Cybersecurity, Education, Hacking and Information Security

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Security Affairs

MAY 12, 2023

CISA and FBI warned of attacks conducted by the Bl00dy Ransomware Gang against the education sector in the country. The FBI and CISA issued a joint advisory warning that the Bl00dy Ransomware group is actively targeting the education sector by exploiting the PaperCut remote-code execution vulnerability CVE-2023-27350.

Education

Education Ransomware Encryption Malware

Cybersecurity, why a hotline number could be important?

Security Affairs

OCTOBER 6, 2023

The creation of a dedicated emergency number for cybersecurity could provide an effective solution to this rapidly growing challenge The growing threat of cybercrime is calling for new and innovative defense strategies. What benefits A dedicated cybersecurity emergency number would have several benefits.

Cybersecurity

Cybersecurity Cybercrime Computers and Electronics Education

Automotive parts giant AutoZone disclosed data breach after MOVEit hack

Security Affairs

NOVEMBER 23, 2023

AutoZone disclosed a data breach resulting from the hack of their MOVEit Transfer installation. The car parts giant is notifying 184,995 individuals that the massive MOVEit hacking campaign compromised their personal information. ” reads the Notice Letter published by the Main Attorney General. percent and 26.0

Data breaches

Data breaches Hacking Retail Identity Theft

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

CISO Stories Podcast: Hacking Your Way Into Cybersecurity

Security Boulevard

AUGUST 11, 2021

Kerissa Varma is Group Chief Information Security Officer of Old Mutual Limited, one of the largest financial services organizations on the African continent. The post CISO Stories Podcast: Hacking Your Way Into Cybersecurity appeared first on Security Boulevard.

CISO

CISO Hacking Cybersecurity Financial Services

Threat actors target K-12 distance learning education, CISA and FBI warn

Security Affairs

DECEMBER 11, 2020

The US Cybersecurity Infrastructure and Security Agency and the FBI warned about the increase in ransomware attacks targeting the US K-12 educational sector. ” The US agencies are receiving reports from K-12 educational institutions that suffered cyber attacks causing the disruption of distance learning activities. .

Education

Education Ransomware Cyber Attacks DDOS

Cybersecurity agencies published a joint LockBit ransomware advisory

Security Affairs

JUNE 15, 2023

According to a joint advisory published by cybersecurity agencies, the LockBit ransomware group has successfully extorted roughly $91 million in about 1,700 attacks against U.S. The group targeted municipal governments, county governments, public higher education and K-12 schools, and emergency services (e.g., organizations since 2020.

Ransomware

Ransomware Cybersecurity Education Government

Hacking IoT Security with Aaron Guzman

Security Boulevard

AUGUST 30, 2021

Information security is no longer staying on our laptops and in our browsers. As our devices become increasingly interconnected too, we have to start thinking about the security of our IoT devices. Aaron Guzman is a published author and a technical reviewer for several security books. Sources and Sinks on Apple Podcasts.

IoT

IoT Hacking Education Technology

Akira ransomware gang spotted targeting Cisco VPN products to hack organizations

Security Affairs

AUGUST 22, 2023

The Akira ransomware has been active since March 2023, the threat actors behind the malware claim to have already hacked multiple organizations in multiple industries, including education, finance, and real estate. The Akira ransomware gang targets Cisco VPN products to gain initial access to corporate networks and steal their data.

VPN

VPN Ransomware Hacking Education

Money Message ransomware group claims to have hacked IT giant MSI

Security Affairs

APRIL 6, 2023

Ransomware gang Money Message claims to have hacked the Taiwanese multinational IT corporation MSI (Micro-Star International). Ransomware gang Money Message announced to have hacked the Taiwanese multinational IT corporation MSI (Micro-Star International).

Hacking

Hacking Ransomware Manufacturing Education

10 Holiday Cybersecurity Tips for CISOs

Security Boulevard

NOVEMBER 22, 2023

Chief information security officers (CISOs) should proactively implement strategies and protect their infrastructures against hacking months and weeks leading up to this busy time of the year.  Top holiday cybersecurity tips for CISOs With so many things going on, where should you focus your resources?

CISO

CISO Cybersecurity Phishing Backups

Cryptocurrencies and cybercrime: A critical intermingling

Security Affairs

APRIL 26, 2024

Anti-money laundering laws and cybersecurity regulations have been strengthened to monitor and regulate cryptocurrency transactions. In addition, cryptocurrency exchange platforms are implementing more stringent security measures, such as two-factor authentication and advanced encryption, to protect users’ funds.

