September 2023

Attackers are targeting millions of Facebook business accounts with malicious messages, sent via Facebook Messenger from a botnet of fake and hijacked personal Facebook accounts. The goal is to spread an info-stealing malware that can intercept browsing sessions and account cookies, and it’s hitting 100,000 Facebook business accounts per week, according to researchers. The Python-based stealer successfully infects about […]

Lookout, the endpoint-to-cloud security company, has announced the launch of Lookout SAIL, the company’s new generative artificial intelligence (GenAI) assistant that will reshape the way cybersecurity professionals interact with Lookout Mobile Endpoint Security and Lookout Cloud Security solutions, and conduct cybersecurity analysis and data protection.   According to Lookout, companies are engaged in an ongoing battle against cyber criminals who are

Barracuda researchers identified and analysed 175 publicly reported ransomware attacks from the past 12 months, and found that in three key industries – municipalities, education, and healthcare – reported attacks have doubled since last year and more than quadrupled since 2021. Researchers also saw a spike in the number of attacks on infrastructure-related industries. Barracuda,

Casino and lodging operator MGM Resorts shut down a number of its computer systems including its website in response to a “cybersecurity issue,” the company said in a social media post Monday. The initial shutdown impacted nearly every aspect of the casino operator’s business. Reservation systems, booking systems, hotel electronic key card systems, and the

KnowBe4, provider of the world’s largest security awareness training and simulated phishing platform, has announced a new resource kit in recognition of National Cybersecurity Awareness Month (NCSAM) in October.   NCSAM is celebrated every October to unite government and industry and ensure everyone has the resources to stay safer and more secure online. 2023 marks 20

A nation-state threat actor known as ‘Charming Kitten’ (Phosphorus, TA453, APT35/42) has been observed deploying a previously unknown backdoor malware named ‘Sponsor’ against 34 companies around the globe. One of the notable features of the Sponsor backdoor is that it hides its otherwise innocuous configuration files on the victim’s disk so they can be discreetly

July 2023 saw record levels of ransomware attacks carried out, with 502 observed by NCC Group’s Global Threat Intelligence team throughout the month. The findings mark a 154% increase year-on-year (198 attacks in July 2022), and a 16% rise on the previous month (434 attacks in June 2023).  Cl0p continues to dominate following MOVEit exploitation 

Microsoft Internet Information Services (IIS) is a web server software package designed for Windows Server. Organizations commonly use Microsoft IIS servers to host websites, files, and other content on the web. Threat actors increasingly target these Internet-facing resources as low-hanging fruit for finding and exploiting vulnerabilities that facilitate access to IT environments. Recently, a slew

Claroty’s 2023 Global Healthcare Cybersecurity Study Exposes Widespread Vulnerabilities and Impact By   ISBuzz Team Writer , Information Security Buzz | Aug 31, 2023 06:49 am PST Claroty, in its 2023 Global Healthcare Cybersecurity Study, unveils unsettling revelations about the state of cybersecurity within the healthcare sector. This independent, global survey involves 1,100 professionals in various roles

The recent adoption of cybersecurity disclosure rules by the Securities and Exchange Commission (SEC) ushers in a transformative era for public companies. Under the updated regulations, the latest revision to Form 8-K emphasizes the importance of collaboration between a company’s internal and external stakeholders. This amendment requires the prompt disclosure of “material cybersecurity incidents” through