Top Cyber Stories for April 2022 – Cyber Stories Funky Pigeon Cyber Attack Funky Pigeon, a UK online gifts and greetings cards store was the target of a cyber attack that saw the company suspend taking new orders and move its systems offline. The website had not resumed full operations as at May 3, about […] The post April 2022 Cybersecurity Roundup: Funky Pigeon cyber attack, Costa Rica ransomware attack, Mailchimp cybersecurity negligence lawsuit first appeared on GFI Blog ..read more

Top Cyber Stories for March 2022 Russia-Ukraine War Continues in Cyberspace As the armed conflict following Russia’s invasion of Ukraine intensified through March, multiple cyberattacks purportedly linked to the war were reported. It was not just attacks on Ukrainian and Russian websites. Cyber incidents spilled over onto allies of either side. See examples here and […] The post March 2022 Cybersecurity Roundup: War continues in cyberspace, State networks breached, New proposed EU and SEC rules first appeared on GFI Blog ..read more

Top Cyber Stories for February 2022 Another month. Another slew of cyberattacks. If anyone was under any illusion that 2022 would perhaps see a slowdown of cyberattacks unlike 2021, February decisively put that idea to rest. Attacks targeting a wide range of prominent organizations hit the news. Ukrainian Government and Bank Websites Go Down The […] The post February 2022 Cybersecurity News Roundup: Russia-Ukraine factor, Red Cross data breach, $24 million ransomware loss first appeared on GFI Blog ..read more

Top Cyber Stories for January 2022 Morgan Stanley’s $60 Million Settlement for Data Breach Financial services giant Morgan Stanley has agreed to pay $60 million to settle a data security class-action lawsuit. The lawsuit brought by about a dozen customers claimed the company had exposed their personal information when on two occasions, it failed to […] The post January 2022 Cybersecurity News Roundup: $60 million settlement, ‘zero trust’ strategy, fall of REvil, and more first appeared on GFI Blog ..read more

The Apache Log4j Vulnerability Also known as Log4Shell, the Apache Log4j vulnerability was THE cybersecurity news story of December and one of the most significant of 2021 and likely 2022. A flaw in the widely used Java logging library, it was first disclosed on December 9. The vulnerability was first discovered in Minecraft and allows […] The post Top Cyber Stories for December 2021 first appeared on GFI Blog ..read more

A new 0-day vulnerability, formally known as CVE-2021-44228, was published on the NIST National Vulnerability Database on Friday, December 10. It is found in the Log4j Java library.  Log4j is a popular open source logging library made by the Apache Software Foundation. The security vulnerability found in Log4j allows hackers to execute remote commands on […] The post Impact of Log4j vulnerability on GFI first appeared on GFI Blog ..read more

Microsoft rolled out a not overly heavy 55 fixes in November’s Patch Tuesday, but it includes several critical issues and six zero-days. The post Microsoft Patch Tuesday Patch Roundup for November first appeared on GFI Blog ..read more

October was a scary month, not just because of Halloween, but because of the number of patches from software vendors to avoid nasty tricks. The post Third-party patch roundup for October 2021 first appeared on GFI Blog ..read more

Microsoft’s October Patch Tuesday offers fixes for more than 70 vulnerabilities, including four zero-days and updates for Windows 11. The post Microsoft Patch Tuesday Roundup for October first appeared on GFI Blog ..read more

September patches from software vendors other than Microsoft were numerous, reflecting a new reality where remote workers are targets of hackers. The post Third-party September patch roundup: Another heavy month of fixes first appeared on GFI Blog ..read more