Data confirm that hackers leveraged the global pandemic for financial gain, a particular risk to healthcare entities given brand abuse and patient privacy or misinformation risk.

Malicious use of Regsvr32 has been rising in the Uptycs telemetry, researchers warned, with attackers attempting to register .OCX files in the Registry via various types of malicious Office documents.

A team of UTSA researchers is exploring how a new automated approach could prevent software security vulnerabilities. They developed a deep learning model to extract security policies automatically.

2021 was the most prolific year on record for data breaches, surpassing 2017’s all-time high. A total of 1,862 data compromises were reported by U.S. organizations—a 68 percent increase over 2020.

The PHP Everywhere plugin is used by more than 30,000 websites worldwide. The three issues, all rated 9.9 out of a maximum of 10 on the CVSS rating system, impact versions 2.0.3 and below.

Hackers associated with SolarWind attacks have been using two new threats, the GoldMax backdoor and the TrailBlazer malware family, in StellarParticle campaigns for over two years. Researchers have provided detailed information regarding the latest TTPs observed in cyberattacks and suggested organizations to implement a multi-layered defense strategy to stay protected.

Financial details have been made public for 88 deals, including 11 where companies were acquired for over a billion dollars. More than 60 acquisitions involved tens or hundreds of millions of dollars.

The patches were part of a group of 19 security notes released by the company about a range of security issues. Three of the vulnerabilities were related to log4j and had a CVSS of 10.

Authorities didn’t specify what hacking groups the arrested individuals were affiliated with. However, three carding forums displayed seizure notices today claiming to be from the Russian government.

Adobe says it’s not aware of any attacks exploiting these vulnerabilities. Since they all have a priority rating of “3,” the company believes they are unlikely to ever be exploited.