Blog, Education and Information Security

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Security Affairs

MAY 12, 2023

CISA and FBI warned of attacks conducted by the Bl00dy Ransomware Gang against the education sector in the country. The FBI and CISA issued a joint advisory warning that the Bl00dy Ransomware group is actively targeting the education sector by exploiting the PaperCut remote-code execution vulnerability CVE-2023-27350.

Education

Education Ransomware Encryption Malware

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

Duo's Security Blog

OCTOBER 18, 2021

One area where campuses have been collaborating recently are changes around cyber liability insurance for higher education, an opportunity for campus cybersecurity teams to combine forces with their risk management team. In a recent Duo blog post, we gave an overview of cyber liability insurance. Higher education campuses in the U.S.

Insurance

Insurance Education Risk Cyber Insurance

15 Best Cybersecurity Blogs To Read

Spinone

OCTOBER 10, 2019

The best way to stay up-to-date with the recent trends is by reading the top cybersecurity blogs. Here’s our list of the best cybersecurity blogs to read and follow. Securing Tomorrow SecuringTomorrow is a blog by McAfee, one of the biggest security software providers.

Cybersecurity

Cybersecurity IoT Antivirus Education

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

‘Educational’ ransomware program may instead become a how-to guide for attackers

SC Magazine

MARCH 5, 2021

The author claims the program, dubbed Povlsomware, is designed to be an educational tool for testing anti-virus protections; however, it’s possible that cybercriminals could adopt and modify the code in order to launch their own attacks, warns Trend Micro, which detailed the ransomware in a new company blog post this week.

Education

Education Ransomware Malware Cybercrime

2019 Predictions: Information security will be given a seat at the table without asking

Thales Cloud Protection & Licensing

DECEMBER 18, 2018

Many years ago, a board member said to me, “We’ve employed you to do information security, so why do we have to do anything?” Instead we will see organisations start proactively approaching information security experts for actionable advice and guidance. This was fairly typical.

Information Security

Information Security CISO Risk Technology

Hackers are taking advantage of the interest in generative AI to install Malware

Security Affairs

MAY 3, 2023

” said Meta Chief Information Security Officer Guy Rosen. The rapid evolution of generative AI space is attracting threat actors, for this reason, Meta recommends being vigilant on the evolution of the threat landscape. “ChatGPT is the new crypto.”

Malware

Malware Education Accountability Media

GUEST ESSAY: Now more than ever, companies need to proactively promote family Online Safety

The Last Watchdog

FEBRUARY 15, 2021

Cybersecurity education for kids is therefore a smart investment. By taking a multi-generational approach to workforce security education programs, companies can strengthen their security postures to thrive in a changing landscape, while also supporting families. Investing in the future. Tools and approaches.

Education

Education CISO Security Awareness Cybersecurity

MSI confirms security breach after Money Message ransomware attack

Security Affairs

APRIL 7, 2023

.” The company reported the security breach to the relevant authorities, and it downplayed the incident, saying that the attack had no significant financial and operational impact. In response to the incident, the company announced it is enhancing the information security control measures of its network and infrastructure.

Ransomware

Ransomware Firmware Hacking Manufacturing

VMware fixed a critical flaw in vRealize that allows executing arbitrary code as root

Security Affairs

APRIL 20, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, vRealize ) The post VMware fixed a critical flaw in vRealize that allows executing arbitrary code as root appeared first on Security Affairs.

Education

Education Media Hacking Accountability

VMware addressed two zero-day flaws demonstrated at Pwn2Own Vancouver 2023

Security Affairs

APRIL 25, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, VMware ) The post VMware addressed two zero-day flaws demonstrated at Pwn2Own Vancouver 2023 appeared first on Security Affairs.

Hacking

Hacking Education Software Media

FBI: Compromised US academic credentials available on various cybercrime forums

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. The FBI has observed incidents of stolen higher education credential information posted on publically accessible online forums or listed for sale on criminal marketplaces.

