User login credentials remain a major target for cybercriminals, as they provide access to organizations’ critical infrastructures and systems. Threat actors are using various attack vectors such as credential stuffing to steal usernames and passwords.…

A company that operates multiple fertility centers across Northern Illinois has suffered a data breach because of a cyberattack.  Fertility Centers of Illinois (FCI) reported that the data breach affected 79,943 current and former patients.  …

A leading provider of school website infrastructure has been hit by a ransomware attack, potentially disrupting thousands of global customers.  Finalsite claims to serve over 8000 schools worldwide, offering content management, communications,…

Some malware samples that emerged in 2021 further proved that Apple's technologies are not invulnerable to attacks. The security researcher, Patrick Wardle, released a list of new Mac malware threats that emerged last year, identifying the infection…

Researchers at Chainalysis have found that cryptocurrency-based crime hit a new all-time high in 2021.  According to the researchers, illicit addresses tracked by Chainalysis received $14 billion in deposits over the course of 2021, almost double…

Researchers at the cybersecurity company Sygnia have detailed a highly organized and stealthy cybercriminal operation dubbed 'Elephant Beetle.' The Elephant Beetle threat group has stolen millions of dollars from financial organizations, primarily…

Researchers at mobile security firm ZecOps have discovered how a piece of iOS malware can achieve "persistence" on a device by faking its shutdown process.  Malware designed to target iPhones is not uncommon, but many of these threats are not…

Existing Machine Learning (ML) models have many inherent vulnerabilities that leave the technology open to spoofing, corruption, and other forms of deception. Attacks against Artificial Intelligence (AI) algorithms could lead to altered content…

President Biden signed the K12 Cybersecurity Act which should strengthen the cybersecurity of US K-12 schools. This includes assessing the cybersecurity risks effecting K-12 schools such as securing information systems and protecting student and employee…

SoS Musings #56 - The Cybersecurity Workforce Gap Remains

Cybersecurity Snapshots #25 - Schools and Universities Targeted by Hackers During Pandemic

This New Year, why not resolve to ditch your dodgy old passwords? Most of the classic New Year resolutions revolve around improving your health and lifestyle. But this year, why not consider cleaning up your passwords too?