At Our IT Department, we do our best to keep you up-to-date with all the latest news and updates regarding IT issues and enhancements.
By: Sergiu Gatlan U.S. Water and Wastewater Systems (WWS) Sector facilities have been breached multiple times in ransomware attacks during the last two years, U.S.
By Eduard Kovacs Enterprise users have been warned that cybercriminals may be trying to phish their credentials by luring them with fake emails that appear
By: Lawrence Abrams U.S. farmers cooperative NEW Cooperative has suffered a BlackMatter ransomware attack demanding $5.9 million not to leak stolen data and provide a
By: Kaleb Brown When purchasing Office 365, you’ve probably been under the impression that your information is safe and secure. You pay a monthly (or
By: Paul Ducklin A researcher at vulnerability and red-team company Rapid7 recently uncovered a pair of risky security bugs in a digital home security product.
By: Brooke Baggett An advisory has been issued this week by the FBI and CISA (Cybersecurity and Infrastructure Security Agency). This advisory (link provided below)
By Sergiu Gatlan Today, T-Mobile’s CEO Mike Sievert said that the hacker behind the carrier’s latest massive data breach brute forced his way through T-Mobile’s network after
By Sergiu Gatlan T-Mobile has confirmed that attackers who recently breached its servers stole files containing the personal information of tens of millions of individuals. The
By Lawrence Abrams Threat actors are now actively scanning for the Microsoft Exchange ProxyShell remote code execution vulnerabilities after technical details were released at the Black
by Paul Ducklin French researcher Gilles Lionel, who goes by @topotam77, recently published proof-of-concept code that attackers could use to take over a Windows network.
You’ll want to shut down the Windows Print Spooler service (yes, again): Another privilege escalation bug found
By: Richard Speed Microsoft has shared guidance revealing yet another vulnerability connected to its Windows Print Spooler service, saying it is “developing a security update.”
By Lawrence Abrams Kaseya has released a security update for the VSA zero-day vulnerabilities used by the REvil ransomware gang to attack MSPs and their
By Lawrence Abrams Researchers have bypassed Microsoft’s emergency patch for the PrintNightmare vulnerability to achieve remote code execution and local privilege escalation with the official
By: Paul Ducklin Governments and law enforcement hate it when ransomware victims pay the blackmail demands that almost always follow a ransomware attack, and you
By Lawrence Abrams This vulnerability can allow an unauthenticated threat actor to send targeted phishing emails or malicious links to a user of a Cisco
By Lawrence Abrams It has been quite the week when it comes to ransomware, with ransoms being paid, ransoms being taken back, and a ransomware
By Lawrence Abrams The US Department of Justice has recovered the majority of the $4.4 million ransom payment paid by Colonial Pipeline to the DarkSide
by Paul Ducklin In case you’ve never heard of it, Have I Been Pwned, or HIBP as it is widely known, is an online service
by Paul Ducklin Remember how ransomware started? It was all about volume. The CryptoLocker gang, for example, raked in millions of dollars, perhaps even hundreds
by Paul Ducklin When it comes to all the various types of malware out there, none has ever dominated the headlines quite as much as
by Paul Ducklin Well-known computer gaming hardware vendor MSI is warning of fake download sites ripping off its brand. The company doesn’t just sell high-end
by Paul Ducklin Remember HAFNIUM? Of course you do – it was the name behind a foursome of Exchange bugs that got patched in an