Attackers have been leveraging a novel phishing approach that involves the creation of an unusual link with an "@" symbol in between, which browsers identify as legitimate domains and therefore allows evasion of security systems, according to Threatpost.
New guidance from the Cloud Security Alliance aims to support delivery organizations with assessing and managing cybersecurity risks to the healthcare supply chain.
VentureBeat reports that Abnormal Security has secured a $210 million investment from a Series C funding round, which will be allocated toward improving its cloud-native email security platform to better mitigate business email compromise and other email-based attacks.
Microsoft has issued a fix for a Windows Local Security Authority spoofing zero-day vulnerability, which could be abused to force domain controller authentication through the Windows NT LAN Manager protocol, BleepingComputer reports.
CyberScoop reports that nearly 75% of all Americans could have their licenses accessed by the Immigration and Customs Enforcement agency, which has already performed face scans for at least one-third of all U.S. adults' licenses.
Oregon's ORESTAR state campaign finance reporting system may have been compromised just a week prior to the state's primary election after a ransomware attack against campaign finance firm C&E Systems' web hosting provider Opus Interactive, according to the Associated Press.
Information-stealing Saintstealer malware does not only steal usernames, passwords, and credit card details but also exfiltrates various system data, The Hacker News reports.
The Hacker News reports the emergence of new REvil ransomware samples, indicating that the ransomware operation has returned after being inactive for six months.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
