CyberSecurity Blog

Authorities Warn Healthcare, Public Health Sectors of Latest Concerns Federal authorities are warning the healthcare sector of potential threats involving Lapsus$ – including those related to the group’s recent hack of Okta – and also of potential phishing attacks arising out of a recent breach experienced by email marketing services provider Mailchimp.http://dlvr.it/SNPDf7

Do you use Microsoft PowerToys?  If you’re not sure what that is then you probably don’t. If you’re curious, Microsoft has an open-source set of tools called PowerToys which is designed to …http://dlvr.it/SNNqvR

Online scams that try to separate the unwary from their cryptocurrency are a dime a dozen, but a great many seemingly disparate crypto scam websites tend to rely on the same dodgy infrastructure providers to remain online in the face of massive fraud and abuse complaints from their erstwhile customers. Here’s a closer look at…
Read more

The 6th-Largest Deal in Security History Will Expand Thoma Bravo Cyber Footprint Private equity giant Thoma Bravo has agreed to purchase identity security powerhouse SailPoint for $6.9 billion in the sixth-biggest cybersecurity acquisition of all time. The deal will give SailPoint the flexibility needed to support its customers, expand its markets and accelerate innovation.http://dlvr.it/SNN7pT

http://dlvr.it/SNLZst

ICYMI: Scammers Exploited YouTube Streams Attracting Over 165,000 Viewers A group of fraudsters made more than $1.6 million in a massive scam using fake cryptocurrency giveaway YouTube streams attracting more than 165,000 viewers. The campaign also exploited the names of Vitalik Buterin, Elon Musk, Michael Saylor and other crypto enthusiasts.http://dlvr.it/SNJzr6

http://dlvr.it/SNJ9jC

If you follow the global threat landscape closely, then you may already be aware of a notorious Chinese hacking collective known as “Storm Cloud.” What few people know is that this group seems …http://dlvr.it/SNHZsw

ICYMI: Tech Firm Seizes 7 Domains Used by APT28 /Strontium to Establish Persistent Access Microsoft says it seized control of seven domains belonging to Russian GRU-linked state-sponsored threat group Strontium. The group, also called APT28 and Fancy Bear, used the domains to target Ukrainian media organizations and had U.S. and EU government entities and decision-makers…
Read more

ICYMI: Security Firms Track Attempts; CISA Patch Deadline Is April 25 A week after the Spring4shell vulnerability was first detected, security companies Microsoft, Check Point and Akamai have identified exploitation attempts. CISA has set April 25, 2022, as the deadline for federal civilian agencies to identify and remediate the flaw on their information systems.http://dlvr.it/SNHHhp