Cryptocurrency

Cryptocurrency Cybercrime Education Scams

Pro-Russia hacking group executed a disruptive attack against a Canadian gas pipeline

Security Affairs

APRIL 26, 2023

Pro-Russia hacking group Zarya caused a cybersecurity incident at a Canadian gas pipeline, the critical infrastructure sector is on alert. A Canadian gas pipeline suffered a cyber security incident, Canada’s top cyber official and Pro-Russia hacking group Zarya claimed the attack could have caused an explosion.

Hacking

Hacking Cyber Attacks Education Media

Tips for Gamifying Your Cybersecurity Awareness Training Program

Security Affairs

NOVEMBER 29, 2022

In today’s technological world, educating people about cybersecurity awareness is an absolute necessity. These errors are not always entirely preventable, as some level of human error is inevitable, but proper training in cybersecurity awareness can greatly decrease the likelihood of human mistakes leading to data breaches.

Cybersecurity

Cybersecurity Data breaches Education Technology

Three Italian universities hacked by LulzSec_ITA collective

Security Affairs

FEBRUARY 13, 2020

The popular Italian hacktivist collective LulzSec ITA claimed via Twitter to have hacked three Italian universities. The popular Italian hacktivist collective LulzSec ITA has announced via Twitter the hack of three Italian universities, highlighting the importance of the cybersecurity for our society. Pierluigi Paganini.

Hacking

Hacking Data breaches Advertising Education

15 Top Cybersecurity Certifications for 2022

eSecurity Planet

JUNE 21, 2022

” Also read: Cybersecurity Employment in 2022: Solving the Skills Gap. How to Choose a Security Certification. Thycotic chief security scientist Joseph Carson told eSecurity Planet that choosing a certification should ultimately be about deciding which skillset or professional direction you want to focus on.

Cybersecurity

Cybersecurity Penetration Testing System Administration Cyber Attacks

“My Slice”, an Italian adaptive phishing campaign

Security Affairs

JANUARY 22, 2024

Adaptive phishing campaigns are emerging as an increasingly sophisticated threat in the cybersecurity landscape. In an adaptive phishing campaign, attackers gather specific information about victims through various sources, such as social media, public websites, and previous data breaches. Education improves awareness” is his slogan.

Phishing

Phishing Education Social Engineering Media

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

Security Affairs

APRIL 25, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added the CVE-2022-38028 Microsoft Windows Print Spooler Privilege Escalation vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. Pierluigi Paganini Follow me on Twitter: @securityaffairs and Facebook and Mastodon ( SecurityAffairs – hacking, CISA)

Education

Education Government Hacking Risk

CISA: Cisco ASA/FTD bug CVE-2020-3259 exploited in ransomware attacks

Security Affairs

FEBRUARY 17, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added a Cisco ASA and FTD bug, tracked as CVE-2020-3259 (CVSS score: 7.5), to its Known Exploited Vulnerabilities catalog. The vulnerability CVE-2020-3259 is an information disclosure issue that resides in the web services interface of ASA and FTD. This week the U.S.

Ransomware

Ransomware VPN Education Hacking

German BSI warns of 17,000 unpatched Microsoft Exchange servers

Security Affairs

MARCH 30, 2024

The German Federal Office for Information Security (BSI) warned of thousands of Microsoft Exchange servers in the country vulnerable to critical flaws. For more information about Exchange Server’s support for Extended Protection for Authentication(EPA), please see Configure Windows Extended Protection in Exchange Server.”

Information Security

Information Security Internet Internet Healthcare

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Security Affairs

APRIL 9, 2023

The Estonian man is accused of having helped the Russian government and military to purchase US-made electronics and hacking tools. “Shevlyakov also attempted to acquire computer hacking tools.” hacking tools and electronics appeared first on Security Affairs. ” reads a press release published by DoJ.

Computers and Electronics

Computers and Electronics Hacking Penetration Testing Manufacturing

Some of TOP universities wouldn’t pass cybersecurity exam: left websites vulnerable

Security Affairs

SEPTEMBER 11, 2023

That could allow arbitrary admin account creation and access to files and personal information. UTEL is a private Mexican university for online education founded in 2008. Our information security team took immediate steps to correct this vulnerability upon being notified on April 25th.”

