An infamous ransomware group that appeared to shutter its operations following a significant supply chain attack on IT software provider Kaseya seems to be back in business.  REvil/Sodinokibi rasnomware has been used by countless affiliates to…

Researchers on FireEye's Mandiant advanced practices team have discovered a new memory-resident malware family named PRIVATELOG and its installer called STASHLOG. According to the researchers, PRIVATELOG and STASHLOG apply a unique and stealthy approach…

One of America’s largest school districts has informed students, alumni, parents, and employees that personal data from the past 11 years was exposed after a third party gained unauthorized access to it on August 8th.  The Dallas Independent School…

The US Securities and Exchange Commission (SEC) has warned investors not to fall for scams capitalizing on the Hurricane Ida recovery and clean-up operation.  The regulator’s Office of Investor Education and Advocacy claimed that disasters,…

The modified Apple Lightning cable, called the OMG Cable, that hackers could use to hijack a computer now has a new version. The OMG Cable functions the same as a regular cable, except it was modified to allow hackers to remotely take over a victim's…

A new study conducted by AtlasVPN found that 43 percent of all malware downloads in the second quarter of 2021 were malicious Microsoft Office documents, which is an increase from the same time in 2020 when only 14 percent of malware were distributed…

September 09, 2021 4:00pm - 6:00pm (GMT-05:00) Eastern Time (US & Canada) Please join us for an engaging NSALive Adobe Webinar on Sept 9th 2021 from 4-6pm EST to learn about the National Security Agency and Student Program opportunities, as well as a…

Researchers from Cisco Talos were able to translate the Conti ransomware gang's leaked internal materials, thus revealing details about the group's attack methods. The materials suggest that their attack methods were designed to allow low-skilled actors…

Another Accellion breach victim has been named nine months after threat actors exploited zero-day vulnerabilities in the company’s File Transfer Application.  Beaumont Health has notified approximately 1500 patients that their personal data may have…

The U.S. Homeland Security Department's Cybersecurity and Infrastructure Security Agency (CISA) issued an emergency alert pertaining to the active exploitation of Microsoft Exchange ProxyShell vulnerabilities by threat actors in the wild. ProxyShell is a…

Researchers at New York University and Université Grenoble Alpes in France conducted a new study of user behavior on Facebook around the 2020 election.  The forthcoming peer-reviewed study reports that from August 2020 to January 2021, news…

The cloud and data center security company Guardicore discovered a new attack vector on Comcast's XR11 voice remote that would allow attackers to turn it into a listening device, posing a significant threat to a user's privacy. The attack dubbed…