Cussins Enterprises LLC

Technology is a paint brush on the canvas of life. 
What can we paint for you?

Cybersecurity News

Awareness of what is happening is the 1st to a secure system.

Threat Post

New Twists on Gift-Card Scams Flourish on Black Friday

On November 25, 2021Source: Web Security – ThreatpostBy Elizabeth Montalbano
Categories: Malware, Web Security

Fake merchandise and crypto jacking are among the new ways cybercriminals will try to defraud peopleRead more

GoDaddy Breach Widens to Include Reseller Subsidiaries

On November 24, 2021Source: Web Security – ThreatpostBy Tara Seals
Categories: Breach, Hacks, Privacy, Web Security

Customers of several brands that resell GoDaddy Managed WordPress have also been caught up in the biRead more

Attackers Will Flock to Crypto Wallets, Linux in 2022: Podcast

On November 23, 2021Source: Web Security – ThreatpostBy Threatpost
Categories: Podcasts, Sponsored, Vulnerabilities, Web Security

That’s just the start of what cyberattackers will zero in on as they pick up APT techniques to hurlRead more

GoDaddy’s Latest Breach Affects 1.2M Customers

On November 22, 2021Source: Web Security – ThreatpostBy Tara Seals
Categories: Breach, Privacy, Web Security

The kingpin domain registrar has logged its fifth cyber-incident since 2018, after an attacker withRead more

Online Merchants: Prevent Fraudsters from Becoming Holiday Grinches

On November 22, 2021Source: Web Security – ThreatpostBy Saryu Nayyar
Categories: InfoSec Insider, Web Security

Black Friday and Cyber Monday approach! Saryu Nayyar, CEO at Gurucul, discusses concerning statisticRead more

Attackers Hijack Email Threads Using ProxyLogon/ProxyShell Flaws

On November 22, 2021Source: Web Security – ThreatpostBy Lisa Vaas
Categories: Vulnerabilities, Web Security

Exploiting Microsoft Exchange ProxyLogon & ProxyShell vulnerabilities, attackers are malspamminRead more

Imunify360 Bug Leaves Linux Web Servers Open to Code Execution, Takeover

On November 22, 2021Source: Web Security – ThreatpostBy Tara Seals
Categories: Vulnerabilities, Web Security

CloudLinux's security platform for Linux-based websites and web servers contains a high-severity PHPRead more

6M Sky Routers Left Exposed to Attack for Nearly 1.5 Years

On November 19, 2021Source: Web Security – ThreatpostBy Lisa Vaas
Categories: Vulnerabilities, Web Security

Pen Test Partners didn't disclose the vulnerability after 90 days because it knew ISPs were struggliRead more

California Pizza Kitchen Serves Up Employee SSNs in Data Breach

On November 19, 2021Source: Web Security – ThreatpostBy Elizabeth Montalbano
Categories: Breach, Web Security

A hefty slice of data – that of 100K+ current and former employees – was spilled in an “external sysRead more

3 Top Tools for Defending Against Phishing Attacks

On November 18, 2021Source: Web Security – ThreatpostBy Justin Jett
Categories: InfoSec Insider, Malware, Web Security

Phishing emails are now skating past traditional defenses. Justin Jett, director of audit and compliRead more

Beeping Computer

IKEA email systems hit by ongoing cyberattack

On November 26, 2021Source: BleepingComputerBy Lawrence Abrams
Categories: Security

IKEA is battling an ongoing cyberattack where threat actors are targeting employees in internal phisRead more

TrickBot phishing checks screen resolution to evade researchers

On November 26, 2021Source: BleepingComputerBy Ionut Ilascu
Categories: Security

The TrickBot malware operators have been using a new method to check the screen resolution of a victRead more

Marine services giant Swire Pacific Offshore hit by ransomware

On November 26, 2021Source: BleepingComputerBy Bill Toulas
Categories: Security

Swire Pacific Offshore (SPO) has discovered an unauthorized network infiltration onto its IT systemsRead more

Motherboard

After Failure to Buy the Constitution, Crypto Fans Want to Buy an NBA Team

On November 24, 2021Source: VICE US - MotherboardBy Edward Ongweso Jr
Categories: nba, crypto, SPACs, nfts, DAOs

Whether or not Krause House DAO will also result in failure and chaos is anybody's guess.Read more

