Blogs from all around the World

Recent blog posts


Tulsa, Oklahoma and Rensselaer Polytechnic Institute disclose ransomware incidents

No sector has been spared from ransomware incidents. In this report, we have one from the education sector and one


Au: 19 years of personal data was stolen from ANU. It could show up on the dark web

Nicholas Patterson reports: Today it was revealed the Australian National University (ANU ) fell victim to a cyber security attack


SolarWinds Hack Alarms US Spy Agencies to Inspect Software Suppliers’ Ties with Russia

US intelligence agencies have started to study supply chain threats from Russia, a top official within the Justice Department confirmed


Ransomware Cyber Attack Forced the Largest U.S. Fuel Pipeline to Shut Down

by May 9, 2021. GIXnews Colonial Pipeline, which carries 45% of the fuel consumed on the U.S. East Coast, on


When it comes to passwords, complex is not always safer, new study shows

For a long time password strength was measured by how complex a password was, such as whether it included both


Parkville resident facing federal indictment for dating, business email compromise scams with alleged losses of more than $2.3 million | #datingscams | romancescams | #scams

PARKVILLE, MD—A federal grand jury has returned an indictment charging three defendants on federal charges of conspiracy to commit wire


Noblr Reciprocal Exchange to notify 97,633 consumers of breach involving insurance quote platform

The following incident sounds almost identical to the  incident reported by American Family Insurance, but this report is from Noblr


Cyberattack Shuts Down Top US Fuel Pipeline Network

NEW YORK – Top U.S. fuel pipeline operator Colonial Pipeline has shut its entire network, the source of nearly half


American Family Insurance to notify 283,734 of breach linked to unemployment benefits fraud

American Family Mutual Insurance Company, S.I. (American Family) will be sending out letters on or about May 14 to people


ATC Transportation discloses ransomware attack

Dallas, Texas, May 07, 2021 (GLOBE NEWSWIRE) — ATC Transportation is providing notice of a data security incident it recently


Es: IT services of the Oviedo City Council knocked out

Gonzalo Diaz-Rubin reports that all of the IT services of the Oviedo City Council have been crippled. Machine translation: A malicious


Fr: Eco-friendly sneaker brand Veja hacked

Damien Licata Caruso reports that Veja, a French footwear and accessories brand known for its eco-friendly sneakers, was hacked on


Reported ransomware attack leads to weeks of Aprima EHR outages

  This is the kind of news story that people may miss because it was published on a Friday afternoon.


Colonial Pipeline cyberattack shuts down pipeline that supplies 45% of East Coast’s fuel

Aggregated IT Security News and articles about information security, vulnerabilities, exploits, patches, releases, software, features, hacks, laws, spam, viruses, malware,


One of country’s largest pipelines shuts down to contain cybersecurity breach

David E. Sanger reports: A cyberattack forced the shutdown of one of the largest pipelines in the United States, in


Three Affiliated Tribes Hit by Ransomware Attack, Holding Tribal Information Hostage

Darren Thompson reports that on  April 28, the Three Affiliated Tribes—the Mandan, Hidatsa & Arikara Nation—announced to its staff and


Malspam Campaign Uses Hancitor to Download Cuba Ransomware

Attackers have co-opted the Hancitor malware downloader and recently used it to deliver Cuba ransomware as part of an email


TsuNAME: New DNS Bug could be used to DDoS Authoritative DNS Servers

Security researchers have found extreme domain name system (DNS) fixes that hackers may use to conduct constructive denial-of-service attacks on


Top 12 Security Flaws Russian Spy Hackers Are Exploiting in the Wild

Cyber operatives affiliated with the Russian Foreign Intelligence Service (SVR) have switched up their tactics in response to previous public


Cyberattack prompts shutdown of major fuel pipeline in the US

One of the largest pipelines in the US has been taken offline by its operator following a cyberattack. First ,


San Diego Family Care discloses possible data breach

City News Service reports: San Diego Family Care announced Friday it has alerted current and former patients and employees about


Massive hack exposes emails from top Lightfoot officials

Tom Schuba reports: A massive cache of tens of thousands of hacked emails detailing the inner workings of Mayor Lori


Timberland Regional Library Takes Action After Learning of Data Security Incident

TUMWATER, Wash., May 7, 2021 /PRNewswire/ — Timberland Regional Library (“TRL”) announced today that it has taken action after learning of a data


UK: Hospital medic lost boxes of private patient data while conducting study without approval

Jonathan Humphries reports: A senior medic has been suspended after running a clinical trial using sensitive medical information without permission


Sg: United Overseas Bank employee allegedly fell prey to scam & leaked personal information of 1,166 customers

Matthias Ang reports: An employee in UOB has disclosed the personal details of 1,166 customers, who are China nationals, as


Cyberattack Forces Shutdown of Major U.S. Pipeline

Colonial Pipeline halts all fuel pipeline operations in response to a cyberattack A cyberattack has forced an operational shutdown of


OCR Investigator: Goal Is to Uncover ‘Root Cause,’ Remedy Harm From Violations

If you haven’t read it already, do read Theresa Defino’s excellent report from HCCA Compliance’s Report on Patient Privacy on


In Capital One Data Breach Litigation Federal Judge Grants Capital One’s Motion To Certify Question to Virginia Supreme Court

Kristin L. Bryan of Squire Patton Boggs writes: CPW [Consumer Privacy World] has been tracking since last year the Capital


