The City of Baltimore, Maryland still has not recovered from the ransomware infection that prompted it to shut down most of its servers on May 7. While the city’s most essential services such as emergency services remain operational, many other systems are down. The City was targeted by a ransomware

A new IronNet survey shows that over 94% of organizations share certain intelligence (such as malicious IP’s and domains) as a form of collective defense and the same number of firms is open to share more intel with industry peers if this will boost their threat detection efforts, while 92%

A new PwC study looks at the characteristics of security “trailblazers,” i.e. the top 25% of firms in terms of cybersecurity. According to the report, over 80% of the trailblazers indicated that their cybersecurity staff managed to anticipate and mitigate a new cyber threat to the business before it impacted

New Forescout research highlights how reliance on outdated systems is putting healthcare organizations (HCOs) at risk. The study found that a staggering 71% of Windows devices in HCOs run Windows 7, Windows 2008 or Windows Mobile, even though Microsoft will end support for these operating systems by January 2020. Currently

Bad Packets Report has uncovered a Magecart campaign targeting the subscription website of Forbes. Magecart is an umbrella term for various criminal groups that attack e-commerce websites with the aim of injecting them with card skimming malware. In this case, the threat actors managed to inject a malicious script into

US President Donald Trump is expected to sign an executive order this week that would allow the US government to bar US organizations from using telecommunications equipment from firms if this use is considered to represent a national security risk. The order, which comes in the midst of new trade

Once again, security researchers have discovered critical vulnerabilities in CPU chips that allow attackers to use a technique called speculative execution in order to get CPUs to leak sensitive information. The January 2018 disclosure of a previous set of such flaws, called Meltdown and Spectre, sent shock waves through the

On Tuesday, threat actors hacked into the online video stream of the Eurovision semi-finals held in Tel Aviv, Israel and used their access to issue fake warning messages of a missile attack on the city. They also broadcast animated satellite footage showing explosions across Tel Aviv. KAN, the Israeli TV

Researchers with the BlackBerry Cylance Threat Intelligence team have discovered that a previously uncovered Chinese hacking campaign targeting correspondence between European Union (EU) diplomats, is related to a host of other campaigns by “disparate” Chinese hacking groups. The researchers found that the campaigns make use of a single command-and-control (C2)

A new report by Citizen Lab sheds light on a sophisticated disinformation campaign that aims to spread Iranian propaganda by promoting articles on spoofed news websites through phony Twitter accounts. The ongoing campaign, dubbed “Endless Mayfly,” started in 2016 and involved at least 11 fake Twitter personas that targeted journalists