Jeffrey Epstein Spent Final Days In Fear of MS-13, Struggling With Constipation

On November 24, 2021Source: VICE US - MotherboardBy Tim Marchman
Categories: conspiracy theories, Bureau of Prisons, Jeffrey Epstein, FOIA

Bureau of Prisons records described the infamous abuser as "optimistic" and "psychologically stable,Read more

Lawsuit: ClassPass Built Fitness Empire on Thousands of 'Fake' Partnerships

On November 24, 2021Source: VICE US - MotherboardBy Maxwell Strachan
Categories: New York, Silicon Valley, Fitness, venture capitalism, ClassPass

Wellness boutiques say they dealt with angry customers, injured reputations, and potentially dangeroRead more

The Pentagon Forms New Department to Watch and Study UFOs

On November 24, 2021Source: VICE US - MotherboardBy Matthew Gault
Categories: Tech, Pentagon, UFO, UFWhoa

The new group will coordinate efforts across branches in an effort to figure out what, exactly, is fRead more

Mr. Goxx, the Crypto-Trading Hamster, Is Dead

On November 24, 2021Source: VICE US - MotherboardBy Matthew Gault
Categories: Tech, Bitcoin, hamster, crytpocurrency

If you got all your financial advice from a hamster, your portfolio is in serious trouble because heRead more

Data Breeches

Swire Pacific Offshore reports cyberattack

On November 26, 2021Source: DataBreaches.netBy Dissent
Categories: Business Sector, Malware, Non-U.S.

Seen on Hellenic Shipping News: Swire Pacific Offshore (SPO) has discovered that it was the target oRead more

Supernus Pharmaceuticals : Targeted in Ransomware Incident – Form 8-K

On November 26, 2021Source: DataBreaches.netBy Dissent
Categories: Business Sector, Malware

ROCKVILLE, Md., Nov. 24, 2021 — Supernus Pharmaceuticals, Inc. (NASDAQ: SUPN), a biopharmaceutRead more

Class Certification Order Lifted in Data Breach Lawsuit Against West Virginia University Health System

On November 26, 2021Source: DataBreaches.netBy Dissent
Categories: Health Data, Insider, U.S.

HIPAA Journal reports: A class action lawsuit filed against West Virginia University Health System oRead more

Overview of Legislations on Cybersecurity, Personal Data Protection and Computer Misuse

On November 25, 2021Source: DataBreaches.netBy Dissent
Categories: Federal, Legislation, Non-U.S.

The Cyber Security Agency of Singapore (CSA) had collaborated with the PDPC and Singapore Police ForRead more

Happy Thanksgiving!

On November 25, 2021Source: DataBreaches.netBy Dissent
Categories: Uncategorized

Has 2021 been better or worse for you than 2020?  I am trying to decide for myself, but I am glad thRead more

Huntington Hospital discloses insider criminal breach after law enforcement lifts delay on notice

On November 24, 2021Source: DataBreaches.netBy Dissent
Categories: Health Data, Insider, U.S.

Huntington Hospital in New York has disclosed an insider-wrongdoing incident that occurred between ORead more

Data Breach Spreads To Six Web Hosts

On November 24, 2021Source: DataBreaches.netBy Dissent
Categories: Business Sector, Hack

Roger Montti reports: The GoDaddy data breach that affected up to 1.2 million web hosts has expandedRead more

At least 3 Quad-Cities municipalities have fallen victim to cyber attacks

On November 24, 2021Source: DataBreaches.netBy Dissent
Categories: Government Sector, Phishing, U.S.

Sarah Watson reports: … In the Quad-Cities, at least three local governments paid out more thaRead more

Bureau Veritas hit by cyberattack on cybersecurity system

On November 24, 2021Source: DataBreaches.netBy Dissent
Categories: Business Sector, Malware, Non-U.S.

Ship Technology reports: French firm Bureau Veritas, which specialises in laboratory testing, inspecRead more

Ph: Personal data of 22,000 S&R shopping members compromised in cyber attack

On November 24, 2021Source: DataBreaches.netBy Dissent
Categories: Business Sector, Hack, Non-U.S.

