January 21, 2022 - Cyber Security News

Friday Squid Blogging: Piglet Squid

Nice article on the piglet squid. As usual, you can also use this squid post to talk about the security stories in the news that...

January 21, 2022

News

MoonBounce UEFI implant used by spy group brings firmware security into spotlight

Researchers uncovered a stealthy UEFI rootkit that's being used in highly targeted campaigns by a notorious Chinese cyberespionage group with suspected government ties. The group...

January 21, 2022

Advisories

A Backdoor in WordPress AccessPress Plugins and Themes Could Allow an Attacker Access to a Targeted Website

A backdoor has been discovered in WordPress AccessPress plugins and themes, which could allow an attacker access to a targeted website. AccessPress plugins and themes...

rocco

January 21, 2022

News

Attackers use public cloud providers to spread RATs

A campaign that uses public cloud service providers to spread malware has been discovered by Cisco Talos. The offensive is the latest example of threat...

January 21, 2022

News

Homelife of Connecticut Residents Secretly Recorded

Homelife of Connecticut Residents Secretly Recorded A man from Connecticut has been arrested on suspicion of using digital devices to record his neighbors. Waterford resident Keith Hancock...

January 21, 2022

News

Pennsylvania Approves Ransomware Bill

Pennsylvania Approves Ransomware Bill Pennsylvania has approved new legislation barring state and local governments from using taxpayers’ money to pay ransoms to cyber-criminals. Senate Bill 726,...

January 21, 2022

News

Crime Shop Sells Hacked Logins to Other Crime Shops

Up for the “Most Meta Cybercrime Offering” award this year is Accountz Club, a new cybercrime store that sells access to purloined accounts at services...

January 21, 2022

News

Memorial Health System Confirms Data Breach

Memorial Health System Confirms Data Breach A cyber-attack on an Ohio-based health system may have exposed the protected health information (PHI) of 216,478 patients. Memorial Health System was...

January 21, 2022

News

China’s Olympics App Is Horribly Insecure

China is mandating that athletes download and use a health and travel app when they attend the Winter Olympics next month. Citizen Lab examined the...

January 21, 2022

Advisories

Multiple Vulnerabilities in Cisco Products Could Allow for Arbitrary Code Execution

Multiple vulnerabilities have been discovered in Cisco Products, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe...

rocco

January 21, 2022

Friday Squid Blogging: Squid Sticker

Italy’s Data Protection Watchdog Issues €15m Fine to OpenAI Over ChatGPT Probe

Ukraine’s Security Service Probes GRU-Linked Cyber-Attack on State Registers

LockBit Admins Tease a New Ransomware Version

Webcams and DVRs Vulnerable to HiatusRAT, FBI Warns

CISA Urges Encrypted Messaging After Salt Typhoon Hack

Ransomware Attackers Target Industries with Low Downtime Tolerance

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

US Organizations Still Using Kaspersky Products Despite Ban

Day: January 21, 2022

Friday Squid Blogging: Piglet Squid

MoonBounce UEFI implant used by spy group brings firmware security into spotlight

A Backdoor in WordPress AccessPress Plugins and Themes Could Allow an Attacker Access to a Targeted Website

Attackers use public cloud providers to spread RATs

Homelife of Connecticut Residents Secretly Recorded

Pennsylvania Approves Ransomware Bill

Crime Shop Sells Hacked Logins to Other Crime Shops

Memorial Health System Confirms Data Breach

China’s Olympics App Is Horribly Insecure

Multiple Vulnerabilities in Cisco Products Could Allow for Arbitrary Code Execution