NEWS

Healthcare Still Seeing High Level of Attacker Activity

Interest in vaccines is driving all sorts of activity, reports say, from vaccine-specific phishing to growing bot traffic on healthcare sites. With the global vaccination effort commanding headlines and media coverage on a daily basis, attackers have jumped on a variety of schemes to take advantage of people’s need to know more about the status … Continue reading Healthcare Still Seeing High Level of Attacker Activity

Microsoft Adopted an Aggressive Strategy for Sharing SolarWinds Attack Intel

Rob Lefferts, corporate vice president for Microsoft 365 Security in Security and Compliance, explains the company’s approach to keeping its customers and the industry apprised and updated on its findings from the now-infamous attack. In the wake of a widespread cyberattack, enterprise IT providers can play a key role in how businesses learn about and … Continue reading Microsoft Adopted an Aggressive Strategy for Sharing SolarWinds Attack Intel

Three Top Russian Cybercrime Forums Hacked

Over the past few weeks, three of the longest running and most venerated Russian-language online forums serving thousands of experienced cybercriminals have been hacked. In two of the intrusions, the attackers made off with the forums’ user databases, including email and Internet addresses and hashed passwords. Members of all three forums are worried the incidents … Continue reading Three Top Russian Cybercrime Forums Hacked

How SolarWinds Busted Up Our Assumptions About Code Signing

With so much automation in code writing process, results are rarely double-checked, which opens the door to vulnerabilities and downright danger. As the fallout from the SolarWinds hack broadens, we continue to learn more about just how it happened in the first place. There have now been four malware strains identified, one being Sunspot, which … Continue reading How SolarWinds Busted Up Our Assumptions About Code Signing

At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

At least 30,000 organizations across the United States — including a significant number of small businesses, towns, cities and local governments — have over the past few days been hacked by an unusually aggressive Chinese cyber espionage unit that’s focused on stealing email from victim organizations, multiple sources tell KrebsOnSecurity. The espionage group is exploiting … Continue reading At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software