Crooks Spoofing Credit Unions to Steal Funds and Login Credentials

Email security provider Avanan revealed in a Thursday report that a new phishing campaign exploits local credit unions to steal money and data. According to Avanan’s research, phishing emails are…

Patch Tuesday December 2021 – Microsoft Fixes 67 Flaws, Including 6 Zero-Day Vulnerabilities

December’s Patch Tuesday comes with numerous security fixes and improvements, including two actively exploited zero-day vulnerabilities. The list features spoofing, denial of service, remote code execution, elevation of privilege, and…

Log4j Looms Large Over Patch Tuesday

Log4j Looms Large Over Patch Tuesday IT teams knocked for six by a newly disclosed Log4j bug were forced to tackle a new patch load from Microsoft released yesterday, containing 67 new…

Actively Exploited Microsoft Zero-Day Allows App Spoofing, Malware Delivery

December’s Patch Tuesday updates address six publicly known bugs and seven critical security vulnerabilities. Microsoft has addressed a zero-day vulnerability that was exploited in the wild to deliver Emotet, Trickbot…

Microsoft December 2021 Patch Tuesday: Zero-day exploited to spread Emotet malware

Microsoft has released 67 security fixes for software including seven critical issues and a zero-day flaw being actively exploited by cybercriminals.  In the Redmond giant’s latest round of patches, usually released…

Hackers using concern about Omicron strain of COVID-19 to attack US universities

Researchers with cybersecurity firm Proofpoint have discovered a new phishing attack leveraging concern about the spread of the Omicron strain of COVID-19 to steal credentials and gain access to accounts…

Vulnerabilities Found in GOautodial

Vulnerabilities Found in GOautodial A cybersecurity researcher has discovered multiple vulnerabilities in an open-source call center software suite used around the world. The Synopsys Cybersecurity Research Center (CyRC) released an advisory today exposing two API…

Bitdefender Threat Debrief | November 2021

The Bitdefender Threat Debrief (BDTD) is a monthly series analyzing threat news, trends, and research from the previous month. You can find all previous debriefs here. Highlight of the month:…

CISA Seeks Extra Email Protection

CISA Seeks Extra Email Protection The United States’ Cybersecurity and Infrastructure Security Agency (CISA) is exploring a protective email service (PES) that can be used to make Federal Civilian Executive…

CISA Issues Holiday Ransomware Message

CISA Issues Holiday Ransomware Message The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) are warning Americans not to take a break from cybersecurity this…