Cybersecurity

Cybersecurity Penetration Testing Passwords DDOS

Hackers can hack organizations using data found on their discarded enterprise network equipment

Security Affairs

APRIL 24, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, enterprise network equipment ) The post Hackers can hack organizations using data found on their discarded enterprise network equipment appeared first on Security Affairs.

Hacking

Hacking VPN Marketing Authentication

US Agencies and FireEye were hacked with a supply chain attack on SolarWinds Software

Security Affairs

DECEMBER 14, 2020

Nation-state actors, allegedly Russia-linked hacked, have compromised the networks of several US government agencies, including the US Treasury, the Commerce Department’s National Telecommunications and Information Administration (NTIA). The hack allowed the threat actors to spy on the internal email traffic.

Software

Software Hacking Telecommunications Government

National Student Clearinghouse data breach impacted approximately 900 US schools

Security Affairs

SEPTEMBER 24, 2023

educational nonprofit organization National Student Clearinghouse disclosed a data breach that impacted approximately 900 US schools. The security breach resulted from a cyber attack exploiting a vulnerability in the MOVEit managed file transfer (MFT).- We have also coordinated with law enforcement.

Data breaches

Data breaches Education Ransomware Software

Why Are Cybersecurity Professionals Suddenly So Popular?

SecureWorld News

SEPTEMBER 24, 2020

If you carry that story line over into the real world, you could write it like this: On a planet full of hackers, cybercriminals, and ransomware operators, there is one profession above the rest: cybersecurity. New research reveals cybersecurity professionals are riding a wave of popularity from those outside of the security community.

Cybersecurity

Cybersecurity Digital transformation Education Information Security

Akira ransomware targets Finnish organizations

Security Affairs

JANUARY 13, 2024

The Finish National Cybersecurity Center (NCSC-FI) warns of increased Akira ransomware attacks targeting NAS and tape backup devices of organizations in the country. The Finish National Cybersecurity Center (NCSC-FI) reported an increase in Akira ransomware attacks, targeting organizations in the country. concludes the alert.

Ransomware

Ransomware Backups VPN Authentication

DEF CON 31 – Panel: ‘Hack the Future – Why Congress & White House Support AI Red Teaming’

Security Boulevard

NOVEMBER 20, 2023

Permalink The post DEF CON 31 – Panel: ‘Hack the Future – Why Congress & White House Support AI Red Teaming’ appeared first on Security Boulevard. Originating from the conference events at Caesars Forum, Flamingo, Harrah’s and Linq in Las Vegas, Nevada ; via the organizations YouTube channel.

Hacking

Hacking Architecture Education Information Security

Ways to Develop a Cybersecurity Training Program for Employees

Security Affairs

APRIL 15, 2022

Cybersecurity experts would have you believe that your organization’s employees have a crucial role in bolstering or damaging your company’s security initiatives. Developing a cybersecurity training program requires knowing where the blind spots are. Cover Cybersecurity Topics. Introduce Data Privacy Laws.

Cybersecurity

Cybersecurity Data privacy Data breaches Phishing

MSI confirms security breach after Money Message ransomware attack

Security Affairs

APRIL 7, 2023

Multinational IT corporation MSI (Micro-Star International) confirms security breach after Money Message ransomware gang claimed the hack. This week the ransomware gang Money Message announced to have hacked the Taiwanese multinational IT corporation MSI (Micro-Star International).

Ransomware

Ransomware Firmware Hacking Manufacturing

A zero-day in Atlas VPN Linux Client leaks users’ IP address

Security Affairs

SEPTEMBER 6, 2023

A Reddit user with the handle ‘Educational-Map-8145’ published a proof of concept exploit for a zero-day flaw in the Linux client of Atlas VPN. “The client does not connect via a local socket or any other secure means but instead it opens an API on localhost on port 8076. It does not have ANY authentication.

VPN

VPN Education Authentication Engineering

The State of Maine disclosed a data breach that impacted 1.3M people

Security Affairs

NOVEMBER 12, 2023

The State of Maine was the victim of the large-scale hacking campaign that targeted organizations using the MOVEit file transfer tool. Threat actors exploited the zero-day vulnerability CVE-2023-34362 to hack the file transfer platform and steal the data of the organization. .” people appeared first on Security Affairs.