Cybercrime

Cybercrime Education Accountability Phishing

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

Security Affairs

APRIL 24, 2023

The tool was developed by a company named Kodex, which claims that the tool was developed for an educational purpose. FortiGuard Labs observed this malware in a phishing email campaign on 30 March, which we traced back to the samples included in this blog.” The malware environment checking and Anti-VM functions.

Cybercrime

Cybercrime Malware Education Phishing

Hikvision fixed a critical flaw in Hybrid SAN and cluster storage products?

Security Affairs

APRIL 13, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Hikvision ) The post Hikvision fixed a critical flaw in Hybrid SAN and cluster storage products appeared first on Security Affairs.

Surveillance

Surveillance Education Media Hacking

SAP April 2023 security updates fix critical vulnerabilities

Security Affairs

APRIL 12, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, April security updates) The post SAP April 2023 security updates fix critical vulnerabilities appeared first on Security Affairs.

Education

Education Media Authentication Passwords

Sophos patches three issues in the Sophos Web Security appliance, one of them rated as critical

Security Affairs

APRIL 10, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Sophos) The post Sophos patches three issues in the Sophos Web Security appliance, one of them rated as critical appeared first on Security Affairs.

Firewall

Firewall Education Media Hacking

Money Message ransomware group claims to have hacked IT giant MSI

Security Affairs

APRIL 6, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, MSI) The post Money Message ransomware group claims to have hacked IT giant MSI appeared first on Security Affairs.

Hacking

Hacking Ransomware Manufacturing Education

Cisco discloses a bug in the Prime Collaboration Deployment solution

Security Affairs

APRIL 28, 2023

Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections: The Teacher – Most Educational Blog The Entertainer – Most Entertaining Blog The Tech Whizz – Best Technical Blog Best Social Media Account to Follow (@securityaffairs) Please nominate Security Affairs as your favorite blog.

Education

Education Media Hacking Accountability

Law enforcement seized the Genesis Market cybercrime marketplace

Security Affairs

APRIL 5, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Genesis Market) The post Law enforcement seized the Genesis Market cybercrime marketplace appeared first on Security Affairs.

Marketing

Marketing Cybercrime Accountability Education

Health insurer Point32Health suffered a ransomware attack

Security Affairs

APRIL 23, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Kubernetes ) The post Health insurer Point32Health suffered a ransomware attack appeared first on Security Affairs.

Insurance

Insurance Ransomware Education Accountability

CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 22, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, CISA ) The post CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog appeared first on Security Affairs.

Education

Education Media Authentication Cybersecurity

HP would take up to 90 days to fix a critical bug in some business-grade printers

Security Affairs

APRIL 5, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, printers) The post HP would take up to 90 days to fix a critical bug in some business-grade printers appeared first on Security Affairs.

Firmware

Firmware Education Media Hacking

CISA adds bugs in Android and Novi Survey to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 15, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, CISA ) The post CISA adds bugs in Android and Novi Survey to its Known Exploited Vulnerabilities catalog appeared first on Security Affairs.

Education

Education Accountability Media Cybersecurity

LockBit leaks data stolen from the South Korean National Tax Service

Security Affairs

APRIL 1, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – Lockbit ransomware gang, The South Korean National Tax Service) The post LockBit leaks data stolen from the South Korean National Tax Service appeared first on Security Affairs.

Identity Theft

Identity Theft Ransomware Scams Education

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

The Last Watchdog

APRIL 13, 2022

Educate your employees on threats and risks such as phishing and malware. Enforce strong passwords and implement multi-factor authentication (MFA) — by educating users about using a unique password for each account and enforcing higher security for privileged accounts (administrators, root).

Cybersecurity

Cybersecurity Cybercrime Education Passwords

CISA adds bugs in Chrome and macOS to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 18, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini The post CISA adds bugs in Chrome and macOS to its Known Exploited Vulnerabilities catalog appeared first on Security Affairs.

Education

Education Media Engineering Cybersecurity

Guilty as charged (or not) for spreading FUD about women in cyber

Jane Frankland

JUNE 15, 2022

In 2020 , Accenture released a blog called ‘ Jumping the Hurdles: Moving women into cybersecurity’s top spots.’ In it, they reported that half of all women with a technical education left the workplace in the middle of their careers. DATA SOURCE. However, their data source was taken from a study that was captured more than 6-years ago.

