Twenty percent of cybersecurity officers across the UK cited artificial intelligence as their organizations' most significant cybersecurity threat, according to TechRadar.
Attacks by Russian threat operation APT28, also known as Fancy Bear, Strontium, and Forest Blizzard, using the GooseEgg malware to exploit the Windows print spooler flaw, tracked as CVE-2022-38028, have prompted the security issue's inclusion to the Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog, Security Affairs reports.
U.S. Department of Homeland Security Secretary Alejandro Mayorkas has been urged by Reps. Ruben Gallego, D-Ariz., and Pat Fallon, R-Texas, to provide more information regarding the January cyberattack against a water treatment plant in Muleshoe, Texas, reports The Record, a news site by cybersecurity firm Recorded Future.
Individuals receiving healthcare across Los Angeles had their personal and health data compromised following a successful phishing attack against Los Angeles County Department of Health Services, which is the second largest U.S. public healthcare system, in February, according to BleepingComputer.
BleepingComputer reports that Android devices could have their data compromised and be eventually hijacked in attacks with the novel Brokewell banking trojan.
Hacked email accounts have been used by threat actors to facilitate a phishing campaign that involves the use of Autodesk Drive-hosted PDF documents to compromise Microsoft account credentials, SecurityWeek reports.
Attacks leveraging fraudulent job lures to distribute the new Kaolin RAT malware have been launched by North Korean hacking collective Lazarus Group against individuals across Asia last summer, reports The Hacker News.
Millions of devices could still be compromised by the abandoned PlugX USB worm with self-replicating functionality, with infections logged from almost 2.5 million IP addresses over a six-month period beginning September 2023, according to Ars Technica.
Cyberinsurance claims increased 13% year-over-year in 2023, with the 10% rise in overall claims severity attributed to mounting ransomware attack claims during the first six months of the year, reports SiliconAngle.
With ransomware payments exceeding $1 billion for the first time last year amid an almost 18% increase in ransomware attack prevalence between 2022 and 2023, the Institute for Security and Technology's Ransomware Task Force has called for the accelerated implementation of its nearly 50 recommendations in combating ransomware attacks, only half of which have been addressed over the last three years, Cybernews reports.