The Christmas holidays are a fragile period in the world of cybersecurity. Many organizations undergo unfortunate cyber incidents during this time, and the simplest way to avoid such instances is to learn from the mistakes of others. Here are the top cybersecurity headlines the world over to help you plan your cyber moves better.
This week’s major cyber news headlines reflect the cybersecurity warnings being circulated ahead of the Christmas holidays and a host of other significant updates. Here are the most important of those security updates.
Imperva Reports a Surge in Web Application Attacks
Renowned security vendor Imperva recently released a cybersecurity analysis report highlighting that there have been over 4.7 million web application attacks since October 2019. Imperva’s findings reveal that web-app attacks are increasing by 22% every quarter. Data breaches in the UK have increased significantly because of the rising attacks on businesses (increased by 250% between October 2019 and the present day).
This week’s cybersecurity headlines are proof that vulnerabilities should be patched the moment they are reported. Here are the top headlines this week that re-emphasize the need to heed security warnings by law enforcement.
Scandinavian Hotel Chain-Nordic Choice Has The Hardest Time Checking Guest In
Having caused much disruption in Ireland’s Health Service Executive (HSE) and the US-based Broward County Public Schools, the Conti ransomware group has now targeted a Scandinavian hotel chain. While the hotel – Nordic Choice, has no plans to negotiate with the attackers, it suspects a theft of its guests’ personally identifiable information (PII). As a result of the attack, guests are also struggling to check in because the reservations system at over 200 Nordic Choice locations remains affected. All procedures related to check-in, new room key creation, check-out, etc., were affected, which compelled the hotel staff to escort guests to their rooms.
The cyber realm has progressed much over the last week; here is the compilation of the top cybersecurity headlines from the past seven days.
UK Government Passes New Cybersecurity Bill
The general notion among consumers of electronic goods today is that a seller or manufacturer does a good job of ensuring their security from cyberattacks. More often than not, this isn’t true. Of late, cyber adversaries have been intruding into netizens’ private and public spaces – right from attacks on their organizational networks to home systems such as smart TVs, CCTVs, baby monitors, etc. The United Kingdom government has implemented the Product Security and Telecommunications Infrastructure (PSTI) Bill as a corrective measure. The PSTI bill mandates all manufacturers and sellers of IoT devices to abide by cybersecurity protocols and protect the privacy of Britons.
Cyber adversaries’ ways of intruding into private networks only seem to be evolving. The best way to stay ahead of them is to invest time and resources in acquiring the right cybersecurity tools. Here are this week’s top cyber news headlines to help the pursuit of creating safe cyberspace for all.
Threat actors continue to launch cyber attacks on organizations around the world. This week’s headlines cover some of these, among other cyber news.
If You Have The SoSafe App, Then This Should Interest You
Pakistan-based threat actors running the GravityRAT remote access trojan have recently developed a chat application called SoSafe chat which spreads malware under the disguise of a ‘safe messaging platform.’ Cybersecurity experts say that the malware is currently targeting high-profile individuals from India. Although the download link and registration for this malicious site remain un-operational, it is very much online.
Maintaining email security remains a challenge, especially when threat actors are so particular about sustaining their malicious activities despite law enforcement penalizing them. Here are the latest cyber headlines this week to guide you through the never-ending hunt for cyber offenders.
While cyber adversaries aspire to rob netizens of their credentials and monetary assets, much progress is also occurring in the cybersecurity realm. This week’s headlines highlight some significant cybersecurity measures that organizations are adopting to tackle the menace of cyber attacks.
The bygone week has been eventful in the cybersecurity realm. Here are the major cyber updates from across the globe
Unknown Threat Actor Exploits Vulnerability in BillQuick Web Suite
BillQuick Web Suite is a popular US-based billing system developed by BQE Software and has over 400,000 users globally. Unfortunately, it was targeted by a critical SQL injection bug recently deployed by an unidentified ransomware group. The vulnerability has been dubbed CVE-2021-42258 and allows adversaries to gain initial access to customers’ BillQuick data and infect the windows server with malicious commands. All the adversaries need to do is make login requests using invalid characters.
The pandemic has fueled the use of online applications and services. And even malicious actors are well aware of it, who continue to launch cyberattacks to rob you of your information or monetary assets. This week’s headlines cover how a group of cyber adversaries conned people over a dating app in South Africa, among other significant cyber developments worldwide.
Cybersecurity is an important aspect determining the smooth functioning of an organization. The following headlines from the bygone week indicate just how essential adopting cybersecurity tools are
This week’s cybersecurity headlines have had significant updates related to recent acquisitions, patches, and adversary actions. Here are the most important of those cyber news headlines:
Apache Fixes Severe Vulnerabilities
In an abundance of caution, Apache has released patches for two cybersecurity vulnerabilities in its HTTP server. Adversaries actively exploited the vulnerabilities related to path traversal and file disclosure until 29th September, when Apache discovered the same in Apache HTTP Server 2.4.49.
The cyber-world is full of twists and turns, with both the cybersecurity expert and the threat actor trying to stay a step ahead of each other at all times. This week’s cyber news headlines capture some of these moves of cybersecurity experts and adversaries.
As the scope of digitization is rising, so are the cyber threats associated with it. This has essentially given threat actors a goldmine wherein users’ details such as their names, addresses, social security numbers, etc., and other critical data, including financial details, is the metaphorical gold for them of which they can’t seem to have enough. This week’s headlines discuss these cyber threats that have affected people worldwide.
Implementing cybersecurity is a collective responsibility wherein every member has to play their part in maintaining confidentiality, integrity, and availability of the organization’s information assets at large. This includes keeping oneself abreast of the latest happenings in the cyber world to keep one step ahead of threat actors at all times. Here are the most relevant cybersecurity headlines this week, highlighting the progress made by both the good and the bad (malicious) actors.
A global cybersecurity firm reported that one-third of suspicious emails marked by employees were indeed malicious ones that may have attempted to phish the users of their PII (Personally Identifiable Information) and other critical organizational information. This indicates how crucial cybersecurity awareness training can prove to be in tackling the global menace of growing cybercrime. Here are this week’s cyber news headlines that cover a tech giant patching critical vulnerabilities, one country blaming another for launching cyberattacks against them, and more.
A disgruntled employee can be as severe a threat as the threat actor who wants to steal confidential information for various illegitimate purposes. This week’s headlines cover how an employee proved to be an insider threat and other such pieces, implying the importance of keeping a robust and comprehensive email security posture and why organizations need to keep cybersecurity among their top priorities.
Cybersecurity headlines are again crowded with news of unfortunate cyber attacks, which serve as a good reminder of why it is crucial to have adequate cybersecurity measures in place at the organizational level and follow cyber hygiene best practices at the individual level. Following are the major security headlines of this week.
The number of cyberattacks is increasing at an alarming rate. The majority of these cyber attacks are not even reported, and at times, not even detected. To ensure that your organization isn’t targeted by one such malicious attack, you must ensure that your organization has a robust cybersecurity posture and adequate ransomware protection and phishing protection measures in place. This week’s headlines cover some major cyberattacks that will give you a good idea of what you can expect if your organization does not have a solid cybersecurity posture.
There is not much you can do when one of the social media or messaging app giants you use was attacked by threat actors, and all your critical information has now fallen into their hands. The need to adopt cybersecurity measures and maintain cyber hygiene is more than ever before. This week’s headlines discuss the newest security firm mergers, investments, and serious hacks, among other crucial developments in the cyber world.