CISA probes scope, potential fallout of Log4j vulnerability

Written by Tim Starks Dec 14, 2021 | CYBERSCOOP A top government cyber official said Tuesday that the Cybersecurity and Infrastructure Security Agency hasn’t seen hackers compromise federal agencies by…

Brazilian Ministry of Health suffers cyberattack and COVID-19 vaccination data vanishes

Websites under Brazil’s Ministry of Health (MoH) have suffered a major ransomware attack that resulted in the unavailability of COVID-19 vaccination data of millions of citizens. Following that attack that…

Omicron Phishing Scam Already Spotted in UK

Omicron COVID-19 variant anxiety inspires new phishing scam offering fake NHS tests to steal data. The global pandemic has provided cover for all sorts of phishing scams over the past…

Microsoft Exchange and Fortinet Vulnerabilities Exploited by Iranian APT

An APT assault generally involves a group of highly competent hackers with very specific targets and a “slow and steady” approach to planning and executing their crimes.As Elena mentioned, APT…

#IRISSCON: Security Industry Should Change the Rhetoric Around Cyber-Threats

#IRISSCON: Security Industry Should Change the Rhetoric Around Cyber-Threats Governments and security vendors should represent cyber-threats differently, cutting down on hyperbole and overly dramatic language. This was the message from…

Exchange, Fortinet Flaws Being Exploited by Iranian APT, CISA Warns

Meanwhile, a Microsoft analysis that followed six Iranian threat actor groups for over a year found them increasingly sophisticated, adapting and thriving. A state-backed Iranian threat actor has been using…

Iranian government-backed hackers target critical infrastructure with ransomware, US says

Written by Tim Starks Nov 17, 2021 | CYBERSCOOP U.S., U.K. and Australian cyber agencies on Wednesday accused Iranian government-sponsored hacking groups of exploiting Microsoft and Fortinet vulnerabilities this year…

Vulnerable Web Applications Prevalent in EU Pharma Companies

Vulnerable Web Applications Prevalent in EU Pharma Companies Europe’s top 10 pharma companies all have vulnerable web applications, potentially putting sensitive medical and patient data at risk of being hacked,…

EU pharmaceutical giants run old, vulnerable apps and fail to use encryption in login forms

New research into the security posture of Europe’s top pharmaceutical giants has revealed concerning levels of vulnerabilities and weak spots in web applications.  On Thursday, Outpost24 published new research that…

Study Coordinator Falsified Clinical Trial Data

Study Coordinator Falsified Clinical Trial Data A man from Colorado is facing a maximum prison sentence of 20 years after admitting to falsifying clinical trial data. Duniel Tejeda, formerly of…