Security News > 2022 > December > Week in review: LastPass breach disaster, online tracking via UID smuggling, ransomware in 2023
LastPass says attackers got users' info and password vault dataThe information couldn't come at a worst time, as businesses are winding down their activities and employees and users are thick in the midst of last-minute preparations for end-of-year holidays.
New Microsoft Exchange exploit chain lets ransomware attackers inRansomware-wielding attackers are using a new exploit chain that includes one of the ProxyNotShell vulnerabilities to achieve remote code execution on Microsoft Exchange servers.
UID smuggling: A new technique for tracking users onlineAdvertisers and web trackers have been able to aggregate users' information across all of the websites they visit for decades, primarily by placing third-party cookies in users' browsers.
Ransomware predictions for 2023In this Help Net Security video, Dave Trader, Field CISO at Presidio, talks about the evolution of ransomware attacks and outlines what we can expect in 2023.
Amplified security trends to watch out for in 2023In 2023 and beyond, organizations can expect to continue dealing with many of the same threats they face today but with one key difference: expect criminals to leverage technological advancements to optimize the effectiveness of their attacks.
Connected homes are expanding, so is attack volume78% Americans report unsafe online behaviors that open them up to cyber threats, such as reusing or sharing passwords, skipping software updates and more - a 14% increase from just two years ago, according to Comcast.
News URL
Related news
- Pokemon dev Game Freak confirms breach after stolen data leaks online (source)
- Tech giant Nidec confirms data breach following ransomware attack (source)
- Henry Schein discloses data breach a year after ransomware attack (source)
- Black Basta ransomware poses as IT support on Microsoft Teams to breach networks (source)
- Fog ransomware targets SonicWall VPNs to breach corporate networks (source)
- LA housing authority confirms breach claimed by Cactus ransomware (source)
- Helldown ransomware exploits Zyxel VPN flaw to breach networks (source)
- SafePay ransomware gang claims Microlise attack that disrupted prison van tracking (source)