Threat Management

Ongoing exploitation of unpatched instances of a Microsoft Exchange flaw is being tied to Russia-linked APT28 or Fancy Bear.

Analysis reveals 18 of ransomware gang Black Basta’s 300-plus victims were extorted over $1 million each, with one handed over $9 million.

Cybersecurity job security, vendor loyalty and board support after a breach were covered in a survey of 500 CISOs.

Nation-states were noted by Sen. Ron Wyden, D-Ore., to have been leveraging push notifications to enable surveillance on Apple and Google smartphones, according to TechCrunch.

The DPRK's Lazarus threat group allegedly breached over 100 devices in several countries, including the U.S., Canada, Japan and Taiwan, according to Microsoft.

Researchers finally detail Netflix screencast bug that opened smart TVs to a video hijacking attacks.

Outpost24 researchers expect LummaC2 4.0 malware to evolve with improved obfuscation techniques and updates to its control panel.

Increasingly prevalent data privacy threats have prompted the Federal Communications Commission's Privacy and Data Protection Task Force to partner with attorneys general of New York, Connecticut, Pennsylvania, and Illinois in consolidating resources crucial in bolstering investigations and enforcement actions on various threats, reports The Record, a news site by cybersecurity firm Recorded Future.

Jamf says North Korean subgroup of the financially motivated Lazarus Group targets specific users the threat actors believe have access to cryptocurrency.

Aqua Nautilus researchers claim they’ve observed the first documented exploit of the "Looney Tunables" vulnerability by threat actor Kinsing.