Canada urges critical infrastructure firms to be ready for Russian-based cyber attacks
The agency that defends Canada’s IT networks is warning firms here — particularly banks, airlines, telcos, and…
Currently a freelance writer, I'm the former editor of ITWorldCanada.com and Computing Canada. An IT journalist since 1997, I've written for several of ITWC's sister publications including ITBusiness.ca and Computer Dealer News. Before that I was a staff reporter at the Calgary Herald and the Brampton (Ont.) Daily Times. I can be reached at hsolomon [@] soloreporter.com
Admins urged to patch SolarWinds Serv-U against Log4J bug
IT administrators whose firms use SolarWinds’ Serv-U file transfer application are being urged to install an update…
Many Canadian, U.S. SMB websites vulnerable to spoofing, clickjacking and sniffing, says vendor
Websites of Canadian and American small and medium businesses continue to be vulnerable to spoofing, clickjacking and…
Bug in Safari can leak browsing activity, user identity, says report
A bug in the Safari 15 browser lets any website track a user’s internet activity and possibly…
Log4Shell bug used to deploy NightSky ransomware on VMware Horizon, says Microsoft
Threat actors continue trying to exploit the vulnerabilities in the open-source Apache log4j2 library collectively known as…
Vulnerabilities in WordPress plugins more than doubled in 2021: Report
Vulnerabilities in WordPress plugins more than doubled in 2021 compared to the previous year, according to a…
Rootkit in HPE server management module can wipe hard drives: Report
Administrators with HPE servers in their environments are being warned that a rootkit is circulating that takes…
Microsoft rushes fix for Exchange ‘year 2022’ bug that blocks email
Some Microsoft Exchange admins coming to work today may be facing their first challenge of the new…
Five nations issue alert and comprehensive guidance for fighting Log4Shell vulnerabilities
Canada and its Five Eyes intelligence partners have issued a joint alert on the Log4Shell and related…
Apache issues third Log4j patch, new attack vector found
The Log4j crisis continues, with new developments almost daily. Among the latest developments –Apache has issued a…
How falling for a phishing email led to a crippling ransomware attack in Ireland
On March 18th, an employee in Ireland’s healthcare system clicked on and downloaded a malicious Microsoft Excel…
Canadian websites temporarily shut down as world scrambles to mitigate or patch Log4Shell vulnerability
Federal and provincial departments including the Canada Revenue Agency, Employment and Social Development Canada and the Toronto…
Three new payment card skimmers found aimed at WooCommerce installations
Web administrators overseeing retail sites using the WooCommerce platform should watch for new payment card skimmers that…
It could take years for applications using vulnerable version of Java log4j library to be patched, says expert
Infosec leaders around the world are being urged to heed warnings from national computer emergency teams, software…
Compromised password leads to hack of GoDaddy’s managed WordPress service
Administrators of WordPress sites using GoDaddy’s WordPress managed hosted service are being warned to change their passwords…