Data breaches

Data breaches Insurance Identity Theft Education

5 Ways Executive Threat Protection Supports Corporate Cybersecurity

Security Boulevard

MARCH 22, 2023

billion invested in information security and risk-management cybersecurity in 2023, corporations understand the essential nature of cybersecurity in protecting their human, capital, and data assets. The post 5 Ways Executive Threat Protection Supports Corporate Cybersecurity appeared first on Security Boulevard.

Cybersecurity

Cybersecurity Information Security Risk Cyber threats

Akira ransomware received $42M in ransom payments from over 250 victims

Security Affairs

APRIL 21, 2024

A joint advisory published by CISA, the FBI, Europol, and the Netherlands’ National Cyber Security Centre (NCSC-NL) revealed that since early 2023, Akira ransomware operators received $42 million in ransom payments from more than 250 victims worldwide. concludes the advisory that includes indicators of compromise (IoCs).”

Ransomware

Ransomware Encryption Antivirus VPN

15 Best Cybersecurity Blogs To Read

Spinone

OCTOBER 10, 2019

Cybersecurity is one of the most dynamic and quick-changing industries. The best way to stay up-to-date with the recent trends is by reading the top cybersecurity blogs. Here’s our list of the best cybersecurity blogs to read and follow. HackingVision has a great focus on technology and modern cybersecurity trends.

Cybersecurity

Cybersecurity IoT Antivirus Education

Hackers are taking advantage of the interest in generative AI to install Malware

Security Affairs

MAY 3, 2023

” said Meta Chief Information Security Officer Guy Rosen. . “ChatGPT is the new crypto.” Meta also revealed that its research teams are working on the adoption of generative AI to detect and block online influence campaigns.

Malware

Malware Education Accountability Media

BSides Buffalo 2023 – Brent Patterson – Creative Hacking With Blender

Security Boulevard

SEPTEMBER 9, 2023

Many thanks to BSides Buffalo for publishing their presenter’s outstanding BSides Buffalo security content on the organizations’ YouTube channel. Permalink The post BSides Buffalo 2023 – Brent Patterson – Creative Hacking With Blender appeared first on Security Boulevard.

Hacking

Hacking Architecture CISO Education

Akira ransomware targets Finnish organizations

Security Affairs

JANUARY 13, 2024

The Finish National Cybersecurity Center (NCSC-FI) warns of increased Akira ransomware attacks targeting NAS and tape backup devices of organizations in the country. The Finish National Cybersecurity Center (NCSC-FI) reported an increase in Akira ransomware attacks, targeting organizations in the country. concludes the alert.

Ransomware

Ransomware Backups VPN Authentication

BSidesAugusta 2021 – George Bilbrey’s ‘Hacking The Brain With Gamified Learning’

Security Boulevard

FEBRUARY 26, 2022

The post BSidesAugusta 2021 – George Bilbrey’s ‘Hacking The Brain With Gamified Learning’ appeared first on Security Boulevard. Many thanks to BSidesAugusta for publishing their outstanding videos from the BSidesAugusta 2021 Conference on the organization’s YouTube channel.

Hacking

Hacking Education InfoSec Information Security

How to Tackle Cybersecurity for Remote Work

SecureWorld News

MAY 19, 2020

Working from home can be great for cybersecurity professionals, too. What are the security risks of the remote workforce? According to a survey of 6,000 employees by Kaspersky, 73% of employees working remotely "have not yet received any specific cybersecurity awareness guidance or training from their employer.".

Cybersecurity

Cybersecurity Security Awareness Risk Social Engineering

VMware addressed two zero-day flaws demonstrated at Pwn2Own Vancouver 2023

Security Affairs

APRIL 25, 2023

VMware released security updates to address two zero-day vulnerabilities ( CVE-2023-20869, CVE-2023-20870 ) that were chained by the STAR Labs team during the Pwn2Own Vancouver 2023 hacking contest against Workstation and Fusion software hypervisors. They earned $80,000 and 8 Master of Pwn points.

Hacking

Hacking Education Software Media

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Security Affairs

OCTOBER 23, 2020

A joint security advisory published by The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) revealed that Russia-linked APT group Energetic Bear has breached US government networks and exfiltrated data. SecurityAffairs – hacking, Energetic Bear). Pierluigi Paganini.

