FBI Works With ‘Have I Been Pwned’ to Notify Emotet Victims
Officials shared 4.3 million email addresses with the HIBP website to help inform companies and individuals if Emotet compromised their accounts.The FBI is working with data breach notification service...
74% of Financial Institutions See Spike in COVID-Related Threats
Financial losses have also increased among organizations in the last year, with the average cost reaching $720,000.Financial institutions are hit hard by COVID-related cybercrime, according to new research from...
Attacks Targeting ADFS Token Signing Certificates Could Become Next Big Threat
New research shows how threat actors can steal and decrypt signing certificates so SAML tokens can be forged.Conventional access control and detection mechanisms alone are no longer sufficient to...
Ransomware Recovery Costs Near $2M
The cost of recovering from a ransomware attack has more than doubled in one year, Sophos researchers report.The average total cost of recovery from a ransomware attack has more...
Do Cyberattacks Affect Stock Prices? It Depends on the Breach
A security researcher explores how data breaches, ransomware attacks, and other types of cybercrime influence stock prices.In the aftermath of a data breach, ransomware attack, or vulnerability disclosure, organizations...
Proofpoint to Be Acquired by Thoma Bravo for $12.3B
The cybersecurity company will go private following the all-cash transaction.Private equity firm Thoma Bravo has agreed to acquire cybersecurity company Proofpoint for $12.3 billion in an all-cash transaction, the...
Apple Patches Serious MacOS Security Flaw
Enterprise VulnerabilitiesFrom DHS/US-CERT's National Vulnerability Database
CVE-2021-22669PUBLISHED: 2021-04-26
Incorrect permissions are set to default on the ‘Project Management’ page of WebAccess/SCADA portal of WebAccess/SCADA Versions 9.0.1 and prior, which may allow...
US Urges Organizations to Implement MFA, Other Controls to Defend Against Russian Attacks
Actors working for Moscow's Foreign Intelligence Service are actively targeting organizations in government and other sectors, FBI and DHS say.The FBI, the Department of Homeland Security (DHS), and the...
Prometei Botnet Adds New Twist to Exchange Server Attacks
Enterprise VulnerabilitiesFrom DHS/US-CERT's National Vulnerability Database
CVE-2021-25668PUBLISHED: 2021-04-22
A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT...
New CISA Advisories Warn of ICS Vulnerabilities
The vulnerabilities exist in Cscape control system application programming software and the Mitsubishi Electric GOT.The Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) today issued ICS advisories for...
