Articles of interest from the week of January 10, 2022

FTC to Go After Companies that Ignore Log4j

Companies that fail to protect consumer data from Log4J attacks are at risk of facing Equifax-esque legal action and fines, the FTC warned. The Federal Trade Commission (FTC) will muster its legal muscle to pursue companies and vendors that fail to protect consumer data from the risks of the Log4j vulnerabilities, it warned on Tuesday. (By Lisa Vaas, Threatpost)

10 of the Biggest Cyberattacks of 2021

Nation-state attacks, malicious emails, and personal data-related incidents – 2021 saw a proliferation across a litany of cyberattack activities, many of which were catalyzed by increasing online activity due to the pandemic. (By National Cyber Security News Today) 

FBI, NSA, and CISA Warns of Russian Hackers Targeting
Critical Infrastructure

Amid renewed tensions between the U.S. and Russia over Ukraine and Kazakhstan, American cybersecurity and intelligence agencies on Tuesday released a joint advisory on how to detect, respond to, and mitigate cyberattacks orchestrated by Russian state-sponsored actors. (By Ravie Lakshmanan, The Hacker News)

Businesses Suffered 50% More Cyberattack Attempts per
Week in 2021

The rise — partly due to Log4j — helped boost cyberattack attempts to an all-time high in Q4 2021, new data shows. Cyberattack attempts reached an all-time high in the fourth quarter of 2021, jumping to 925 a week per organization, partly due to attempts stemming from the Log4j vulnerability, according to new data. (By Steve Zurier, Dark Reading)

7 Hot Cybersecurity Trends (and 2 Going Cold)

Is that security trend hot or not? From tools and technologies to threats and tactics, the numbers don't lie. Here are the hot and not-so-hot security trends for 2022, a year in which, unfortunately, the scope and sophistication of attacks are only expected to get worse. (By Neal Weinberg, CSO)