Gabriela Baron reports: The National Privacy Commission (NPC) on Wednesday, Nov. 24, said the personRead more

Cyberscoop

Apple alerts journalists, activists about state-sponsored hacking attempts after NSO Group suit

On November 24, 2021Source: CyberScoopBy AJ Vicens
Categories: Threats, Apple, Citizen Lab, NSO Group, spyware

On the same day Apple announced a lawsuit against Israeli spyware vendor NSO Group for developing haRead more

Incident reporting, ransomware payment legislation faces trouble in Senate

On November 24, 2021Source: CyberScoopBy Tim Starks
Categories: Government, Policy, Threats, Congress, Gary Peters, incident reporting, Mark Warner, National Defense Authorization Act, ransomware, Rick Scott, rob portman, Sen. Rob Portman, Senate Homeland Security and Governmental Affairs Committee, Susan Collins

Legislation requiring critical infrastructure owners to report major cyber incidents to the federalRead more

'Shiba Inu' token scams surge with the virtual currency's popularity

On November 23, 2021Source: CyberScoopBy Tonya Riley
Categories: Financial, Threats, cryptocurrency, Federal Trade Commission (FTC), fraud, scam, Shiba Inu

When the Shiba Inu token, a meme-based virtual currency, hit its highest all-time value in October,Read more

Apple sues NSO Group, spyware vendor known for helping governments hack critics

On November 23, 2021Source: CyberScoopBy AJ Vicens
Categories: Geopolitics, Threats, Apple, NSO Group, spyware

Apple is suing Israeli spyware vendor NSO Group “to hold it accountable for the surveillance aRead more

Industry group sounds alarm over 'Tardigrade' malware targeting biomanufacturing sector

On November 23, 2021Source: CyberScoopBy Tim Starks
Categories: Healthcare, Threats, BIO-ISAC, coronavirus, covid-19, health care, information sharing and analysis centers (ISACs), Tardigrade

A group of likely foreign government-sponsored hackers is behind cyberattacks on two bio-manufacturiRead more

Up to 1.2 million GoDaddy customers' data exposed in breach

On November 22, 2021Source: CyberScoopBy AJ Vicens
Categories: Threats, cryptocurrency, data breach, GoDaddy, wordpress

Data connected with up to 1.2 million GoDaddy customers may have been accessed by an unauthorized paRead more

Wind turbine giant Vestas says data was compromised in security incident

On November 22, 2021Source: CyberScoopBy Tim Starks
Categories: Technology, Threats, Colonial Pipeline, electric grid, energy, Ukraine power outage, Vestas

One of the world’s largest wind turbine manufacturers, Vestas Wind Systems, says it’s coRead more

Banks must report major cyber incidents within 36 hours under finalized regulation

On November 19, 2021Source: CyberScoopBy Tim Starks
Categories: Financial, Money, Policy, Bank Policy Institute, Federal Deposit Insurance Corporation, Federal Reserve, Financial services, incident reporting, regulation, regulators

Banks must report major cybersecurity incidents to federal officials within 36 hours under a rule thRead more

Two alleged Iranian hackers charged in sprawling effort to interfere in 2020 US election

On November 18, 2021Source: CyberScoopBy AJ Vicens
Categories: Geopolitics, Threats, Department of Justice, FBI, Iran, Proud Boys

A federal indictment unsealed Thursday accused two Iranian nationals of engaging in a sprawling effoRead more

Corporate espionage specialists RedCurl return with improved tools

On November 18, 2021Source: CyberScoopBy Tim Starks
Categories: Financial, Money, Threats, espionage, Group-IB, RedCurl, Russia, Void Balaur

A corporate espionage organization known as RedCurl that made waves before disappearing last year haRead more

Krebs On Security

The Hacker News

Hackers Targeting Biomanufacturing Facilities With Tardigrade Malware

On November 26, 2021Source: The Hacker NewsBy

An advanced persistent threat (APT) has been linked to cyberattacks on two biomanufacturing companieRead more

An advanced persistent threat (APT) has been linked to cyberattacks on two biomanufacturing companies that occurred this year with the help of a custom malware loader called "Tardigrade." That's according to an advisory published by Bioeconomy Information Sharing and Analysis Center (BIO-ISAC) this week, which noted that the malware is actively spreading across the sector with the likely goal of

Crypto Hackers Using Babadeda Crypter to Make Their Malware Undetectable

On November 26, 2021Source: The Hacker NewsBy

A new malware campaign has been discovered targeting cryptocurrency, non-fungible token (NFT), and DRead more

A new malware campaign has been discovered targeting cryptocurrency, non-fungible token (NFT), and DeFi aficionados through Discord channels to deploy a crypter named "Babadeda" that's capable of bypassing antivirus solutions and stage a variety of attacks. "[T]his malware installer has been used in a variety of recent campaigns to deliver information stealers, RATs, and even LockBit ransomware,

