Chinese State Hackers Exploit Zero-Day Vulnerabilities in Citrix Networking Equipment
According to the National Security Agency, actors backed by the Chinese government are actively targeting a zero-day vulnerability in two commonly-used Citrix networking devices. The exploit (CVE-2022-27518) affects Citrix ADC, an...
Beware of Luna Moth Callback Phishing Scam
Palo Alto’s Unit 42 recently issued a threat assessment alert outlining a new phishing scam that is unique and successful. The scam is believed to be carried out by the Luna...
Hackers Experimenting with Deploying Destructive Malware
It’s a cold, hard fact that hackers don’t really care about their victims or their victims’ data or business. They are greedy, evil human beings that just want the money. The...
Password Manager LastPass Admits to Hack
Password manager LastPass, reportedly used by more than 33 million users, recently announced that it was hacked, and although it reports that no passwords of users were compromised in the incident,...
Privacy Tip #343 – The Pros and Cons of Password Managers
With the recent announcement by LastPass that it was hacked, and source code was compromised (LastPass is reporting that no passwords were compromised) [view related post], I thought it timely to...
Mediant Communications Settles Data Breach Class Action Lawsuit
Last week, Mediant Communications Inc. (Mediant) settled a class action lawsuit in the U.S. District Court for the Southern District of New York stemming from a 2019 data breach in which...
Russian Government Officials Charged with Hacking U.S. Energy Infrastructure
The U.S. Department of Justice (DOJ) unsealed indictments against four Russian government officials on March 24, 2022, alleging that they hacked into networks that controlled energy systems in the U.S. According...
FTC Files Suit Against CafePress for “Data Breach Cover Up”
The Federal Trade Commission (FTC) issued a press release on March 15, 2022, stating that it was taking action against CafePress “over allegations that it failed to secure consumers’ sensitive personal...
CISA Warns “Every Organization” in U.S. to Assess + Respond to Cyber Risks
The Cybersecurity & Infrastructure Security Agency (CISA) recently issued another warning to “every organization” in the U.S. about cybersecurity risks during the ongoing escalation of tension between the U.S. and Russia...
EyeMed Settles with NY AG for $600,000 Over 2020 Data Breach
EyeMed Vision Care, LLC, was the victim of a hacking incident in 2020 that compromised the personal information of 2.1 million consumers, including their names, addresses, Social Security numbers, member numbers...