Ransomware gang tries new tactic to squeeze victim firm
ALPHV/BlackCat gang creates publicly-available spoofed website of victim company to show it
Breaking news: Ransomware gang gives decryptor to Toronto’s SickKids Hospital
LockBit ransomware gang blames an unnamed affiliate for hitting the hospital, and claims that violated its so-ca
Canadian copper mine hit by ransomware
Discovery of attack came shortly after the announcement of a multi-million sale o
Cybersecurity Year in Review for 2022: A lack of resilience
A look back at significant cybersecurity even
2023 Cybersecurity predictions – Part 1
Making cybersecurity predictions is easy (“Cybercriminals will become more inventive”). Making actionable ones for IT security leaders is much harder. We’ve assembled what we hope is a useful list of predictions from cybersecurity vendors – people who know what threat actors talk about on dark web forums, as well as the strengths and weaknesses of
2023 Cybersecurity predictions – Part 2
This is the second of a two-part collection of predictions from over 40 cybersecurity vendors. Ian Pratt, global head of security for personal systems at HP Inc. — Session hijacking – where an attacker will commandeer a remote access session to access sensitive data and systems – will grow in popularity in 2023. Increased use
Log4j2 vulnerability on year later: ‘It is still being exploited’
Lingering from 2021 and expected to be a worry for years, IT and security pros still have to face the Log4j2 hole. Read what they shoul
LastPass hacker got customer information and their encrypted vault data
Business and personal users of the LassPass password management solution are being warned to take defensive action after the company acknowledged customer information and encrypted data they had stored in the service’s digital vault were copied by a hacker in a supply chain attack. “Users should beware of sophisticated phishing attacks aimed at stealing their
Newly discovered Linux vulnerability rated 10 in severity
Linux administrators are being warned to address five new vulnerabilities, one of which is rated 10 on the Common Vulnerability Scoring System (CVSS) severity ranking. The vulnerabilities are listed by Trend Micro’s Zero Day Initiative (ZDI), a project that pays security researchers for finding vulnerabilities. The most serious of the five, designated ZDI-22-1690, allows remote
Meta to pay US$725 to U.S. Facebook users over Cambridge Analytica scandal
Proposed settlement of class action still has to be approved
