Threat Watch

Ransomware attacks surged in 2020, and criminal groups primarily targeted schools, hospitals, and governments. Now, a California based nonprofit is creating a ransomware task force to help private sector organizations …

The Federal Bureau of Investigation (FBI) has issued a notification warning of continued vishing attacks against cooperate accounts and network access credentials. Vishing (also known as voice phishing) is a …

A ransomware attack that occurred on Christmas Eve struck the Scottish Environment Protection Agency (SEPA). The agency revealed that its contact center, internal systems, processes and internal communications were all …

January’s Patch Tuesday contains several security updates, including fixes for five remote code execution (RCE) vulnerabilities in Microsoft’s various Office products. Microsoft has rated the severity of these vulnerabilities as …

BleepingComputer reported that an undisclosed but currently patched cross-site scripting vulnerability in the open source Apache Velocity Tools codebase has been documented by Jackson Henry of the Sakura Samurai ethical …

The NSA recommends that organizations not rely on third-party DNS resolvers to provide encrypted DNS over HTTPS (DoH) services. This recommendation encourages organizations to implement DoH on internal corporate DNS …

Investigations into the attack on the European Medicines Agency (EMA) that occurred in December are still ongoing. It has now been revealed that the information accessed about the Pfizer and …

More people are working from home now than ever before, often times with less security. Chat services and email have become the primary means for communications among organizations, so threat …