Security News > 2021

A Chinese threat actor known as APT31 likely acquired and cloned one of the Equation Group's exploits three years before the targeted vulnerability was publicly exposed as part of Shadow Brokers' "Lost in Translation" leak, cybersecurity firm Check Point says in a new report. Attributed to APT31, a Chinese hacking group also tracked as Zirconium, the exploit for this vulnerability is the clone of an Equation Group exploit code-named "EpMe," Check Point says.

Enterprise VPNs are critical for connecting remote workers to company resources via reliable and secure links to foster communication and productivity. Multi-factor authentication, disabling split tunneling, implementing a maximum connection-time window after which employees must re-authenticate and mandating complex, rotating passwords are several examples of how to bolster enterprise VPN security.

With the free version of LastPass now limiting where you can sync your passwords, here are a few other options. LastPass has typically gotten kudos as an effective password manager.

The attacks occurred in mid-December 2020 and involved the Clop ransomware gang and the FIN11 threat group. After we reported on the Singtel breach earlier this month, the Clop gang contacted us and stated that they stole 73 GB of data as part of their attack.

The attacks occurred in mid-December 2020 and involved the Clop ransomware gang and the FIN11 threat group. After we reported on the Singtel breach earlier this month, the Clop gang contacted us and stated that they stole 73 GB of data as part of their attack.

A new analysis of security risks in cloud deployments found that companies are facing an increased risk of more advanced attacks and struggling to control managed infrastructure options. The Cloud Cyber Resilience Report from Accurics describes how insecure defaults and identity management are causing new problems.

Grocery and pharmacy chain Kroger has started informing customers and associates of a data breach involving Accellion's file transfer service FTA. The Cincinnati-based retail company operates more than 2,900 locations across 35 states and the District of Columbia, including department stores, hypermarkets, jewelry stores, supermarkets, and superstores. In a data breach notification on its website, the company says that a data security incident involving Accellion's FTA service has resulted in unauthorized access to certain Kroger data.

Several cybersecurity-related acquisitions were announced in the third week of February 2021. AdaCore says the acquisition will help broaden its cybersecurity capabilities and expand its market share in Germany.

As its competitors face growing data privacy concerns, Telegram for Windows has received an update that includes new privacy features that provide better control over your data. As part of the latest update, Telegram is introducing a new feature that now allows you to delete groups you created and call history for all sides without leaving a trace.

People returning to work following the long pandemic will find an array of tech-infused gadgetry to improve workplace safety but which could pose risks for long-term personal and medical privacy. Tech giants and startups are offering solutions which include computer vision detection of vital signs to wearables which can offer early indications of the onset of Covid-19 and apps that keep track of health metrics.