Education

Education Cybersecurity Information Security CISO

Samsung employees unwittingly leaked company secret data by using ChatGPT

Security Affairs

APRIL 10, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, OpenAI) The post Samsung employees unwittingly leaked company secret data by using ChatGPT appeared first on Security Affairs.

Education

Education Risk Media Engineering

Fortinet fixed a critical vulnerability in its Data Analytics product

Security Affairs

APRIL 13, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Fortinet) The post Fortinet fixed a critical vulnerability in its Data Analytics product appeared first on Security Affairs.

Authentication

Authentication Education Media Hacking

Hacking IoT Security with Aaron Guzman

Security Boulevard

AUGUST 30, 2021

Sources and Sinks interviews car hacker and IoT security expert, Aaron Guzman. Information security is no longer staying on our laptops and in our browsers. As our devices become increasingly interconnected too, we have to start thinking about the security of our IoT devices. with a security twist.

IoT

IoT Hacking Education Technology

A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays

Security Affairs

APRIL 14, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Heathcare ) The post A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays appeared first on Security Affairs.

Healthcare

Healthcare Cyber Attacks Education Media

Cisco EoL SPA112 2-Port Phone Adapters are affected by critical RCE

Security Affairs

MAY 4, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Phone Adapters ) The post Cisco EoL SPA112 2-Port Phone Adapters are affected by critical RCE appeared first on Security Affairs.

Firmware

Firmware Education Media Authentication

Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware

Security Affairs

APRIL 27, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, PaperCut ) The post Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware appeared first on Security Affairs.

Ransomware

Ransomware Education Media Malware

Google fixed the first Chrome zero-day of 2023

Security Affairs

APRIL 14, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Chrome ) The post Google fixed the first Chrome zero-day of 2023 appeared first on Security Affairs.

Education

Education Media Engineering Hacking

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

Security Affairs

APRIL 21, 2023

million members impacted appeared first on Security Affairs. Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, American Bar Association (ABA) ) The post American Bar Association (ABA) suffered a data breach,1.4

Data breaches

Data breaches Passwords Education Accountability

Researchers disclose critical sandbox escape bug in vm2 sandbox library

Security Affairs

APRIL 9, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, sandbox) The post Researchers disclose critical sandbox escape bug in vm2 sandbox library appeared first on Security Affairs.

Education

Education Media Hacking Accountability

SD Worx shuts down UK and Ireland services after cyberattack

Security Affairs

APRIL 10, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, SD Worx) The post SD Worx shuts down UK and Ireland services after cyberattack appeared first on Security Affairs.

Cyber Attacks

Cyber Attacks Data breaches Education Media

CISA adds Veritas Backup Exec flaws to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 8, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, CISA) The post CISA adds Veritas Backup Exec flaws to its Known Exploited Vulnerabilities catalog appeared first on Security Affairs.

Backups

Backups Spyware Ransomware Education

Yum! Brands, the owner of KFC, Taco Bell and Pizza Hut, discloses data breach

Security Affairs

APRIL 11, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Yum!

Data breaches

Data breaches Identity Theft Education Ransomware

Zyxel fixed a critical RCE flaw in its firewall devices and urges customers to install the patches

Security Affairs

APRIL 28, 2023

Blogger Awards 2022 – VOTE FOR YOUR WINNERS Vote for me in the sections: The Teacher – Most Educational Blog The Entertainer – Most Entertaining Blog The Tech Whizz – Best Technical Blog Best Social Media Account to Follow (@securityaffairs) Please nominate Security Affairs as your favorite blog.

Firewall

Firewall Firmware VPN Authentication

Experts temporarily disrupted the RedLine Stealer operations

Security Affairs

APRIL 18, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, RedLine ) The post Experts temporarily disrupted the RedLine Stealer operations appeared first on Security Affairs.

