NEWS ARTICLES

Western Digital’s EdgeRover desktop app for both Windows and Mac are vulnerable to local privilege escalation and sandboxing escape bugs that could allow the disclosure

Microsoft has reminded Windows customers today that they’ll finally retire the Internet Explorer 11 web browser. After Internet Explorer is retired, Microsoft will still support

According to Hive Systems your passwords should be at least 18 mixed up characters for maximum security. Here’s how long it would take a hacker

Are you on the fence contemplating on whether or not your company needs a backup solution? If you have a backup solution, how often is

By: Sergiu Gatlan Americans are increasingly targeted by scammers on social media, according to tens of thousands of reports received by the US Federal Trade

By: Derek Manky There’s no way to put it nicely: cybercrime just continues to get worse as we become increasingly connected. 2020 was a banner

By: Sergiu Gatlan Many LastPass users report that their master passwords have been compromised after receiving email warnings that someone tried to use them to

By: Bill Toulas Four affiliated online sports gear sites have disclosed a cyberattack where threat actors stole credit cards for 1,813,224 customers. While not much

By Sergiu Gatlan Proof-of-concept exploits for a critical zero-day vulnerability in the ubiquitous Apache Log4j Java-based logging library are currently being shared online, exposing home

by: Paul Ducklin The US Securities and Exchange Commission (SEC) has issued numerous warnings over the years about fraudsters attempting to adopt the identity of

Holidays are the times we look forward to our entire year. Whether it be joyful times with family or vacation plans, everything can be messed

By: Sergiu Gatlan Costco Wholesale Corporation has warned customers in notification letters sent this month that their payment card information might have been stolen while

By: Sergiu Gatlan The Federal Bureau of Investigation (FBI) warns that ransomware gangs are targeting companies involved in “time-sensitive financial events” such as corporate mergers and

By: Sergiu Gatlan U.S. Water and Wastewater Systems (WWS) Sector facilities have been breached multiple times in ransomware attacks during the last two years, U.S.

by: Kaleb Brown As if Facebook didn’t have enough drama last week following the testimony from the whistleblower and the outage affecting all of its

By Eduard Kovacs Enterprise users have been warned that cybercriminals may be trying to phish their credentials by luring them with fake emails that appear

By: Lawrence Abrams U.S. farmers cooperative NEW Cooperative has suffered a BlackMatter ransomware attack demanding $5.9 million not to leak stolen data and provide a

By: Kaleb Brown When purchasing Office 365, you’ve probably been under the impression that your information is safe and secure. You pay a monthly (or

By: Paul Ducklin A researcher at vulnerability and red-team company Rapid7 recently uncovered a pair of risky security bugs in a digital home security product.

By: Brooke Baggett An advisory has been issued this week by the FBI and CISA (Cybersecurity and Infrastructure Security Agency). This advisory (link provided below)

By Sergiu Gatlan Today, T-Mobile’s CEO Mike Sievert said that the hacker behind the carrier’s latest massive data breach brute forced his way through T-Mobile’s network after

By Sergiu Gatlan T-Mobile has confirmed that attackers who recently breached its servers stole files containing the personal information of tens of millions of individuals. The

By Lawrence Abrams Threat actors are now actively scanning for the Microsoft Exchange ProxyShell remote code execution vulnerabilities after technical details were released at the Black

by Paul Ducklin French researcher Gilles Lionel, who goes by @topotam77, recently published proof-of-concept code that attackers could use to take over a Windows network.

By: Greg Hayman, Kaleb Brown, and David Watson Computer Networks for Businesses continue to be under fire. They’re being attacked by old and new Cyber

By: Richard Speed Microsoft has shared guidance revealing yet another vulnerability connected to its Windows Print Spooler service, saying it is “developing a security update.”

By Lawrence Abrams Kaseya has released a security update for the VSA zero-day vulnerabilities used by the REvil ransomware gang to attack MSPs and their

By Lawrence Abrams Researchers have bypassed Microsoft’s emergency patch for the PrintNightmare vulnerability to achieve remote code execution and local privilege escalation with the official

By: Paul Ducklin Governments and law enforcement hate it when ransomware victims pay the blackmail demands that almost always follow a ransomware attack, and you

By Lawrence Abrams This vulnerability can allow an unauthenticated threat actor to send targeted phishing emails or malicious links to a user of a Cisco

by Lisa Vaas This is the fourth time in a bit over a year that Carnival’s admitted to breaches, with two of them being ransomware

By Lawrence Abrams It has been quite the week when it comes to ransomware, with ransoms being paid, ransoms being taken back, and a ransomware

By Lawrence Abrams The US Department of Justice has recovered the majority of the $4.4 million ransom payment paid by Colonial Pipeline to the DarkSide

by Paul Ducklin In case you’ve never heard of it, Have I Been Pwned, or HIBP as it is widely known, is an online service

by Paul Ducklin Remember how ransomware started? It was all about volume. The CryptoLocker gang, for example, raked in millions of dollars, perhaps even hundreds

Our parent company, TecInfo Communications, is proud to have won the opportunity, to build and operate a fiber network, through portions of Sunflower, Bolivar and

by Paul Ducklin When it comes to all the various types of malware out there, none has ever dominated the headlines quite as much as

by Paul Ducklin Well-known computer gaming hardware vendor MSI is warning of fake download sites ripping off its brand. The company doesn’t just sell high-end

by Paul Ducklin Remember HAFNIUM? Of course you do – it was the name behind a foursome of Exchange bugs that got patched in an