CronRAT: A New Linux Malware That’s Scheduled to Run on February 31st

On November 26, 2021Source: The Hacker NewsBy

Researchers have unearthed a new remote access trojan (RAT) for Linux that employs a never-before-seRead more

Researchers have unearthed a new remote access trojan (RAT) for Linux that employs a never-before-seen stealth technique that involves masking its malicious actions by scheduling them for execution on February 31st, a non-existent calendar day. Dubbed CronRAT, the sneaky malware "enables server-side Magecart data theft which bypasses browser-based security solutions," Sansec Threat Research said

Israel Bans Sales of Hacking and Surveillance Tools to 65 Countries

On November 26, 2021Source: The Hacker NewsBy

Israel's Ministry of Defense has dramatically restricted the number of countries to which cybersecurRead more

Israel's Ministry of Defense has dramatically restricted the number of countries to which cybersecurity firms in the country are allowed to sell offensive hacking and surveillance tools to, cutting off 65 nations from the export list. The revised list, details of which were first reported by the Israeli business newspaper Calcalist, now only includes 37 countries, down from the previous 102:

Product Releases Should Not Be Scary

On November 25, 2021Source: The Hacker NewsBy

Every Product Manager and Software Developer should know that pushing feature updates to productionRead more

Every Product Manager and Software Developer should know that pushing feature updates to production via traditional channels is as archaic as painting on cave walls. The smart are always quick to adapt to new, innovative technologies, and this mindset is exactly what makes normal companies great. The landscape is changing fast, especially in IT. Change isn't just necessary, but more often than

This New Stealthy JavaScript Loader Infecting Computers with Malware

On November 25, 2021Source: The Hacker NewsBy

Threat actors have been found using a previously undocumented JavaScript malware strain that functioRead more

Threat actors have been found using a previously undocumented JavaScript malware strain that functions as a loader to distribute an array of remote access Trojans (RATs) and information stealers. HP Threat Research dubbed the new, evasive loader "RATDispenser," with the malware responsible for deploying at least eight different malware families in 2021. Around 155 samples of this new malware

Hackers Using Microsoft MSHTML Flaw to Spy on Targeted PCs with Malware

On November 25, 2021Source: The Hacker NewsBy

A new Iranian threat actor has been discovered exploiting a now-addressed critical flaw in the MicroRead more

A new Iranian threat actor has been discovered exploiting a now-addressed critical flaw in the Microsoft Windows MSHTML platform to target Farsi-speaking victims with a new PowerShell-based information stealer designed to harvest extensive details from infected machines. "[T]he stealer is a PowerShell script, short with powerful collection capabilities — in only ~150 lines, it provides the

If You're Not Using Antivirus Software, You're Not Paying Attention

On November 25, 2021Source: The Hacker NewsBy

Stop tempting fate and take a look at our picks for the best antivirus programs on the market today.Read more

Stop tempting fate and take a look at our picks for the best antivirus programs on the market today. Every year there are billions of malware attacks worldwide. And these threats are constantly evolving. So if you are not currently using antivirus software, or you still rely on some free software you downloaded back in 2017, you are putting your cybersecurity in serious jeopardy.  Need help

Warning — Hackers Exploiting New Windows Installer Zero-Day Exploit in the Wild

On November 25, 2021Source: The Hacker NewsBy

Attackers are actively making efforts to exploit a new variant of a recently disclosed privilege escRead more

Attackers are actively making efforts to exploit a new variant of a recently disclosed privilege escalation vulnerability to potentially execute arbitrary code on fully-patched systems, once again demonstrating how adversaries move quickly to weaponize a publicly available exploit. Cisco Talos disclosed that it "detected malware samples in the wild that are attempting to take advantage of this

VMware Warns of Newly Discovered Vulnerabilities in vSphere Web Client

On November 25, 2021Source: The Hacker NewsBy

VMware has shipped updates to address two security vulnerabilities in vCenter Server and Cloud FoundRead more

VMware has shipped updates to address two security vulnerabilities in vCenter Server and Cloud Foundation that could be abused by a remote attacker to gain access to sensitive information. The more severe of the issues concerns an arbitrary file read vulnerability in the vSphere Web Client. Tracked as CVE-2021-21980, the bug has been rated 7.5 out of a maximum of 10 on the CVSS scoring system,

How Can We Help?

7 + 13 =

Share This