Synology has issued a patch for a severe vulnerability in the VPN Plus Servers that could be used to take control of systems remotely. The vulnerability, now known as CVE-2022-43931, has a top severity score of 10 on the CVSS scale and is defined as an out-of-bounds write flaw in Synology VPN Plus Server’s remote…
It can be challenging for business owners to keep up with the latest technology trends and determine which ones are worth investing in. However, businesses must stay current with technology to remain competitive in today’s market. The following are the top three technology trends every business owner should be aware of: Cloud computing: Cloud computing is…
Hackers are baiting their victims with stolen financial data in a clever phishing scheme. Over 400,000 data points, including identity numbers, names, phone numbers, and payment records, are used to persuade consumers to click on a malicious link. This link downloads a potent virus called BitRAT that can steal passwords, spy on users, and install…
Since October 2022, a new kind of malware has been targeting financial institutions. A widespread and powerful type of Android malware has turned its focus to online banking apps, employing keylogging capabilities to steal passwords and usernames for bank accounts, social networking accounts, and other accounts stored in your Android device. Researchers at the cybersecurity…
This past October, during a ransomware assault on a healthcare facility in southwest Louisiana, hackers collected and exposed the personal information of approximately 270,000 patients and workers. A ransomware organization known as the Hive has claimed responsibility for the incident. Hive and other ransomware groups are increasingly targeting organizations, stealing data before locking down systems…
Business email compromise (BEC) attacks are becoming widespread and present a significant risk to businesses of all sizes. These attacks involve hackers posing as trusted individuals or organizations via email to request sensitive information or financial transfers. BEC attacks often target high-level employees, such as executives or financial managers, and can be highly sophisticated. Attackers…
LastPass, a popular password manager, announced that an unauthorized party accessed the company’s archived backups of its production data on a third-party cloud-based storage service. According to the company’s investigation, a threat actor accessed the cloud storage environment in August 2022 with information obtained from an earlier incident. Although the threat actor did not access…
In late November 2022, sports betting firm DraftKings announced that it had suffered a data breach affecting approximately 68,000 customers. The company stated that the breach resulted from a credential stuffing attack, in which attackers obtained credentials from a third-party source and attempted to use them to access DraftKings accounts. According to DraftKings, the attackers…
Microsoft announced the Azure DDoS IP Protection released as a public preview on October 19, 2022. Small and medium-sized businesses (SMBs) can now benefit from DDoS protection with a pricing model customized to their specifications. DDoS Protection provides similar capabilities to DDoS Network Protection (previously known as DDoS Protection Standard). It is designed for enterprises…