Cyber Attacks

CPA Firms - Cybersecurity

Top Business & Cybersecurity Concerns for CPAs in 2023

Cybersecurity Impact on CPA Firms Cybersecurity is a critical issue for businesses and organizations of all sizes and industries, and the accounting profession is no exception. In today’s digital age, sensitive financial data and information are increasingly at risk of being compromised by cybercriminals who seek to steal valuable data, commit fraud, or cause disruption …

Top Business & Cybersecurity Concerns for CPAs in 2023 Read More »

Hackers Use Powerpoint (.PPT) files for Triggered ‘MouseOver’ Malware Delivery Attack

Hackers believed to work for Russia have started using a new code execution technique that relies on mouse movement in Microsoft PowerPoint presentations to trigger a malicious PowerShell script. No malicious macro is necessary for the malicious code to execute and download the payload, for a more insidious attack.  A report from threat intelligence company …

Hackers Use Powerpoint (.PPT) files for Triggered ‘MouseOver’ Malware Delivery Attack Read More »

Uber Hack

Uber Hacked by 18-Year-Old, Claiming the Company Has Weak Security

What Happened Uber discovered its computer network had been breached on Thursday, leading the company to take several of its internal communications and engineering systems offline as it investigated the extent of the hack.  The breach appeared to have compromised many of Uber’s internal systems, and a person claiming responsibility for the hack sent images …

Uber Hacked by 18-Year-Old, Claiming the Company Has Weak Security Read More »

Kaseya MSP Cyber Attack

Major MSP & Supply Chain Hit with Ransomware Affecting 40,000+ Companies

Kaseya, an IT solutions developer for MSPs and enterprise clients, announced that it had become the victim of a cyberattack on July 2, over the American Independence Day weekend. It appears that attackers have carried out a supply chain ransomware attack by leveraging a vulnerability in Kaseya’s VSA software against multiple managed service providers (MSP) …

Major MSP & Supply Chain Hit with Ransomware Affecting 40,000+ Companies Read More »

Malware Skyrockets to 74%

In 2021, Zero Day Malware Attacks Skyrocket to 74% of All Discovered Attacks

In the first quarter of 2021, 74% of malware threats detected were known to be Zero Day Attacks – meaning an attack sequence in which a signature-based antivirus identifier was not present at the time of the infection. In early 2021, it was the highest level of Zero Day Malware Detections ever recorded.  Organizations must …

In 2021, Zero Day Malware Attacks Skyrocket to 74% of All Discovered Attacks Read More »

Cyber Attack on Worlds Largest Meat Supplier Skyrockets Prices

United States-based food processing company JBS USA has confirmed falling victim to a cyber attack, with the aftermath affecting its North American and Australian systems. “On Sunday, May 30, JBS USA determined that it was the target of an organized cybersecurity attack, affecting some of the servers supporting its North American and Australian IT systems,” …

Cyber Attack on Worlds Largest Meat Supplier Skyrockets Prices Read More »

Potential Nation State Attack on Florida Water Treatment System – OT Cybersecurity Prevention Measures

Hacker or Hacker Group Attempt to Alter Chemical Water Treatment Proportions to Inflict Harm to Citizens   A hacker gained access into the water treatment system of Oldsmar, Florida, on Friday and tried to increase the levels of sodium hydroxide — commonly referred to as lye — in the city’s water, officials said, putting thousands …

Potential Nation State Attack on Florida Water Treatment System – OT Cybersecurity Prevention Measures Read More »

FireEye Security Vendor Compromised: Nation-State Threat Actors Steal Hacking Tools

The N.S.A.’s tools were most likely more useful than FireEye’s since the U.S. government builds purpose-made digital weapons. FireEye’s Red Team tools are essentially built from malware that the company has seen used in a wide range of attacks. Still, the advantage of using stolen weapons is that nation-states can hide their own tracks when …

FireEye Security Vendor Compromised: Nation-State Threat Actors Steal Hacking Tools Read More »

SolarWinds Breach: Malware Breach Affecting 18,000 Customers

A key malicious domain name used to control potentially thousands of computer systems compromised via the months-long breach at network monitoring software vendor SolarWinds was commandeered by security experts and used as a “killswitch” designed to turn the sprawling cybercrime operation against itself, KrebsOnSecurity has learned. Austin, Texas-based SolarWinds disclosed this week that a compromise of its …

SolarWinds Breach: Malware Breach Affecting 18,000 Customers Read More »

New Jersey’s Largest Hospital Pays Hackers in Ransomware Breach

New Jersey’s largest hospital system said last week it paid an extortion fee to hackers who had disrupted medical facilities with a ransomware attack. Hackensack Meridian Health, based in Edison, New Jersey, said Dec. 13 it was working to restore its computer systems following a Dec. 2 ransomware attack that forced administrators to cancel roughly …

New Jersey’s Largest Hospital Pays Hackers in Ransomware Breach Read More »