Microsoft this week reported mitigating several massive distributed denial-of-service (DDoS) attacks aimed at its customers last year.
Microsoft Saw Record-Breaking DDoS Attacks Exceeding 3 Tbps
US Says National Water Supply ‘Absolutely’ Vulnerable to Hackers
REvil Ransomware Operations Apparently Unaffected by Recent Arrests
The REvil (Sodinokibi) ransomware cooperative’s activity did not even slow down following Russia’s recent move to arrest several alleged members of the group, according to threat intelligence company ReversingLabs.
White House Publishes Federal Zero Trust Strategy
Software Supply Chain Protection Startup Scribe Security Raises $7 Million
Scribe Security, an Israeli startup seeking to protect the software supply chain, has raised $7 million in seed funding.
The investment round was led by Elron Ventures and received participation from various other investors, including Tal Ventures and YYM Ventures.
VMware Warns of Log4j Attacks Targeting Horizon Servers
VMware is urging customers to patch their VMware Horizon instances as these systems have been targeted in a recent wave of attacks exploiting the Log4Shell vulnerability.
Official Says Puerto Rico’s Senate Targeted by Cyberattack
Puerto Rico’s Senate announced Wednesday that it was the target of a cyberattack that disabled its internet provider, phone system and official online page, the latest in a string of similar incidents in recent years.
QNAP Warns NAS Users of DeadBolt Ransomware Attacks
Network-attached storage (NAS) solutions manufacturer QNAP on Wednesday warned users of a DeadBolt ransomware campaign targeting their devices, encouraging them to correctly secure any Internet-facing NAS and routers.
Rights Group Says Lebanese Staffer Targeted With NSO Spyware
Human Rights Watch said Wednesday that one of its senior staff members was targeted last year with spyware designed by the Israeli hacker-for hire company NSO Group.
Apple Patches ‘Actively Exploited’ iOS Security Flaw
Apple late Wednesday pushed out an urgent iOS update with fixes for 11 documented security flaws and warned that one of the vulnerabilities “may have been actively exploited.”
In a barebones advisory, Apple acknowledged the zero-day took aim at a memory corruption issue in IOMobileFrameBuffer, an oft-targeted iOS kernel extension.
