Author Info

In August 2023, a significant cyberattack on the Hospital Sisters Health System (HSHS) compromised the personal data of 882,782 individuals. This breach disrupted internal systems, applications, communications, online payments, and the HSHS website. Details of the Cyberattack The attack began on August 27, 2023, causing a prolonged outage of

Hewlett Packard Enterprise (HPE) has begun notifying employees affected by a data breach involving its Office 365 email system, which was compromised by Russian state-sponsored hackers in May 2023. As reported in filings with the Attorney General offices in New Hampshire and Massachusetts, HPE initiated the distribution of breach notification

Microsoft has introduced a PowerShell script designed to assist Windows users and administrators in updating bootable media. This update ensures the use of the new Windows UEFI CA 2023 certificate, crucial for mitigating the BlackLotus UEFI bootkit threats expected to be enforced later this year. Understanding the BlackLotus Threat The

Security experts have identified a critical zero-day vulnerability in the 7-Zip file archiving tool, which has been actively exploited in the context of Russia's ongoing military actions in Ukraine. Exploiting Windows Security Measures This vulnerability enabled a Russian cybercriminal group to circumvent a key Windows security feature designed

In a significant crackdown on cybercrime, the FBI, alongside European authorities, recently seized the domain names of the notorious forums Cracked and Nulled. These platforms, known for their vast user base and illegal activities involving stolen data, hacking tools, and malware, have been under scrutiny for some time. An in-depth

A sophisticated Chinese hacking group has been identified exploiting a new SSH backdoor to compromise network devices. By injecting malware into the SSH daemon, these attackers gain persistent access, enabling covert operations across targeted networks. Understanding the Attack The attackers focus on network appliances, a crucial component of organizational infrastructure.

In a collaborative effort, cybersecurity agencies from the Five Eyes alliance, comprising the UK, Australia, Canada, New Zealand, and the U.S., have released new guidelines aimed at improving the forensic capabilities of network edge devices. This initiative seeks to bolster the ability of defenders to identify and respond to

Recent investigations have uncovered a malicious strategy termed "infrastructure laundering," where cybercriminals exploit prominent cloud services like Amazon Web Services (AWS) and Microsoft Azure. This tactic involves renting IP addresses from these providers and mapping them to fraudulent websites, creating a complex challenge for cybersecurity defenses. Unveiling the

Sophos has successfully completed its acquisition of Secureworks for $859 million in cash, marking a significant expansion in its cybersecurity offerings. Strategic Enhancements and Product Integration Announced initially in October 2024, this acquisition is set to introduce new capabilities to Sophos' portfolio, including advanced identity detection and response (ITDR)