- Juniper Networks releases security updates for multiple products. (to the original material)
- Cisco releases security updates for multiple products. (to the original material)
- CISA adds one known exploited vulnerability to Catalog. (to the original material)
- Cybersecurity News Week (14.04.2022). (to the original material)
- APT group has developed custom-made tools for targeting ICS/SCADA devices. (to the original material)
- Attackers are exploiting VMware RCE to deliver malware (CVE-2022-22954). (to the original material)
- Top attack techniques for breaching enterprise and cloud environments. (to the original material)
- The two words you should never forget when you’re securing a cloud. (to the original material)
- New npm flaws let attackers better target packages for account takeover. (to the original material)
- A robust security strategy starts with the hardware. (to the original material)
- The perils of SaaS misconfigurations. (to the original material)
- Consumers feel data leakage is inevitable so many have stopped caring. (to the original material)
- 2021 average ransoms paid by quarter was $167K, down 44.2%. (to the original material)
- Microsoft increases awards for high-impact Microsoft 365 bugs. (to the original material)
- New ZingoStealer infostealer drops more malware, cryptominers. (to the original material)
- FBI links largest crypto hack ever to Lazarus state hackers. (to the original material)
- Hackers target Ukrainian govt with IcedID malware, Zimbra exploits. (to the original material)
- Hetzner lost customer data and gave 20€ as compensation. (to the original material)
- The top 10 password attacks and how to stop them. (to the original material)
- Instagram beyond pics: Sexual harassers, crypto crooks, ID thieves. (to the original material)
- Flaw in Rarible NFT market allowed theft of crypto assets. (to the original material)
- OldGremlin ransomware gang targets Russia with new malware. (to the original material)
- Wind turbine firm Nordex hit by Conti ransomware attack. (to the original material)
- Critical Windows RPC CVE-2022-26809 flaw raises concerns - Patch now. (to the original material)
- FBI: Payment app users targeted in social engineering attacks. (to the original material)
- Google Chrome emergency update fixes zero-day used in attacks. (to the original material)
- Windows 11 tool to add Google Play secretly installed malware. (to the original material)
- Software supply chain security with Trivy: Generating SBOMs. (to the original material)
- Jeffrey Esposito: “I thought it was a boring industry”. (to the original material)
- Over 3.5 million Russian internet users suffer breached accounts. (to the original material)
- Holiday-themed phishing emails most likely to get clicks. (to the original material)
- Cybersecurity firm Trellix releases report on critical infrastructure providers' readiness for attacks. (to the original material)
- For effective incident response, use a remediation checklist. (to the original material)
- Threat Source newsletter (April 14, 2022) - It's Tax Day, and you know what that means. (to the original material)
- Threat Spotlight: "Haskers Gang" Introduces New ZingoStealer. (to the original material)
- Week in security with Tony Anscombe. (to the original material)
- Digital transformation delivers for Bank of Queensland. (to the original material)
- Cisco offers a bumper haul of vulnerability fixes. (to the original material)
- US says advanced hackers can hijack critical infrastructure. (to the original material)
- Wormable Windows RPC bug warning issued. (to the original material)
- Australia targets tech espionage with new visa cancellation powers. (to the original material)
- CISA issues warning about malicious tools targeting ICS/SCADA devices. (to the original material)
- Campaign similar to Operation Kitty Phishing found targeting South Koreans. (to the original material)
- Hafnium's new malware hides behind scheduled tasks. (to the original material)
- Lazarus targets chemical sector. (to the original material)
- Critical Auth Bypass bug reported in Cisco Wireless LAN Controller software. (to the original material)
- As State-Backed cyber threats grow, here's how the world is reacting. (to the original material)
- Critical VMware Cloud Director bug could let hackers takeover entire cloud infrastructure. (to the original material)
- Google releases urgent Chrome update to patch actively exploited zero-day flaw. (to the original material)
- Ethereum developer jailed 63 months for helping North Korea evade sanctions. (to the original material)
- Rarible NFT Marketplace flaw could've let attackers hijack crypto wallets. (to the original material)
- New EnemyBot DDoS botnet borrows exploit code from Mirai and Gafgyt. (to the original material)
- Microsoft disrupts ZLoader cybercrime botnet in global operation. (to the original material)
- Critical infrastructure entities on red alert over ‘exceptionally rare and dangerous’ ICS malware. (to the original material)
- Credit card industry standard revised to repel card-skimmer attacks. (to the original material)
- Offensive Security creates Global Partner Program to expand cyber education. (to the original material)
- AppOmni, DoControl focus on managing security across SaaS apps. (to the original material)
- Is your purpose enough to keep people on your security team? (to the original material)
- Follow CISA’s four best practices for staying safe against potential Russian cyberattacks. (to the original material)
- Warner warns health sector: ‘I absolutely expect Russia to up its cyber game soon’. (to the original material)
- Email warnings to healthcare employees after a PHI breach drastically reduces repeat offenses. (to the original material)
- Insurance companies increasingly fall prey to cyberattacks. (to the original material)
- Microsoft leads operation to disrupt Zloader botnet. (to the original material)
- More than 60% of organizations suffered a breach in the past 12 months. (to the original material)
- Rare and dangerous Incontroller malware targets ICS operations. (to the original material)
- Ballooning growth of digital identities exposing organizations to greater cybersecurity risk. (to the original material)
- Software supply chain attacks: Clear and present danger. (to the original material)
- Palo Alto Networks report reveals cloud security challenges. (to the original material)
- MetroHealth data breach involved 1700 patients. (to the original material)
- Data breach disclosures surge 14% in Q1 2022. (to the original material)
- Microsoft and partners disrupt prolific ZLoader botnet. (to the original material)
- Elementor fixes critical bug in popular WordPress plugin. (to the original material)
- NFT Marketplace Rarible contains a dangerous design flaw. (to the original material)
- Citrix fixes severe CVE-2022-27505 vulnerability in SD-WAN. (to the original material)
- US gov agencies e private firms warn nation-state actors are targeting ICS & SCADA devices. (to the original material)
- CISA adds Windows CLFS Driver Privilege Escalation flaw to its Known Exploited Vulnerabilities Catalog. (to the original material)
- Critical VMware Workspace ONE Access CVE-2022-22954 flaw actively exploited. (to the original material)
- Microsoft has taken legal and technical action to dismantle the Zloader botnet. (to the original material)