Malware

Malware Education Media Authentication

OpenAI launched a bug bounty program

Security Affairs

APRIL 12, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, ChatGPT) The post OpenAI launched a bug bounty program appeared first on Security Affairs.

Accountability

Accountability Education Media Hacking

UK outsourcing services provider Capita suffered a cyber incident

Security Affairs

APRIL 3, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Capita) The post UK outsourcing services provider Capita suffered a cyber incident appeared first on Security Affairs.

Data breaches

Data breaches Education Accountability Media

Western Digital took its services offline due to a security breach

Security Affairs

APRIL 3, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Western-digital) The post Western Digital took its services offline due to a security breach appeared first on Security Affairs.

Wireless

Wireless Education Ransomware Media

Apple released emergency updates to fix recently disclosed zero-day bugs on older devices

Security Affairs

APRIL 11, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, Apple) The post Apple released emergency updates to fix recently disclosed zero-day bugs on older devices appeared first on Security Affairs.

Education

Education Media Hacking Cybersecurity

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

How MFA and Cyber Liability Insurance Effectively Manage Risk in Higher Education

Webinars

Trending Sources

15 Best Cybersecurity Blogs To Read

Webinars

‘Educational’ ransomware program may instead become a how-to guide for attackers

2019 Predictions: Information security will be given a seat at the table without asking

Hackers are taking advantage of the interest in generative AI to install Malware

GUEST ESSAY: Now more than ever, companies need to proactively promote family Online Safety

MSI confirms security breach after Money Message ransomware attack

VMware fixed a critical flaw in vRealize that allows executing arbitrary code as root

VMware addressed two zero-day flaws demonstrated at Pwn2Own Vancouver 2023

FBI: Compromised US academic credentials available on various cybercrime forums

EvilExtractor, a new All-in-One info stealer appeared on the Dark Web

Hikvision fixed a critical flaw in Hybrid SAN and cluster storage products?

SAP April 2023 security updates fix critical vulnerabilities

Sophos patches three issues in the Sophos Web Security appliance, one of them rated as critical

Money Message ransomware group claims to have hacked IT giant MSI

Cisco discloses a bug in the Prime Collaboration Deployment solution

Law enforcement seized the Genesis Market cybercrime marketplace

Health insurer Point32Health suffered a ransomware attack

CISA adds MinIO, PaperCut, and Chrome bugs to its Known Exploited Vulnerabilities catalog

HP would take up to 90 days to fix a critical bug in some business-grade printers

CISA adds bugs in Android and Novi Survey to its Known Exploited Vulnerabilities catalog

LockBit leaks data stolen from the South Korean National Tax Service

GUEST ESSAY: Preparing for the dire cybersecurity consequences of Russia’s invasion of Ukraine

CISA adds bugs in Chrome and macOS to its Known Exploited Vulnerabilities catalog

Guilty as charged (or not) for spreading FUD about women in cyber

Samsung employees unwittingly leaked company secret data by using ChatGPT

Fortinet fixed a critical vulnerability in its Data Analytics product

Hacking IoT Security with Aaron Guzman

A cyberattack on the Cornwall Community Hospital in Ontario is causing treatment delays

Cisco EoL SPA112 2-Port Phone Adapters are affected by critical RCE

Crooks use PaperCut exploits to deliver Cl0p and LockBit ransomware

Google fixed the first Chrome zero-day of 2023

American Bar Association (ABA) suffered a data breach,1.4 million members impacted

Researchers disclose critical sandbox escape bug in vm2 sandbox library

SD Worx shuts down UK and Ireland services after cyberattack

CISA adds Veritas Backup Exec flaws to its Known Exploited Vulnerabilities catalog

Yum! Brands, the owner of KFC, Taco Bell and Pizza Hut, discloses data breach

Zyxel fixed a critical RCE flaw in its firewall devices and urges customers to install the patches

Experts temporarily disrupted the RedLine Stealer operations

OpenAI launched a bug bounty program

UK outsourcing services provider Capita suffered a cyber incident

Western Digital took its services offline due to a security breach

Apple released emergency updates to fix recently disclosed zero-day bugs on older devices

Stay Connected