Security Bulletin

The ClickFix attack tactic seems to be gaining traction among threat actors.

A new threat assessment from the Danish Civil Protection Authority (SAMSIK) warned of cyberattacks targeting the telecommunications sector after citing a wave of incidents hitting European organizations the past few years.

The BEC attacks rely on phishing lures that let the bad actors operate entirely within the Microsoft 365 ecosystem.

The researchers who discovered the initial assault warned that the simple, staged attack is just the beginning for advanced exploit sequences that will test cyber defenses in new and more difficult ways.

Microsoft’s prescription for doctor burnout and fatigue is an AI assistant.

A ransomware activity wave using the SocGholish MaaS framework for initial access also has affected banking and consulting firms in the US, Taiwan, and Japan since the beginning of the year.

Surviving a ransomware attack requires implementing the security basics – and an effective backup strategy.

Cybersecurity is not just a technical challenge but also a very human one. The more humans that organizations can get involved, the more diverse perspectives and experiences that can be tapped into.

The U.S. Department of Justice has announced gaining the custody of Russian-Israeli Rostislav Panev.