Government

Government Hacking Advertising Passwords

Nurturing Our Cyber Talent

IT Security Guru

SEPTEMBER 25, 2023

The IT Security Guru caught up with Tarnveer Singh a CISO and finalist in the Security Serious Unsung Heroes Awards 2023 for his thoughts on how to get more professionals involved in the cybersecurity industry: There are many ways we can inspire new cybersecurity professionals to join our industry.

CISO

CISO Identity Theft Cybercrime Cybersecurity

Lockbit ransomware gang demanded an 80 million ransom to CDW

Security Affairs

OCTOBER 14, 2023

The Lockbit ransomware gang claims to have hacked the technology services giant CDW and threatens to leak the stolen data. CDW Corporation is a provider of technology solutions and services for business, government and education. CDW Corporation is a provider of technology solutions and services for business, government and education.

Ransomware

Ransomware Technology Healthcare Government

Massive MOVEit campaign already impacted at least 1,000 organizations and 60 million individuals

Security Affairs

AUGUST 28, 2023

Cybersecurity firm Emsisoft shared disconcerting details about the recent, massive hacking campaign conducted by the Cl0p ransomware group that targeted the MOVEit Transfer file transfer platform designed by Progress Software Corporation. based organizations account for 83.9 percent of known victims, Germany-based 3.6 percent, and U.K.-based

Insurance

Insurance Data breaches Education Ransomware

Bl00dy Ransomware Gang actively targets the education sector exploiting PaperCut RCE

Cybersecurity, why a hotline number could be important?

Webinars

Trending Sources

Automotive parts giant AutoZone disclosed data breach after MOVEit hack

Webinars

CISO Stories Podcast: Hacking Your Way Into Cybersecurity

Threat actors target K-12 distance learning education, CISA and FBI warn

Cybersecurity agencies published a joint LockBit ransomware advisory

Hacking IoT Security with Aaron Guzman

Akira ransomware gang spotted targeting Cisco VPN products to hack organizations

Money Message ransomware group claims to have hacked IT giant MSI

10 Holiday Cybersecurity Tips for CISOs

Cryptocurrencies and cybercrime: A critical intermingling

Pro-Russia hacking group executed a disruptive attack against a Canadian gas pipeline

Tips for Gamifying Your Cybersecurity Awareness Training Program

Three Italian universities hacked by LulzSec_ITA collective

15 Top Cybersecurity Certifications for 2022

“My Slice”, an Italian adaptive phishing campaign

CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog

CISA: Cisco ASA/FTD bug CVE-2020-3259 exploited in ransomware attacks

German BSI warns of 17,000 unpatched Microsoft Exchange servers

Estonian National charged with helping Russia acquire U.S. hacking tools and electronics

Some of TOP universities wouldn’t pass cybersecurity exam: left websites vulnerable

Hackers can hack organizations using data found on their discarded enterprise network equipment

US Agencies and FireEye were hacked with a supply chain attack on SolarWinds Software

National Student Clearinghouse data breach impacted approximately 900 US schools

Why Are Cybersecurity Professionals Suddenly So Popular?

Akira ransomware targets Finnish organizations

DEF CON 31 – Panel: ‘Hack the Future – Why Congress & White House Support AI Red Teaming’

Ways to Develop a Cybersecurity Training Program for Employees

MSI confirms security breach after Money Message ransomware attack

A zero-day in Atlas VPN Linux Client leaks users’ IP address

The State of Maine disclosed a data breach that impacted 1.3M people

5 Ways Executive Threat Protection Supports Corporate Cybersecurity

Akira ransomware received $42M in ransom payments from over 250 victims

15 Best Cybersecurity Blogs To Read

Hackers are taking advantage of the interest in generative AI to install Malware

BSides Buffalo 2023 – Brent Patterson – Creative Hacking With Blender

Akira ransomware targets Finnish organizations

BSidesAugusta 2021 – George Bilbrey’s ‘Hacking The Brain With Gamified Learning’

How to Tackle Cybersecurity for Remote Work

VMware addressed two zero-day flaws demonstrated at Pwn2Own Vancouver 2023

FBI and CISA joint alert blames Russia’s Energetic Bear APT for US government networks hack

Nurturing Our Cyber Talent

Lockbit ransomware gang demanded an 80 million ransom to CDW

Massive MOVEit campaign already impacted at least 1,000 organizations and 60 million individuals

Stay Connected