Articles of interest from the week of March 7, 2022

How Attackers Sidestep the Cyber Kill Chain

Many of the most popular cyberattacks don't follow all the steps of the cyber kill chain, but you have other methods to detect threats. (By Maria Korolov, CSO)

70% of Breached Passwords Are Still in Use

A report that examines trends related to exposed data identified 1.7 billion exposed credentials, a 15% increase from 2020, and 13.8 billion recaptured Personally Identifiable Information (PII) records obtained from breaches in 2021. (By Help Net Security)

Critical Security Patches Issued by Microsoft, Adobe, and Other Major Software Firms

Microsoft's Patch Tuesday update for the month of March has been made officially available with 71 fixes spanning across its software products such as Windows, Office, Exchange, and Defender, among others. Of the total 71 patches, three are rated Critical and 68 are rated Important in severity. While none of the vulnerabilities are listed as actively exploited, three of them are publicly known at the time of release. (By Ravie Lakshmanan, The Hacker News)

Oklahoma Hospital Data Breach Impacts 92,000 People

A security incident at a nonprofit community hospital in Oklahoma may have exposed the personal data of more than 92,000 individuals. (By Sarah Coble, Infosecurity Magazine)

TLStorm exploits expose more than 20 million UPS units to takeover. Was yours one of them?

APC-branded uninterruptible power supplies were found to be vulnerable to three zero-day exploits that could let an attacker physically damage the UPS and attached assets, Armis said. (By Brandon Vigliarolo, TechRepublic)