17 May 2021

Cisco Patches Code Execution Flaw in VPN Product 6 Months After Disclosure

Earlier this week, Cisco announced that it had released patches for a high-severity vulnerability that lies in its AnyConnect Secure Mobility Client that can be exploited for remote code execution. The flaw was initially disclosed in November of 2020, and it has taken roughly six months for the company to

Read More
17 May 2021

Impacted Vendors Release Advisories for FragAttacks Vulnerabilities

Vendors impacted in the FragAttacks, a series of recently disclosed Wi-Fi vulnerabilities, have released security advisories in response. A dozen CVE identifiers have been assigned to the set of vulnerabilities after they were discovered last year by security researcher Mathy Vanhoef. The vulnerabilities consist of three design flaws and nine

Read More
17 May 2021

‘Scheme Flooding’ Allows Websites to Track Users Across Browsers

Security researchers have discovered a new vulnerability that allows browsers to enumerate applications on a machine, threatening cross-browser anonymity in popular search engines such as Chrome, Firefox, Microsoft Edge, Safari, and Tor. The vulnerability is referred to as “scheme flooding,” and allows websites to identify users across different desktop browsers,

Read More
17 May 2021

‘We won’t pay ransom,’ says Ireland after attack on health service

Ireland’s Health Service Executive (HSE) was recently the victim of a ransomware attack that took some services offline temporarily as the organization attempted to mitigate any further risks. The HSE has now stated that it does not plan on paying ransom despite struggling to restore its IT systems. HSE has

Read More
14 May 2021

Colonial Pipeline Shells Out $5M in Extortion Payout, Report

Colonial Pipeline has disclosed that it resorted to paying the DarkSide ransomware gang the ransom demanded in return for a decryption key. The total transaction amounted to $5 million. Colonial Pipeline is one of the largest US fuel pipelines, and the attack caused a subsequent spike in fuel prices up

Read More
14 May 2021

Cyber-attacks Cost Small US Businesses $25k Annually

Although most of the attacks that make headlines pertain to large companies and organizations, a new report found that cyberattacks are costing small businesses in the US an average of $25,000 annually. The report was published by an international insurance company called Hiscox and it surveyed 6,000 cybersecurity professionals in

Read More
14 May 2021

Toshiba unit struck by DarkSide ransomware group

On Friday, Toshiba Tec Corp announced that one of its units was targeted by a ransomware attack likely perpetrated by the DarkSide hacking group. Toshiba is well known for its production of barcode scanners, Point-of-Sale systems, printers, and other electrical equipment. The company stated that the unit targeted was located

Read More
14 May 2021

‘Significant’ ransomware attack forces Ireland’s health service to shut down IT systems

Ireland’s health service has become one of the most recent victims of ransomware, forced to take its systems offline due to the attack. The Health Service Executive is responsible for healthcare and social services throughout Ireland. The attack was described by the entity as “significant,” prompting them to shut down

Read More
13 May 2021

Telegram Fraudsters Ramp Up Forged COVID-19 Vaccine Card Sales

A new type of fraud has been circulating on the dark web, with vendors selling fake vaccination records to people who want the social benefits of gaining access to places where proof of vaccine is required, but don’t want to get the shot. Telegram groups are currently being abused by

Read More
13 May 2021

‘FragAttacks’: Wi-Fi Bugs Affect Millions of Devices

A security researcher who specializes in uncovering Wi-Fi bugs has found a series of new ones he dubbed “FragAttacks.” The bugs affect the Wi-Fi standard itself, with some dating back as late as 1997. Through this type of attack, a malicious actor could intercept a target’s information, trigger malicious code,

Read More