The U.S. Securities and Exchange Commission (SEC) is expected to introduce a rule requiring public companies to demonstrate cybersecurity expertise at the board level. This comes as a response to the increasing…
Category: English
Act Proposed for K-12 Cybersecurity
In response to the growing threat of cyberattacks on educational institutions, Iowa Congressman Zach Nunn has proposed the bipartisan Enhancing K–12 Cybersecurity Act. This initiative comes in the wake of numerous schools,…
Anonymous Sudan Targets Microsoft Services
The cybercriminal group known as Anonymous Sudan is reportedly behind the attacks that disrupted several Microsoft services earlier this month. In a security blog post, Microsoft confirmed that the disruptions experienced from…
Redefining Security: Passwordless Authentication
The cybersecurity landscape is undergoing a significant shift towards passwordless authentication due to the limitations and vulnerabilities of traditional password-based security measures. As cybercriminals become more sophisticated, businesses and individuals are seeking…
AI Cybersecurity: Investment Boom
The frontier of AI-driven cybersecurity is expanding, offering a wealth of investment opportunities for venture capitalists, private equity firms, and individual investors. As cyber threats become more sophisticated, the demand for advanced…
Clop’s Ransomware Attack Targets U.S.
A Russian ransomware group, known as Clop, compromised U.S. federal agency data, including that of the Energy Department, exploiting file transfer software MOVEit to steal and sell user data. The Cybersecurity and…
LockBit Ransomware: CISA’s Comprehensive Advisory
The Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and international cybersecurity partners have issued an advisory about the LockBit ransomware operation. Since 2020, LockBit has extorted $91 million from US organizations…
Lessons from 2023’s Major Data Breaches
In 2023, data breaches have impacted nearly 350 million accounts, with Twitter experiencing the largest breach. These breaches underscore that anyone can be a target, regardless of size or sector. Human error,…
UNC3886 Exploits VMware for Cyber Espionage
The state-sponsored Chinese hacking group, UNC3886, is exploiting a zero-day vulnerability (CVE-2023-20867) in VMware ESXi hosts to infiltrate Windows and Linux systems. The flaw allows the execution of privileged commands across guest…
Zacks Data Breach: Customer Compromise
Zacks Investment Research confirmed a major data breach in which encrypted passwords were stolen from an unspecified number of customers. The breach, linked to a previous hack, was exposed by the breach…