Research Shows 19 Petabytes of Data Exposed Across 29,000+ Unprotected Databases

The majority of businesses keep confidential data in databases. Passwords, usernames, document scans, health records, bank account, and credit card


Man accused of spending COVID relief cash on Ferrari, Lamborghini

Irvine, California: subscribe A man has been arrested and charged for allegedly obtaining $US5 million ($6.3 million) in COVID-19 relief


Critical Cisco SD-WAN, HyperFlex Bugs Threaten Corporate Networks

Cisco has addressed two critical security vulnerabilities in the SD-WAN vManage Software, one of which could allow an unauthenticated attacker


Bulletproof hosting admins plead guilty to running cybercrime safe haven

. Four individuals from Eastern Europe face 20 years in prison for Racketeer Influenced Corrupt Organization (RICO) charges after pleading


The City of Chicago Provides Notice of Jones Day Incident Due to Accellion Hack

CHICAGO, May 7, 2021 /PRNewswire/ — The City of Chicago today announced that a third-party vendor executing a data transfer of a select


Cyber criminals potentially accessed data of 10,000 people in Brevard School Board breach

Bailey Gallion reports: Cyber criminals accessed the identifying information of about 10,000 people  last year through the email accounts of


University of Florida Health Shands notifies patients of privacy breach

University of Florida Health Shands officials have notified 1,562 individuals affected by a privacy incident involving a former employee who


FR: Albioma hit by “ransomware type virus”

Albioma is an independent renewable energy producer that is listed on the Paris stock exchange. In a press release today,


Friday Squid Blogging: COVID Relief Funds

A town in Japan built a giant squid statue with its COVID relief grant. One local told the Chunichi Shimbun


How North Korean APT Kimsuky Is Evolving Its Tactics

Researchers find differences in Kimsuky’s operations that lead them to divide the APT into two groups: CloudDragon and KimDragon.Dark Reading:Read


‘Panda Stealer’ Targets Cryptocurrency Wallets

See Also: Live Webinar | Software Security: Prescriptive vs. Descriptive The gang behind the malware, dubbed “Panda Stealer,” starts with


Low CVE-2020-4993: IBM Qradar security information and event manager

Description: IBM QRadar SIEM 7.3 and 7.4 when decompressing or verifying signature of zip files processes data in a way


Most Organizations Feel More Vulnerable to Breaches Amid Pandemic

More than half of business see the need for significant long-term changes to IT due to COVID-19, research finds.Dark Reading:Read


Four Individuals Plead Guilty to RICO Conspiracy Involving “Bulletproof Hosting” for Cybercriminals

Four Eastern European nationals have pleaded guilty to conspiring to engage in a Racketeer Influenced Corrupt Organization (RICO) arising from


Hundreds of Millions of Dell PCs At Risk, Apply Patch Now!

PC maker Dell has released a patch for five high-severity flaws discovered in the company’s firmware update driver impacting Dell


FBI, NSA, CISA & NCSC Issue Joint Advisory on Russian SVR Activity

The report provides additional details on tactics of Russia’s Foreign Intelligence Service following public attribution of the group to last


Millions put at risk by old, out of date routers

Testing from Which? reveals many homes in the UK are using routers that can’t receive security updates. Categories: Awareness Tags:


US-UK Gov Warning: SolarWinds Attackers Add Open-Source PenTest Tool to Arsenal

Agencies in the United States and the United Kingdom on Friday published a joint report providing more details on the


12:25 ET Leidos completes acquisition of Gibbs & Cox

“We are delighted to welcome the Gibbs & Cox team to the Leidos family,” said Leidos Chairman and CEO Roger


Qualcomm vulnerability affects nearly one-third of all phones ( Kundaliya)/ Latest updates)

Samsung, LG, Google and Xiaomi are among the major manufacturers using Qualcomm’s chips. Nearly a third of all smartphones in


Over €1 million in cash seized as part of investigation into tobacco smuggling ring

An international law enforcement operation coordinated by Europol and Eurojust with the involvement of 3 countries has resulted in the


ISMG Editors Discuss Cryptocurrency Regulations and More

Clockwise, from top left: Scott Ferguson, Anna Delaney, Marianne Kolbasuk McGee and Tom Field Four editors at Information Security Media


NCSC Sets Out Security Principles for Smart Cities

via NCSC Sets Out Security Principles for Smart CitiesThe UK’s National Cyber Security Centre (NCSC) has published a set


Za: NCape municipality battles devastating ransomware attack

Admire Moyo reports: The Nama Khoi Municipality in the Northern Cape Province is struggling to restore IT systems that were


UK: Edinburgh mental health clinic in probe after client information accessed in scam

James Delaney reports: An Edinburgh mental health clinic is at the centre of a probe into a data breach resulting in hundreds


Under the Microscope: ISACA Survey on Cybersecurity Workforce, Resources and Budgets

A major survey that like all surveys needs to be examined carefully rather than accepted blindly. read moreSecurityWeek RSS FeedRead


IA: Wolfe Eye Clinic victim of Lorenz threat actors

There is no notice of any cyberattack on the web site of Wolfe Eye Clinic in Iowa, but the clinic


A New Platform Maps Colombia’s Escalating Police Violence

Yet another wave of unrest is sweeping Colombia. The latest protests began on April 28 in response to a tax