Eight new macOS malware families emerged in 2021, according to Patrick Wardle, a security researcher who specializes in Apple products.
Eight New macOS Malware Families Emerged in 2021
Log4Shell-Like Vulnerability Found in Popular H2 Database
A critical, unauthenticated remote code execution vulnerability has been impacting the H2 database console since 2008.
An open-source Java SQL database, H2 is an in-memory solution that eliminates the need to store data on disk, and is one of the most popular Maven packages, having roughly 7,000 artifact dependencies,
Cyber Ninjas Faces Fine Over Arizona Election Review Records
A judge said Thursday he will fine Cyber Ninjas, the contractor that led Arizona Republicans’ 2020 election review, $50,000 a day if the firm doesn’t immediately turn over public records related to the unprecedented inquiry.
California Man Pleads Guilty Over Role in $50 Million Fraud Scheme
A California man this week admitted before a U.S. district judge to his role in a $50 million internet-enabled fraud scheme.
Court documents claim that, between 2012 and 2020, Allen Giltman, 56, of Irvine, California, created fraudulent websites to ask for funds from investors.
Online Pharmacy Service Ravkoo Discloses Data Breach
United States-based online pharmacy service Ravkoo this week started notifying patients of a data breach that potentially resulted in the exposure of personal information.
Polish Leader Admits Country Bought Powerful Israeli Spyware
Poland’s most powerful politician has acknowledged that the country bought advanced spyware from the Israeli surveillance software maker NSO Group, but denied that it was being used to target his political opponents.
Thousands of School Websites Go Offline Due to Ransomware Attack on Finalsite
Thousands of school websites around the world went offline this week as a result of a ransomware attack on Finalsite, a US-based company that provides digital marketing and communications solutions to schools.
On its website, Finalsite claims that 8,000 schools across 110 countries use its services, and it launches 300 new websites every year.
Swiss Army Knifes WhatsApp at Work
Switzerland’s army has banned the use of WhatsApp whilst on duty, a spokesman confirmed Thursday, in favour of a Swiss messaging service deemed more secure in terms of data protection.
The ban also applies to using other messaging apps like Signal and Telegram on soldiers’ private phones during service operations.
Rights Group Verifies Polish Senator Was Hacked With Spyware
Amnesty International said Thursday it has independently confirmed that powerful spyware from the Israeli surveillance software maker NSO Group was used to hack a Polish senator multiple times in 2019 when he was running the opposition’s parliamentary election campaign.
Research: Simulated Phishing Tests Make Organizations Less Secure
A large-scale, long-term phishing experiment conducted in a 56,000-employee organization has come to a startling conclusion: Those simulated phishing tests commonly seen in corporate user-education campaigns are actually making things much worse.
