Cyberthreat News
Cyberthreat News
A host of new and evolving threats has the information security industry on high alert. From malware and phishing to machine learning and artificial intelligence, cyberattacks are putting the data and assets of companies, individuals and even whole nations at constant risk of loss or disruption.
The most common cyberthreats facing the sector are ransomware attacks – now the highest threat overall – followed by data related threats (breaches, leaks) as attackers target credentials and employee data. Attacks on businesses continue to grow as criminals shift tactics from targeting individuals for phishing campaigns to attacking firms and the associated profits.
With the 2022 school year kicking off, cyberattacks on schools are expected to increase. In fact, the UK’s data watchdog is already sounding the alarm.
The US and multiple international cybersecurity authorities have warned about a new group called Volt Typhoon, whose tactics include Living off the Land (LOTL) attacks — which take advantage of functions and software already running on a victim system to evade detection.
Clorox says an attack this summer caused “wide-scale disruptions” that could mean product delays and shortages, a securities filing shows. Meanwhile, hackers backed by Iran are continuing to target hotels and casinos in Las Vegas, including MGM Resorts.
Other notable stories that may have slipped under the radar this week include Dell’s PowerProtect vulnerability, SQL injection in Drupal, a bug in Apple’s macOS and iOS and a flaw in Intel CPUs. Also, Zoom has issues with its desktop and mobile apps that could allow privilege escalation.