01 Jul 2020

US Government Warns of Palo Alto Vulnerability

The US government has warned of a serious flaw in Palo Alto Networks equipment that could allow unsophisticated and unskilled attackers to compromise devices easily. The warning was issued by the US Cyber Command, who expressed concern over foreign nation-states targeting its networks and its partners’ networks. The US Cyber

Read More
01 Jul 2020

EvilQuest Mac Ransomware Has Keylogger, Crypto Wallet-Stealing Abilities

Security researchers have found a new ransomware strain that specifically targets macOS users being distributed through different versions of pirated software. Dinesh Devadoss originally uncovered EvilQuest, which goes beyond standard ransomware capabilities. EvilQuest has the ability to deploy a keylogger and the capability to steal cryptocurrency wallets on compromised systems.

Read More
30 Jun 2020

University of California SF Pays Ransom After Medical Servers Hit

The University of California San Francisco has reportedly given in to ransom requests after it was the victim of a cyberattack that compromised important servers in the UCSF School of Medicine. UCSF paid a total of $1.14 million in ransom after being locked out of the servers. The same threat

Read More
29 Jun 2020

Chinese malware used in attacks against Australian orgs

Last week, the Australian government released an advisory warning to residents of increased cyber activity from a state actor targeting Australian agencies and companies. The attacks have been conducted by sophisticated adversaries that utilize a proof-of-concept exploit code. Experts have drawn connections between the attacks and Chinese hackers, unofficially directing

Read More
29 Jun 2020

Major US Companies Targeted in New Ransomware Campaign

A security research group claims that Evil Corp targeted at least 31 victims in a hacking campaign that aimed to deploy the new WastedLocker malware. Many of the targeted organizations are Fortune 500 companies that are based in the US. If the attacks had succeeded, they could have had a

Read More
26 Jun 2020

Domestic Abuse Victims Exposed in Cloud Misconfiguration

A developer at Aspire News, an application run by US non-profit When Georgia Smiled, misconfigured an AWS bucket that resulted in personal information of domestic abuse victims being exposed. Researchers at vpnMentor found voice recordings between emergency distress responders and domestic violence victims stored in a publicly accessible AWS S3

Read More
26 Jun 2020

Nvidia Warns Windows Gamers of Serious Graphics Driver Bugs

Nvidia has disclosed it fixed two high-severity flaws in its graphics drivers. The vulnerabilities can be exploited to view sensitive data, gain privileges, or launch a denial-of-service attack on compromised Windows gaming devices. Nvidia, a graphics chipmaker, developed the GPU Display Driver for Windows and is used in devices targeted

Read More
26 Jun 2020

Phishing attacks target workers returning to the office

COVID-19 has attracted cybercriminals who have been capitalizing on the global pandemic by creating related phishing campaigns, malicious websites, and fake apps. Recent phishing attacks have taken a slight turn, beginning to target employees returning to the office as businesses start to reopen across the world. Check Point security published

Read More
25 Jun 2020

Medical Devices Among Most Risky to Security

Forescout Device Cloud has identified several points of risk inherent to device type, industry sector, and cybersecurity policies through analyzing data and metrics. The company concluded that medical devices, physical access operations, and networking equipment are at high risk for cyberattacks. The data points were correlated from 11 million devices

Read More
25 Jun 2020

Black Hat Survey: Breach Concerns Hit Record Levels Due to COVID-19

A new survey released by Black Hat USA concludes that there is unprecedented concern over data breaches due to COVID-19. Security professionals expressed worries over possible compromises of enterprise networks and critical infrastructure. The survey’s respondents consist of 273 top security professionals. 94% of these respondents stated that they believe

Read More