The rate of businesses experiencing downtime rose from 50% in 2020 to over 75% in 2021, while system crashes were the most common reason for downtimes, followed by human error, cyberattacks, and insider attacks, reports TechRadar.
Russian-speaking threat group FIN7, also known as Carbanak, has remained active despite the indictment of some of its members in 2018 and the sentencing of one of its managers last year, with the group found to have continuously developed its toolset, reports BleepingComputer.
FedScoop reports that bipartisan legislation aimed at bolstering the Department of Veterans Affairs cybersecurity defenses and better protecting its IT systems and devices has been introduced by House Committee on Veterans Affairs Technology Modernization Subcommittee chair Frank Mrvan, D-Ind.
Advanced persistent threat groups El Machete, Lyceum, and SideWinder have exploited the ongoing Russian invasion of Ukraine in spearphishing campaigns targeted at organizations across various sectors around the world last month, The Hacker News reports.
The Cybersecurity and Infrastructure Security Agency has added the Spring4Shell remote code execution vulnerability impacting the Spring Framework to its Known Exploited Vulnerabilities Catalog.
GitLab has issued patches to address a critical severity account takeover flaw, which is impacting GitLab Community Edition and Enterprise Edition versions prior to 14.7.7, 14.8.5, and 14.9.2.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
