Welcome to Cyber Security Today. This is the Week in Review edition for the week ending Friday, January 7th, 2022. I’m Howard Solomon, contributing writer on cybersecurity for ITWorldCanada.com.
I’ll be joined in a few minutes by Terry Cutler, the head of Montreal’s Cyology Labs, to discuss some of the week’s top stories. But first a recap of the news from the past seven days:
The Karakurt data-stealing gang is going strong. Just as the year ended it named 11 American and Canadian organizations it had hacked. It demanded bitcoin or the companies would be embarrassed by the public release of stolen data. Terry and I will discuss attacks on small and mid-sized companies.
We’ll also look at a report by New York State into the widespread use of credentials stuffing by threat actors, and the promise by the U.S. Federal Trade Commission to go after companies operating in the United States that don’t act fast enough to close holes left by the Apache log4j vulnerabilities.
Elsewhere, security researchers at Sygnia reported finding a new threat group that’s been stealing millions from financial institutions in Latin America. Often its initial way of breaking in is by…
