Microsoft Warns of Uptick in MSHTML Attacks Attackers leveraging the flaw are using infrastructure associated with other criminal groups, including ransomware-as-a-service operators, the company says.
IoT 'Nutrition' Labels Aim to Put Security on Display NIST has laid the groundwork for an easy-to-understand way to communicate to consumers the security of software and connected devices.
Who Is BlackMatter? Researchers piece together the origins of the group that made headlines this week as the perpetrator behind a ransomware attack on New Cooperative.
New Cooperative's Ransomware Attack Underscores Threat to Food & Agriculture The Iowa grain cooperative took its systems offline in response to a security incident earlier this week.
Open Source Software Projects Up Their Security Game but Face More Attacks Patches for dependencies are trickling up through the open source ecosystem faster than ever — a good thing because attackers are focusing more on open source software.
International Insider Threat: DoJ Fines US Intel Officials Who Aided UAE Three former US intelligence operatives have been fined $1,685,000 for aiding the United Arab Emirates in widespread hacking campaigns.
Why Cryptomining Malware Is a Harbinger of Future Attacks Crypto thieves rely on users not noticing installation of their tiny payload on thousands of machines, or the CPU cycles being siphoned off to perpetuate the schemes.
White House Cybersecurity Summit: A Missed Opportunity Last month's summit with the president was missing something crucial: representation from those who deal with critical infrastructure.
Under Pressure: COVID-19 Forced Many Execs to Sideline Cybersecurity CISOs are more stressed, and the fallout is increased cyber-risk. Also, budget restrictions lead to a yawning chasm between need and funding.
Midmarket Security: Think You’re Safe? Think Again Gone is the false perception that large enterprises, banks, and financial institutions are the only organizations under attack.
CISA, FBI, NSA Warn of Increase in Conti Ransomware Attacks A new alert provides the technical details of ongoing attacks and guidance for organizations to secure systems against Conti.
Mirai Botnet Exploiting OMIGOD Azure Vulnerability Microsoft patched four Open Management Infrastructure flaws earlier this week.
FBI, CISA, CGCYBER Warn of APTs Targeting CVE-2021-40539 The critical authentication bypass vulnerability exists in Zoho ManageEngine ADSelfService Plus, officials report.
