The US Securities and Exchange Commission (SEC) has imposed penalties on four firms for making misleading disclosures about the 2019 SolarWinds data breach. Cybersecurity companies Check Point and Mimecast will pay fines of $995,000 and $990,000 respectively, while tech firms Unisys and Avaya will pay $4 million and $1 million. The SEC alleged the four firms downplayed the damage of the cyberattacks and left investors in the dark.

Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
Cybersecurity researchers have revealed details about Outlaw, an “auto-propagating” cryptocurrency mining botnet that targets SSH servers with weak credentials. The Romanian-origin malware performs SSH brute-force