LATEST POST
New HiatusRAT malware attacks target US Defense Department
In a new HiatusRAT malware campaign, threat actors targeted a U.S. Department of Defense server in a reconnaissance attack. Read more of this article by Sergiu Gatlan at Bleeping Computer.
New Acoustic Attack Steals Data From Keystrokes With 95% Accuracy
You’re on a call with someone and they can hear you keyboarding. Can they figure out what you typed or steal any passwords you typed in while on the call? Read more of this article by Bill Toulas at Bleeping Computer.
As schools reopen, expect more cyberattacks.
Schools that haven’t already reopened this year will be reopening this week, which makes this a great time for ransomware gangs to strike. All school districts should be hypervigilant and make sure they have a rapid response plan and an emergency backup plan in place. A number of school districts have already been reporting attacks […]
GEICO to face class action over allegations of privacy breach
GEICO is set to confront a nationwide class action lawsuit after allegedly compromising its customers’ privacy through the unauthorized release of their driver’s license numbers that were later used by identity thieves to secure fraudulent unemployment benefits. US District Judge Kiyo Matsumoto delivered the decision to proceed with the lawsuit in Brooklyn earlier this week, Reuters […]
FBI, European partners seize Quakbot malware network in blow to global cybercrime
U.S. officials said Tuesday that the FBI and its European partners infiltrated and seized control of a major global malware network used for more than 15 years to commit a gamut of online crimes including crippling ransomware attacks. They then remotely removed the malicious software agent — known as Qakbot — from thousands of infected […]
Texas Amends Data Breach Notification Law, Updates Effective September 1
Texas recently enacted an amendment to its data breach notification law. As of September 1, 2023, there are two changes to the requirements when notifying the Texas Attorney General. In Texas, breaches of 250 residents or more must be reported to the Attorney General. Now, as amended, this will need to be done so as soon as […]
Hackers use brute force and credential stuffing attacks on Cisco VPNs to breach networks
Hackers are targeting Cisco Adaptive Security Appliance (ASA) SSL VPNs in credential stuffing and brute-force attacks that take advantage of lapses in security defenses, such as not enforcing multi-factor authentication (MFA). Last week, BleepingComputer reported that the Akira ransomware gang was breaching Cisco VPNs for initial network access. Rapid7 security researchers have provided additional insights regarding these […]
Prospect Medical Holdings admits some confidential information was stolen in a cyberattack on Connecticut hospitals
Prospect Medical Holdings has now confirmed what already seemed clear to researchers and those who check leak sites. The threat actors did get files with personal information. Prospect Medical Holdings is confirming new details about a massive data theft from three Connecticut hospitals and others around the country in a nearly month-old cyber attack by a shadowy […]