SEC fines Firms with inadequate Cybersecurity Practices
The Securities and Exchange Commission (SEC) charged eight firms for failures in their cybersecurity practices, leading to email account takeovers
ProxyToken Flaw allows Attackers to Reconfigure Mailboxes
A vulnerability ProxyToken impacting Microsoft Exchange Server was discovered, the exploitation of which would allow the attacker to alter server
DOJ introduces cybersecurity training program for prosecutors
The US Department of Justice announced a new program.designed to train the next generation of prosecutors and attorneys on issues
Single-factor authentication enters the list of Bad Practices
CISA considers single-factor authentication to be one of the exceptionally risky cybersecurity practices posing threats on critical organizations
T-Mobile apologizes to its customers for data breach
T-Mobile’s CEO apologized to its customers as personal details of more than 50 million people were exposed in a cyberattack
Critical flaw in Azure Cosmos DB found by
Wiz discovered a new attack vector in Microsoft Azure, the exploitation of which could give any Azure user admin access
LockFile uses Intermittent File Encryption to bypass Protection
LockFile ransomware returns with new techniques to bypass ransomware protection through intermittent encryption.
Boston Public Library experiences cyberattack
The Boston Public Library revealed systemwide technical outage as it experienced a cyberattack, leading to a halt in some services
Quebec’s vaccine passport termed safe by researchers
Researcher's concerns vanish as soon as the smartphone applications for vaccine passport are made available as these seems fool-proof
F5 releases patches for vulnerabilities affecting BIG-IP and
F5, the Enterprise security and network appliance vendor has released patches to address two dozen-plus vulnerabilities affecting BIG-IP and BIG-IQ