterstock Adam Henry, UNSW and Greg Austin, UNSW Debates about cyber security in
New cyber-attack model helps hackers time the next Stuxnet
Padlokr – Disabling a country’s electricity with the click of a button. usairforce Akshat Rathi, The Conversation Of the many tricks used by the world’s greatest military strategists, one usually
If two countries waged cyber war on each another, here’s what to expect
Padlokr – lolloj Bill Buchanan, Edinburgh Napier University Imagine you woke up to discover a massive cyber attack on your country. All government data has been destroyed, taking out healthcare
Cyber peacekeeping is integral in an era of cyberwar – here’s why
Padlokr – Shutterstock Helge Janicke, De Montfort University Cyber warfare is upon us, from interference in elections to a leak of cyber weapons from a national stockpile. And, as with
Is counter-attack justified against a state-sponsored cyber attack? It’s a legal grey area
Padlokr – The US has charged and sanctioned nine Iranians and an Iranian company for cyber attacks. Parmida Rahimi/Flickr, CC BY-SA Sandeep Gopalan, Deakin University On March 23, the US
Cyber spies for hire: efforts to control cyber weapons ignore the agents who use them
Padlokr – Maksim Shmeljov/Shutterstock Alexi Drew, King’s College London Reports of malicious and targeted cyber attacks are becoming increasingly common around the world. In early February, for example, Australia’s security
Government cybersecurity commission calls for international cooperation, resilience and retaliation
Padlokr – Real-time cyberattacks on a display at the 175th Cyberspace Operations Group of the Maryland Air National Guard. U.S. Air Force photo by J.M. Eddins Jr., CC BY-NC Benjamin
Telecom giant behind routing SMS discloses 5-year-long data breach
Syniverse, the targeted telecom firm, works with carriers like T-Mobile, Verizon, Twilio, and AT&T in routing SMS text messages exchanged between them and carriers abroad. Syniverse, the well-known telecom giant,
Demo: A Guide to Virtual Machine App Security
Trend Micro – It may seem like containers are the go-to method for cloud building, however 95% applications run on traditional infrastructure deployments like dedicated servers, shared hosting, and virtual
Taking Breach Prevention to the Next Level with Morphisec
A successful security breach brings with it a host of legal and financial ramifications, including cleanup costs paid to remediation vendors and possible penalties from the exfiltration of sensitive data.
Navy Warship’s Facebook Page Hacked to Stream ‘Age of Empires’ Gaming
The destroyer-class USS Kidd streamed hours of game play in a funny incident that has serious cybersecurity ramifications. The official Facebook page of a destroyer-class Navy warship, the USS Kidd,
Twitch Leak Included Emails, Passwords in Clear Text: Researcher
A researcher combed through the Twitch leak and found what they said was evidence of PayPal chargebacks with names and emails; employees’ emails; and more. Twitch users, if you haven’t
Twitch Leak Included Emails, Passwords in Clear Text: Researcher
A researcher combed through the Twitch leak and found what they said was evidence of PayPal chargebacks with names and emails; employees’ emails; and more. Twitch users, if you haven’t
Smishing on the Rise
Smishing on the Rise A new financial crime report by risk management tool developer Feedzai has found an increase in phishing scams perpetrated via text message, a practice known as smishing. The report analyzed over
Patching Too Tortuous for IT Pros
Patching Too Tortuous for IT Pros Patching vulnerabilities is too labor intensive and convoluted a process for most IT security professionals, according to new research by Ivanti. The Utah-based software company surveyed over
4 Key Questions for Zero-Trust Success
Anurag Kahol, CTO & co-founder at Bitglass, offers tips for avoiding implementation pitfalls for zero trust. Historically, securing remote access was primarily done using VPNs. However, as enterprises have begun
Google blames suspected Russian hacking group for targeting 14,000 Gmail users
Written by Tonya Riley Oct 7, 2021 | CYBERSCOOP Russian hackers targeted approximately 14,000 Gmail users last month, according to the company Threat Analysis Group. While 100 percent of the
#DTX2021: A Beginner's Guide to Chaos
#DTX2021: A Beginner's Guide to Chaos What is chaos engineering is and how to get started? What are the different types of tests and how does it compare to other
US Creates National Cryptocurrency Enforcement Team
US Creates National Cryptocurrency Enforcement Team The United States Department of Justice (DOJ) has formed a new task force to oversee complex investigations and prosecutions of criminal misuses of crypto-currency.
Emergent ransomware gang FIN12 strikes hospitals, moves quickly against big targets
Written by Tim Starks Oct 7, 2021 | CYBERSCOOP A Russian-speaking ransomware gang in recent months has aggressively targeted North American organizations with more than $300 million in revenue, with a
#DTX2021: AI Ethics in Practice: How to Turn AI Principles Into Practical Governance and Compliance?
#DTX2021: AI Ethics in Practice: How to Turn AI Principles Into Practical Governance and Compliance? Where are we at with human interaction with AI? What impact in terms of ethics
Medtronic recalls insulin pump controllers over life-threatening flaws
A threat actor can exploit these vulnerabilities to hijack Medtronic devices and modify how much insulin should be administered to a patient. Medtronic, a well-known medical device maker, has recalled
Medtronic Cybersecurity Risks: Some Devices Should Be Returned to Vendor
Some Medtronic cybersecurity risks were discovered in relation to the “MiniMed Paradigm” products range, that is why the company urges immediate returning to vendors the remote controllers associated with MiniMed
Welland Park Academy IT Systems Hacked by a Former Employee Who Was Getting Bored
In retaliation for being fired, a computer expert began to carry out cyberattacks and deleted data from a secondary school’s systems, and changed passwords at an IT firm. On January
ShellClient Malware Used against Aerospace and Telco Firms
ShellClient is a previously undocumented remote access trojan (RAT) built with extra attention to its stealth capabilities on any system it infects. Apparently, the malware was created in order to
What is Spear Phishing? Definition, Examples, Prevention Strategies
What is spear phishing, you ask? Long story short, it’s a phishing technique that plays on the victim’s trust or, rather his gullibility. Spear phishing attacks are surgical, while general
#DTX2021: Adapt to Succeed During Times of Great Disruption, Says Astronaut Adam Steltzner
#DTX2021: Adapt to Succeed During Times of Great Disruption, Says Astronaut Adam Steltzner Astronaut Adam Steltzner, NASA JPL, outlined six principles that organizations of all sectors need to embrace in order